Programming Platform for Intelligent Collaborative Deployments over Heterogeneous Edge-IoT Environments

The INCODE project addresses the increasing demands in IoT and edge computing by developing a highly programmable platform for managing end-user applications over distributed, heterogeneous, and trusted IoT-Edge node infrastructures. INCODE's motivation lies in the need for decentralized intelligence, secure data processing, and efficient resource management in IoT ecosystems, aligning with Europe’s goals of technological sovereignty and sustainability as part of the digital and green transitions. INCODE focuses on enhanced programmability at both network infrastructure and service design levels, streamlining operations across the device-edge-core-cloud continuum.
INCODE is built on four pillars: Infrastructure Management, which develops a scalable management layer with enhanced programmability across the IoT-edge-core continuum through an orchestration framework; an Open and Extensible Toolset, offering a programming toolset for large-scale edge device deployment and management via a multi-role Internal Developer Platform (IDP); Security and Trust, establishing a framework for secure registration and authentication of IoT devices and edge nodes; and Validation Across Diverse Use Cases, ensuring adaptability and scalability across sectors such as smart logistics, manufacturing, utility inspection, and public protection.
INCODE is expected to significantly contribute to technological advancement by enhancing programmability and security in IoT ecosystems, fostering decentralized intelligent systems crucial for next-generation smart systems. The project supports Europe’s green transition by optimizing resource use, reducing energy consumption, and promoting localized edge decision-making, reducing reliance on cloud-based processing. It drives innovation in smart manufacturing, logistics, and utilities, especially aiding SMEs in developing specialized applications. By focusing on open and secure technologies, INCODE also strengthens Europe’s strategic autonomy in digital infrastructure.
Overall, INCODE aims to impact various sectors by enabling efficient resource use, improving security, and supporting IoT application innovation across key areas, while advancing Europe’s technological and sustainable development goals.

During this reporting period, INCODE focused on defining and categorizing platform requirements, developing a comprehensive reference architecture, and integrating key components. The design and deployment of the platform were completed, including testing of controllers and drivers across the two testbeds. This work laid the foundation for subsequent development and ensured seamless integration across the IoT-edge-cloud continuum. In parallel, efforts centered on the design and implementation of the Distributed Resource Management Layer and the Security and Trust Layer. This included the development of core components such as the Resource Manager, Scheduler, and controllers, alongside the initial implementation of security features like identity management, attestation, and attack mitigation. These advancements enable efficient and secure resource management across the platform. progress was also made on the end-to-end service management layer, including the development of user interfaces, role-based access control (RBAC) APIs, and integration with the service orchestrator. Key achievements include the creation of a policy engine, a real-time telemetry system, and an Internal Developer Platform (IDP) to support application development. Last, work was made on the design, deployment, and interconnection of testbeds, along with the early testing of IoT sensors and data paths. This ensured readiness for the validation of use cases across various application areas, demonstrating the platform's capabilities in realistic environments.

During the 1st reporting period, the INCODE platform has introduced significant innovations that could be considered beyond the current state-of-the-art, particularly in the areas:
(a) Integrated Distributed Resource Management: The integration of a distributed resource management system across the IoT-Edge-Cloud continuum, with real-time optimization and contextual awareness, is a significant advancement. Traditional systems often manage resources in a more isolated or less dynamic manner, without the same level of real-time adaptability or seamless integration across heterogeneous environments, (b) Advanced Vertical Security & Trust Components: The implementation of advanced attestation mechanisms and the integration of role-based access control within service orchestration go beyond typical security solutions. This integration ensures not only secure data flows but also flexibility in how services are managed and accessed, which is crucial for dynamic and multi-tenant environments., (c) Dynamic End-to-End Service Management: The ability to provide dynamic orchestration and policy enforcement across different layers of the infrastructure, with real-time adaptability to changing conditions and requirements, represents a step beyond current frameworks. Most existing solutions do not offer this level of end-to-end control and flexibility, particularly in environments that span across IoT, edge, and cloud.
To capitalize on these advancements, during the 2nd period further development and demonstration activities will be needed to validate the platform across the 4 AAs. Additionally, securing pathways for commercialization, market access, and international collaboration, as well as aligning with evolving regulatory and standardization frameworks, will be critical to ensuring their broad uptake.