Short name: DRAFT (stage2 of CREAT)
Long name: Dynamic Cybersecurity Risk Assessment Framework for Trust in IoT
Company: Digiotouch OU | digiotouch.com
Call: F4Fp-SME-2 (see call details)
Proposal number: F4Fp-SME-STAGE 2- 06M21
SUMMARY REMARKS & TESTBEDS
DRAFT project builds upon our Stage 1 experiment CReAT to develop a novel dynamic and holistic cybersecurity risk assessment framework through automated analysis, attack vectors, threat surface analysis, cybersecurity risk resilience, and cost assessment. Such dynamic framework paves the way for implementing an IoT device ‘trust seal’ specially devised for IoT device manufacturing industry and it’s motivated by the consumer demand for security and privacy capabilities.
Testing the developed DRAFT framework and trust seal will be performed against at least five known and simulated cyberattacks including DDoS, insecure default settings, insecure ecosystem interfaces, insecure authentication/authorization, and lack of secure update mechanism in four testbeds: Virtual Wall, w-iLab.t, City of Things and EXOgeni.
DIGI will develop and maintain close cooperation with its current and potential future customers (from the European manufacturing and other IoT industries) through an Associated Member Group (AMG) of the project. This will allow DIGI to work closely with potential customers, seek feedback on proposed activities, and disseminate the results. This will increase the chances of winning commercial contracts. The experiment outcomes will be sustained by commercializing to B2B customers, developing a partnership with EIT Digital for scale-up across the European Member States, and R&D efforts in future Horizon Europe projects. DRAFT experiment will have several positive impacts on DIGI in terms of a significant increase in annual turnover, job growth, and new B2B partnerships.
- DRAFT – A Cybersecurity Framework for IoT Platforms (download the paper)
- DRAFT experiment | FEC7 (download the poster)
- Review DRAFT experiment | FEC7 (download the slides)