Any Internet of Things (IoT) deployment, no matter in which application domain is used, healthcare, building automation, automotive, Industry 4.0 etc., comprises devices that differ in terms of resources, capabilities, and resources, in terms of vendor and manufacturer. Most of them are equipped with some protection mechanisms and trust technology (i.e. Arm TrustZone, Intel SGX, Intel TDX, AMD SEV, etc.) but such solutions can hardly interoperate. Moreover, it has been shown over the years, that existing technology suffer from several vulnerabilities due to poor coding, architectural issues, and also the raise side-channels attacks instances.
This heterogeneity creates several interoperability issues that make it very hard or impossible to realize a common trust baseline to build root of trusts across the different devices. Consequently, any realistic IoT deployment nowadays has unprotected devices. They are weak points that attackers can use to easily penetrate the whole system.
CROSSCON aims at extending the protection on the devices that are now unprotected and solving existing interoperability issues enabling the possibility to implement the basic protection and trust mechanisms on any device. This by also leveraging existing trust technology and available hardware features and security extensions and when necessary, strengthening their security. On top of these basic mechanisms, CROSSCON aims also at designing innovative trusted services to the more traditional ones, to address the new security requirements emerging from more powerful hardware and more complex and diverse usage scenarios.
Furthermore, existing trust technology are not open, making it difficult to develop new trusted applications implementing foundational trust services such as integrity checks, secure updates, secure communications, etc. and keeping high the entry point costs for new adopters.
CROSSCON aims at enriching the toolchain available to developers of trusted applications by making it easier to write them once and run them on different hardware, and by increasing considerably their assurance.