Open-source ReSilient Hardware and software for Internet of thiNgs

Informations projet

ORSHIN

N° de convention de subvention: 101070008

DOI

10.3030/101070008

Projet clôturé

Date de signature de la CE 20 Juin 2022

Date de début 1 Octobre 2022

Date de fin 30 Septembre 2025

Financé au titre de

Civil Security for Society

Coût total

€ 3 814 500,00

Contribution de l’UE

€ 3 814 500,00

3 814 500,00

Coordonné par

TECHNIKON FORSCHUNGS- UND PLANUNGSGESELLSCHAFT MBH
Austria

CORDIS fournit des liens vers les livrables publics et les publications des projets HORIZON.

Les liens vers les livrables et les publications des projets du 7e PC, ainsi que les liens vers certains types de résultats spécifiques tels que les jeux de données et les logiciels, sont récupérés dynamiquement sur OpenAIRE .

Livrables

Report about security requirements

This report explains how abstract high-level security requirements are handled in the trusted life cycle and how they are broken down into more concrete procedural requirements for the life cycle phases, and into low-level security requirements for the components.

Report about trusted life cycle design methodology for OSH

The deliverable provides the description of the methodology for composing open-source components. We envision a trusted life cycle of the device composed of several phases. The report will formalize these phases and identify the interaction and feedback of the design and production process up to the device decommissioning. The report provides the guidelines for the secure composition of building blocks. The guidelines help to achieve a secure result leveraging the security features of each component.

Project quality plan

The project quality plan (the project handbook) constitutes a set of project templates and explains the project management, review and internal quality control process, as well as other organizational topics such as meeting organization.

Publications

EmuOCPP: Effective and Scalable OCPP Security and Privacy Testing

Auteurs: Soumaya Boussaha, Victor Fresno-Gomez, Thomas Barber, Daniele Antonioli
Publié dans: 2025, ISBN 978-1-939133-49-6
Éditeur: USENIX

Architectural Mimicry: Innovative Instructions to Efficiently Address Control-Flow Leakage in Data-Oblivious Programs

Auteurs: Hans Winderix, Marton Bognar, Job Noorman, Lesly-Ann Daniel, Frank Piessens
Publié dans: 2024 IEEE Symposium on Security and Privacy (SP), 2024
Éditeur: IEEE
DOI: 10.1109/SP54263.2024.00047

MicroProfiler: Principled Side-Channel Mitigation through Microarchitectural Profiling

Auteurs: Bognar, Marton; Winderix, Hans; Van Bulck, Jo; Piessens, Frank
Publié dans: 2023 IEEE 8th European Symposium on Security and Privacy (EuroS&P), 2023
DOI: 10.1109/eurosp57164.2023.00045

CTRAPS: CTAP Client Impersonation and API Confusion on FIDO2

Publié dans: IEEE Euro S&P, 2025
Éditeur: IEEE Euro S&P
DOI: 10.48550/ARXIV.2412.02349

SimProcess: High Fidelity Simulation of Noisy ICS Physical Processes

Auteurs: Denis Donadel, Gabriele Crestanello, Giulio Morandini, Daniele Antonioli, Mauro Conti and Massimo Merro
Publié dans: 2025
DOI: 10.48550/ARXIV.2505.22638

Bluetooth Security Testing with BlueToolkit: a Large-Scale Automotive Case Study

Auteurs: V. Zubkov, T. Sacchetti, D. Antonioli, M. Strohmeier
Publié dans: 2025, ISBN 978-1-939133-50-2
Éditeur: 19th USENIX WOOT Conference on Offensive Technologies

Design, implementation and validation of NSCP: a New Secure Channel Protocol for hardened IoT

Auteurs: Alberto Battistello, Guido Bertoni, Vittorio Zaccaria, Joan Bushi
Publié dans: DATE 2025, 2025
Éditeur: DATE 2025

Efficient attack-surface exploration for electromagnetic fault injection

Auteurs: Carta, Daniele Antonio Emanuele; Zaccaria, Vittorio; Molteni, Maria Chiara; Quagliarella, Gabriele
Publié dans: Constructive Side-Channel Analysis and Secure Design, 2023, ISBN 978-3-031-29497-6
Éditeur: Springer, Cham
DOI: 10.5281/zenodo.7820870

Partial Key Overwrite Attacks in Microcontrollers: a Survey

Auteurs: Pcy Sluys, Benedikt Gierlichs
Publié dans: CASCADE 2025, 2025
Éditeur: CASCADE

JWT Back to the future On the (ab)use of JWTs in IoT transactions

Publié dans: 2025
Éditeur: Zenodo
DOI: 10.5281/ZENODO.17206208

Libra: Architectural Support For Principled, Secure And Efficient Balanced Execution On High-End Processors

Auteurs: Hans Winderix, Marton Bognar, Lesly-Ann Daniel, Frank Piessens
Publié dans: Proceedings of the 2024 on ACM SIGSAC Conference on Computer and Communications Security, 2025
Éditeur: ACM
DOI: 10.1145/3658644.3690319

Wait a Cycle: Eroding Cryptographic Trust in Low-End TEEs via Timing Side Channels

Publié dans: 2025
DOI: 10.5281/ZENODO.16674672

Low-Cost First-Order Secure Boolean Masking in Glitchy Hardware

Auteurs: S V Dilip Kumar; Josep Balasch; Benedikt Gierlichs; Ingrid Verbauwhede
Publié dans: 2023 Design, Automation & Test in Europe Conference & Exhibition (DATE), 2023, ISSN 1558-1101
Éditeur: IEEE Explore
DOI: 10.23919/date56975.2023.10136920

Hardware Cost Evaluation in Systems Security

Auteurs: Jesse De Meulemeester, Quinten Norga, Frank Piessens, Ingrid Verbauwhede, Marton Bognar
Publié dans: 2025
Éditeur: ACM

Intellectual property exposure: subverting and securing intellectual property encapsulation in texas instruments microcontrollers

Publié dans: 2025
Éditeur: Usenix
DOI: 10.5555/3698900.3699021

Duplication-Based Fault Tolerance for RISC-V Embedded Software

Auteurs: Volodymyr Bezsmertnyi, Jean-Michel Cioranesco, Thomas Eisenbarth
Publié dans: Lecture Notes in Computer Science, Computer Security – ESORICS 2024, 2024
Éditeur: Springer Nature Switzerland
DOI: 10.1007/978-3-031-70903-6_5

Lightweight Countermeasures Against Original Linear Code Extraction Attacks on a RISC-V Core

Auteurs: Gousselot, Théophile; Thomas, Olivier; Dutertre, Jean-Max; Potin, Olivier; Rigaud, Jean-Baptiste
Publié dans: 2023 IEEE International Symposium on Hardware Oriented Security and Trust (HOST), 2023
DOI: 10.1109/host55118.2023.10133316

openIPE: An Extensible Memory Isolation Framework for Microcontrollers

Publié dans: 2025
DOI: 10.5281/ZENODO.16674390

CheckOCPP: Automatic OCPP Packet Dissection and Compliance Check

Publié dans: IEEE European Symposium on Security and Privacy, 2025
Éditeur: IEEE
DOI: 10.5281/ZENODO.15780183

E-Spoofer: Attacking and Defending Xiaomi Electric Scooter Ecosystem

Auteurs: Marco Casagrande; Riccardo Cestaro; Eleonora Losiouk; Mauro Conti; Daniele Antonioli
Publié dans: Proceedings of the 16th ACM Conference on Security and Privacy in Wireless and Mobile Networks, 2023
DOI: 10.5281/zenodo.8004604

AttackDefense Framework (ADF): Enhancing IoT Devices and Lifecycles Threat Modeling

Auteurs: Tommaso Sacchetti, Marton Bognar, Jesse De Meulemeester, Benedikt Gierlichs, Frank Piessens, Volodymyr Bezsmertnyi, Maria Chiara Molteni, Stefano Cristalli, Arianna Gringiani, Olivier Thomas, Daniele Antonioli
Publié dans: ACM Transactions on Embedded Computing Systems, 2024, ISSN 1539-9087
Éditeur: Association for Computing Machinery (ACM)
DOI: 10.1145/3698396

IEEE Electron Device Letters

Auteurs: P. Saraza-Canflanca; F. Fodor; J. Diaz-Fortuny; B. Gierlichs; R. Degraeve; B. Kaczer; I. Verbauwhede; E. Bury
Publié dans: IEEE Electron Device Letters, 2024, ISSN 0741-3106
Éditeur: Institute of Electrical and Electronics Engineers
DOI: 10.1109/led.2024.3369860

Time Sharing - A Novel Approach to Low-Latency Masking

Auteurs: Dilip Kumar S. V., Siemen Dhooghe, Josep Balasch, Benedikt Gierlichs, Ingrid Verbauwhede
Publié dans: IACR Transactions on Cryptographic Hardware and Embedded Systems, Numéro 2024, 2024, ISSN 2569-2925
Éditeur: Universitatsbibliothek der Ruhr-Universitat Bochum
DOI: 10.46586/tches.v2024.i3.249-272

Higher-Order Time Sharing Masking

Auteurs: Dilip Kumar S. V., Siemen Dhooghe, Josep Balasch, Benedikt Gierlichs, Ingrid Verbauwhede
Publié dans: IACR Transactions on Cryptographic Hardware and Embedded Systems, Numéro 2025, 2025, ISSN 2569-2925
Éditeur: Universitatsbibliothek der Ruhr-Universitat Bochum
DOI: 10.46586/TCHES.V2025.I2.235-267

Low-Cost First-Order Secure Boolean Masking in Glitchy Hardware

Auteurs: S. V. Dilip Kumar, Josep Balasch, Benedikt Gierlichs, Ingrid Verbauwhede
Publié dans: IEEE Transactions on Information Forensics and Security, Numéro 20, 2025, ISSN 1556-6013
Éditeur: Institute of Electrical and Electronics Engineers (IEEE)
DOI: 10.1109/TIFS.2025.3541442

Recherche de données OpenAIRE...

Livrables

Publications

Partager cette page Partager cette page sur les réseaux sociaux

Télécharger Télécharger le contenu de la page