Skip to main content
Go to the home page of the European Commission (opens in new window)
English English
CORDIS - EU research results
CORDIS
CORDIScovery podcast 50th episode CORDIScovery podcast 50th episode

Programming trustworthy Infrastructure As Code in a sEcuRE framework

Project description

DE EN ES FR IT PL

Towards a holistic market of infrastructure automation tools

The role of software management in operating infrastructures is increasing; automation, cloud, and software-defined networking boost the speed and security of operations. The DevOps philosophy already offers a set of practices and tools that combine software development and IT operations to shorten the development life cycle and provide continuous delivery. However, there is a need for tools to manage the whole life cycle of infrastructure as code (IaC), with a special focus on trustworthiness and security aspects throughout the IaC life cycle. The EU-funded PIACERE project will develop the tools, techniques and methods to allow organisations to develop and operate IaC through DevSecOps practices as they would do with traditional code.

Objective

In this era of virtualisation, the abstraction of underlying hardware resources and the prominence of tools for infrastructural automation have been key enablers for the deployment of distributed services at scale. The growing role of software in managing infrastructures and the DevOps movement, focused on the automation of infrastructure management, are targeting the challenges of increasing speed and quality of infrastructure management, thus lowering costs and enhancing security and trustworthiness. However, the market of infrastructure automation tools is fragmented, there is no single one to manage the whole lifecycle of infrastructure as code (IaC) and existing solutions do not address all trustworthiness and security aspects throughout the whole lifecycle. PIACERE will develop tools, techniques and methods enabling organisations to fully embrace the IaC approach through the DevSecOps philosophy. PIACERE will provide the first Integrated Development Environment (IDE) to develop and verify IaC. Exploiting Model-Driven Engineering (MDE), the IDE will enable developers to create infrastructural code at an abstract level. Using the novel DevOps Modelling Language (DOML), the DevOps team will generate IaC for different languages and verify its correctness at model and code level along with the corresponding security components. The IDE is one part of the complete workflow and will be supported with: 1) a canary environment to aid the simulation of the conditions of the production environment allowing the early identification of potential vulnerabilities and 2) an IaC execution Environment to automatically deploy, monitor and ensure that the conditions are met, incorporating self-healing and self-learning features. The integration, security first and IaC polyglotism arm the DevSecOps teams to treat and work with IaC as they do with traditional code, simplifying the design, development and operation of IaC, while increasing their productivity, quality and reliability

Fields of science (EuroSciVoc)

CORDIS classifies projects with EuroSciVoc, a multilingual taxonomy of fields of science, through a semi-automatic process based on NLP techniques. See: The European Science Vocabulary.

You need to log in or register to use this function

Keywords

Project’s keywords as indicated by the project coordinator. Not to be confused with the EuroSciVoc taxonomy (Fields of science)

Programme(s)

Multi-annual funding programmes that define the EU’s priorities for research and innovation.

Topic(s)

Calls for proposals are divided into topics. A topic defines a specific subject or area for which applicants can submit proposals. The description of a topic comprises its specific scope and the expected impact of the funded project.

Funding Scheme

Funding scheme (or “Type of Action”) inside a programme with common features. It specifies: the scope of what is funded; the reimbursement rate; specific evaluation criteria to qualify for funding; and the use of simplified forms of costs like lump sums.

RIA - Research and Innovation action

See all projects funded under this funding scheme

Call for proposal

Procedure for inviting applicants to submit project proposals, with the aim of receiving EU funding.

(opens in new window) H2020-ICT-2018-20

See all projects funded under this call

Coordinator

FUNDACION TECNALIA RESEARCH & INNOVATION
Net EU contribution

Net EU financial contribution. The sum of money that the participant receives, deducted by the EU contribution to its linked third party. It considers the distribution of the EU financial contribution between direct beneficiaries of the project and other types of participants, like third-party participants.
€ 720 026,49
Address
PARQUE CIENTIFICO Y TECNOLOGICO DE BIZKAIA, ASTONDO BIDEA, EDIFICIO 700
48160 DERIO BIZKAIA
Spain

See on map
Region
Noreste País Vasco Gipuzkoa
Activity type
Research Organisations
Links
Total cost

The total costs incurred by this organisation to participate in the project, including direct and indirect costs. This amount is a subset of the overall project budget.
€ 870 151,49

Participants (10)

Share this page Share this page on social networks

Download Download the content of the page

Last update: 2 July 2024

My Booklet

Permalink: https://cordis.europa.eu/project/id/101000162

European Union, 2025

My booklet 0 0