Skip to main content

Compositional security certification for medium- to high-assurance COTS-based systems in environments with emerging threats

Objective

certMILS develops a security certification methodology for Cyber-physical systems (CPS). CPS are characterised by safety-critical nature, complexity, connectivity, and open technology. A common downside to CPS complexity and openness is a large attack surface and a high degree of dynamism that may lead to complex failures and irreparable physical damage. The legitimate fear of security or functional safety vulnerabilities in CPS results in arduous testing and certification processes. Once fielded, many CPS suffer from the motto: never change a running system.
certMILS increases the economic efficiency and European competitiveness of CPS development, while demonstrating the effectiveness of safety & security certification of composable systems.
The project employs a security-by-design concept originating from the avionics industry: Multiple Independent Levels of Security (MILS), which targets controlled information flow and resource usage amongst software applications. certMILS reduces certification complexity, promotes re-use, and enables secure updates to CPS throughout its life-cycle by providing certified separation of applications, i.e. if an application within a complex CPS fails or starts acting maliciously, other applications are unaffected.
Security certification of complex systems to medium-high assurance levels is not solved today. The existing monolithic approaches cannot cope with the complexity of modern CPS. certMILS uses ISO/IEC 15408 and IEC 62443 to develop and applies a compositional security certification methodology to complex composable safety-critical systems operating in constantly evolving hostile environments. certMILS core results are standardised in a protection profile.certMILS develops three composable industrial CPS pilots (smart grid, railway, subway), certifies security of critical re-useable components, and ensures security certification for the pilots by certification labs in three EU countries with involvement of the authorities.

Call for proposal

H2020-DS-2016-2017

See other projects for this call

Sub call

H2020-DS-LEIT-2016

Coordinator

TECHNIKON FORSCHUNGS- UND PLANUNGSGESELLSCHAFT MBH
Net EU contribution
€ 270 692,65
Address
Burgplatz 3a
9500 Villach
Austria

See on map

Region
Südösterreich Kärnten Klagenfurt-Villach
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)
Other funding
€ 116 011,13

Participants (11)

ATSEC INFORMATION SECURITY GMBH
Germany
Net EU contribution
€ 433 650,00
Address
Steinstrasse 70
81667 Muenchen

See on map

SME

The organization defined itself as SME (small and medium-sized enterprise) at the time the Grant Agreement was signed.

Yes
Region
Bayern Oberbayern München, Kreisfreie Stadt
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)
Other funding
€ 185 850,00
SCHNEIDER ELECTRIC ESPANA SA
Spain
Net EU contribution
€ 390 250,00
Address
Bac De Roda 52 Edif A
08019 Barcelona

See on map

Region
Este Cataluña Barcelona
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)
Other funding
€ 167 250,00
DEKRA TESTING AND CERTIFICATION SAU
Spain
Net EU contribution
€ 343 875,00
Address
Calle Severo Ochoa 2 Parque Tecnologico Campanillas
29590 Malaga

See on map

Region
Andalucía Málaga
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)
Other funding
€ 147 375,00
GTS GROUND TRANSPORTATION SYSTEMS AUSTRIA GMBH
Austria
Net EU contribution
€ 440 125,00
Address
Handelskai 92
1200 Wien

See on map

Region
Wien Wien
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)
Other funding
€ 188 625,00
Third-party

Legal entity other than a subcontractor which is affiliated or legally linked to a participant. The entity carries out work under the conditions laid down in the Grant Agreement, supplies goods or provides services for the action, but did not sign the Grant Agreement. A third party abides by the rules applicable to its related participant under the Grant Agreement with regard to eligibility of costs and control of expenditure.

SYSGO GMBH

Participation ended

Germany
Net EU contribution
€ 0,00
Address
Am Pfaffenstein 8
55270 Klein Winternheim
Region
Rheinland-Pfalz Rheinhessen-Pfalz Mainz-Bingen
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)
Other funding
€ 0,00
UNICONTROLS A.S.

Participation ended

Czechia
Net EU contribution
€ 139 769,86
Address
Krenicka 2257
100 00 Praha
SME

The organization defined itself as SME (small and medium-sized enterprise) at the time the Grant Agreement was signed.

Yes
Region
Praha Hlavní město Praha
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)
Other funding
€ 59 901,37
SYSGO SRO
Czechia
Net EU contribution
€ 501 900,00
Address
Zeleny Pruh 1560/99
140 00 Praha

See on map

Region
Praha Hlavní město Praha
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)
Other funding
€ 215 100,00
UNIVERSITAET ROSTOCK
Germany
Net EU contribution
€ 458 250,00
Address
Universitatsplatz 1
18055 Rostock

See on map

Region
Baden-Württemberg Stuttgart Stuttgart, Stadtkreis
Activity type
Higher or Secondary Education Establishments
Other funding
€ 0,00
ELEKTROTECHNICKY ZKUSEBNI USTAV, SP
Czechia
Net EU contribution
€ 154 525,00
Address
Pod Lisem 129/2, Troja
182 00 Praha

See on map

SME

The organization defined itself as SME (small and medium-sized enterprise) at the time the Grant Agreement was signed.

Yes
Region
Praha Hlavní město Praha
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)
Other funding
€ 66 225,00
SYSGO GMBH
Germany
Net EU contribution
€ 663 018,13
Address
Am Pfaffenstein 8
55270 Klein Winternheim

See on map

Region
Rheinland-Pfalz Rheinhessen-Pfalz Mainz-Bingen
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)
Other funding
€ 284 150,62
Q-MEDIA, S.R.O.
Czechia
Net EU contribution
€ 202 999,99
Address
Pocernicka 272/96
108 00 Praha

See on map

Region
Praha Hlavní město Praha
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)
Other funding
€ 87 000,00