The growth of IoT deployment and the contemporary advancements of network technologies will lead to even higher penetration of IoT devices in every aspect of human life. This will undoubtedly create a huge attack surface and consequently generate cascading cybersecurity risks in the upcoming years. Nevertheless, the heterogeneity of the IoT landscape is extremely challenging to establish a trustworthy environment among diverse devices and hampers the efforts to manage them under a holistic framework. ERATOSTHENES aims to solve critical obstacles considering “Security of Things” as core to the future IoT success. The project envisions to develop a decentralized and contextual Trust and Identity Management Framework for resource-restricted IoT environments following a self-sovereign approach. The project intends to enable the automated lifecycle monitoring of the devices, strengthening trust, identities, and resilience in the entire IoT ecosystem, supporting the enforcement of the EC cybersecurity directives.
The main objectives of ERATOSTHENES project are the following:
1. Trust Framework and a Reference Architecture to ensure end-to-end trust and identity management in distributed IoT networks, suited for resource-restricted environments, critical and industrial applications
2. Lightweight, distributed, and dynamic Trust Manager to enhance the trust in large-scale distributed networks of heterogeneous IoT devices covering each layer and cross-layer of the network
3. Decentralised, scalable, efficient and privacy preserving IoT identity management to conciliate the requirements of self-sovereignty and privacy preservation in a distributed, interoperable and transparent trust model, including self-encryption/decryption schemes and IoT identity recovery
4. Lifecycle management and the overall governance layer of the trust network on novel Distributed Ledger Technologies and a hybrid consensus protocol. Implement Smart Contracts for enforcing access policies and sharing trustworthiness within the network guaranteeing their transparency, integrity, authenticity, and authority. Design of Inter-ledger Cyber-Threat Information Sharing, and automated Recovery Solutions based on a multi-layer approach
5. Integrate and Validate the approach through real-world pilots
6. Deliver knowledge via dissemination and capacity building