SECASSURED

The project aims to strengthen software supply chains by introducing a data-driven, AI-empowered framework for assurance-driven security engineering that delivers continuous compliance, proactive threat management, and certifiable trustworthiness across the IoT-edge-cloud continuum.

SECASSURED turns assurance into a continuous, intelligent process, delivering a data-driven, AI-powered, and continuously adaptive assurance-driven toolbox built around digital twins covering both development and operational phases. The project will run for a period of three years with EUR 6 million funding from the European Commission’s Horizon Europe program.

The concept is based on the principle of assurance-driven security engineering – embedding security and compliance as continuous, adaptive processes rather than one-time verifications. The framework integrates AI-driven assurance services, federated digital twins, and SecDevOps/MLOps pipelines, allowing organizations to model, test, and validate systems in secure, virtual environments before and after deployment.

This concept transforms security operations from reactive defence into proactive, predictive assurance, where automated compliance management, vulnerability discovery, and real-time adaptation continuously improve the security and resilience of critical infrastructures.

Key innovation pillars include:

• Continuous assurance through security assurance models.
• Digital twin-based secure environments for testing and validation.
• AI-powered services for detection, repair, and orchestration.

The SECASSURED project results will be validated in five use-cases – telecommunications, manufacturing, renewable energy, eHealth, and smart electric vehicle charging with fleet management.

The consortium encompasses all stakeholders of the digital ecosystems, including critical infrastructure service operators, technology providers, software developers, and security research experts.

The project is coordinated by SINTEF AS (Norway).