ORSHIN's technical work packages provide research output and push the boundaries of the current scientific state of the art. This includes the creation of innovative research papers and prototypes, which are not just novel academic findings, but generate significant (industrial) impact and stimulate future research and open science.
Furthermore, the ORSHIN approach has great potential for adoption by industry as device manufacturers can leverage our Trusted Life Cycle (TLC), tools, methodologies, etc. in order to build secure and trustworthy devices. ORSHIN provides formally verified, secure, open-source hardware blocks, reproducible and efficient security testing techniques, and secure and privacy-preserving communication protocols. We value the collaboration and contributions of all stakeholders in this process.
The TLC could become the industrial standard for developing dependable open-source hardware and software devices. Moreover, our framework for threat modelling could become a standard for assessing the risks of these devices. The ORSHIN project follows a holistic approach and besides the TLC further provides concrete advice for specific TLC phases, namely: design, implementation, evaluation and maintenance.
ORSHIN is also impacting the crucial and broad discussion around moving from closed-source to open-source hardware. We are pushing this important paradigm shift via constructive and frequent discussions with European policy makers and standardization bodies like ENISA, BSI, ACN and ANSSI. We discuss shortcomings of existing security certifications methods with respect to open-source hardware as well as obstacles for the standardization of our TLC.