Our website uses cookies to enable essential features and improve your browsing experience. Additionally, cookies enhance overall website functionality and user experience. By choosing I Accept, you agree to our use of non-essential cookies and other tracking technologies.

You have the ability to manage your settings or withdraw your consent at any time. We are committed to maintaining the privacy and security of your personal information. For detailed information on how we use cookies, including how to manage your privacy and preferences, please visit our cookie policy .
Developmentaid logo
Register
Print
Print
Horizon 2020 (2014 - 2020)

Assurance and certification in secure Multi-party Open Software and Services: AssureMOSS

Last update: Sep 3, 2020 Last update: Sep 3, 2020

Details

Locations:Austria, France, Germany, Hungary, Italy, Netherlands, Sweden
Start Date:Oct 1, 2020
End Date:Sep 30, 2023
Contract value: EUR 4,689,425
Sectors:Information & Communication Technology
 Information & Communication Technology
Categories:Grants
Date posted:Sep 3, 2020

Associated funding

Associated experts

Description

Programme: H2020-EU.2.1.1. - INDUSTRIAL LEADERSHIP - Leadership in enabling and industrial technologies - Information and Communication Technologies (ICT)

Topic: SU-ICT-02-2020 - Building blocks for resilience in evolving ICT systems

Call for proposal: H2020-SU-ICT-2019

Funding Scheme: RIA - Research and Innovation action

Grant agreement ID: 952647

Objective:
Continuous, distributed changes rule today's European Digital Single Market as no single company does master its own national, in-house software. Software is mostly assembled from “the internet” and more than half come from Open Source Software repositories (some in Europe, most elsewhere). Security & privacy assurance, verification and process certification techniques designed for large, controlled updates over months or years, must now cope with small, continuous changes in weeks, happening in sub-components and decided by third party developers one did not even know they existed.
AssureMOSS addresses these challenges to the fullest extent: « Open Source Software - Designed Everywhere, Secured in Europe ».
AssureMOSS proposes to switch from process-based to an artefact-based security evaluation by supporting all phases of the continuous software lifecycle (Design, Develop, Deploy, Evaluate and back) their artefacts (Models, Source code, Container images, Services). The key idea is to support mechanisms for lightweigth and scalable screenings applicable automatically to the entire population of software components by
- Machine intelligent identification of security issues across artifacts,
- Sound analysis and verification of changes by tracing the security and privay side effects,
- Business insight by risk analysis and security evaluation.
This approach supports fast-paced development of better software by a new notion: continuous (re)certification.
AssureMOSS has assembled a team including 5 leading Universities (Delft, Gotheborg, Trento, Vienna, VU Amsterdam), 3 innovative SMEs (FrontEndART, Search-Lab, Pluribus One), 3 Large Enterprises (E&Y, SAP, Thales) and 1 Special Interest Group Organization (EU-VRi) and an Advisory Board with key figures from OSS and industry at large.
The project will generate not only a set of innovative methods and open source tools but also benchmark datasets with thousands of vulnerabilities and code that can be used by other researchers.

Want to unlock full information?
Member-only information. Become a member to access projects awards, find the right consortia partners, subcontractors and more.
Learn more about our membership benefits
Print