Deliverables

D2.3 defines the format of the Device Security Passport, which is one of the central pieces of the DOSS architecture. Based on OSCAL, this digital document merges in a readable and actionable format relevant security related device descriptors like the MUD file, the SBOM, HBOM, VEX, and also includes additional…

D3.1 presents a unified component testing methodology that integrates various automated security testing approaches tailored for IoT devices, including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Interactive Application Security Testing (IAST) and the validation of security patches. The methodology described here is intended to form the conceptual…

D2.2 elaborates the integrated IoT supply chain concept  of DOSS.  With the DOSS Supply Trust Chain, which is the orchestrated interaction of the various actors of the IoT supply chain based on a modular architecture and elaborated workflow, the whole lifecycle of a product (device or application) from design to…

D7.5 represents the first version of the Data Management Plan (DMP). It offers a basic understanding of the data that will be collected by the Pilots during their demonstration and evaluation activities and outlines a strengthened data security and backup strategy to ensure the utmost robustness and reliability in data…

D2.1 builds on best practices and guidelines, standards and regulations, and other private sources that analyze supply chain security and privacy requirements, attacks, and vulnerabilities. It classifies a set of domain-agnostic security requirements, applicable in diverse environments, that a trusted supply chain should fulfill. In the context of the DOSS…