Secura participates in the REWIRE Research and Innovation Action

Rewire project Secura is participating

Secura participates in the REWIRE Research and Innovation Action, officially started on October 1st, 2022. The project is funded by European Commission under Horizon Europe Programme (Grant Agreement No. 101070627) and spans on the period October 2022 – September 2025.

REWIRE envisions a holistic framework for continuous security assessment of open-source and open-specification hardware and software for IoT devices and the development of cybersecurity certification in accordance with the requirements and guidelines of recent EU Cybersecurity Act.

Scalable platform

In particular, REWIRE proposes a scalable and multifunctional cybersecurity platform that will ensure the security throughout the life of the IoT devices with continuous security auditing, trust computing and theorem proofs for defining a hardware-based microarchitecture for enhanced protection targeting to open-hardware/software vulnerabilities.

REWIRE Project logo

REWIRE has invested in three carefully selected pilots (Automotive, Smart Cities, Smart Satellites), which can address the ambitious objectives of the project, i.e., a customizable TEE based on RISC-V, and micro benchmarking for quick and automated assessment of h/w vulnerability.

Thus, REWIRE aims to safeguard the entire workflow of secure processing; from the Deployment and Operation of software-based System of Systems to their patch management when new exploits have been identified during run-time, by providing new trust management mechanisms towards the auditability and certification of SW/HW open-source specifications.

Automated Verification Tools

As an industry partner, Secura contributes with researching and developing automated verification tools for ensuring integrity of targeted firmware in devices used in smart cities, smart satellites and smart vehicles, throughout their entire lifecycles. REWIRE strives to implement firmware verification not as an isolated process, but as a part of an end-to-end chain covering device integrity and trust.

This means it will make use of dynamic analysis combined with static analysis which are applicable both during design-time and during runtime.A combination of coverage guided fuzzing and symbolic execution will be used to verify whether the firmware contains vulnerabilities. The second part of the innovation introduced by REWIRE is that the output of the firmware verification will serve as input for the theorem proof to be utilized by the blockchain.

The Results

The results of the verification process will be used as input to craft a theorem on the security of the device. Furthermore, vulnerabilities discovered in the verification process will be used as input for the threat analysis tool that will also be implemented within the REWIRE project.

For more information and updates connect with the project at Linked In (https://www.linkedin.com/company/rewire-horizoneu-project/) or Twitter (https://twitter.com/RewireProject)