SciTransfer
Sec4AI4Sec · Project

Security Certification and Testing Tools for AI-Powered Software Systems

digitalPilotedTRL 6

Imagine building a house with a smart lock that can be tricked by a simple sticker. This project creates a 'security check' for AI to make sure it can't be fooled or biased. It also builds smarter tools that help programmers find bugs automatically without giving too many wrong alarms.

By the numbers
13
consortium partners
6
industrial partners
3
real-world validation scenarios
The business problem

What needed solving

AI components introduce new vulnerabilities like poisoning and bias that traditional security tools cannot detect. Simultaneously, AI-driven security tools produce too many false positives for companies to use in official certifications.

The solution

What was built

A set of open-source tools and methodologies for AI security testing, including benchmarking data and runtime monitoring techniques.

Audience

Who needs this

DevOps teams in critical infrastructureAI software vendorsCybersecurity certification agenciesAerospace system engineers
Business applications

Who can put this to work

Aviation
enterprise
Target: Aerospace manufacturer

If you are an aerospace manufacturer dealing with autonomous safety systems—this project developed assurance methods that ensure AI components are robust and safe for flight. This reduces the risk of system failure in critical aviation environments.

Telecommunications
enterprise
Target: 5G Infrastructure provider

If you are a 5G provider dealing with core network virtualization—this project developed runtime monitoring techniques that detect threats and correct misconfigurations. This prevents exploits in critical digital infrastructure.

Software Development
any
Target: Software certification body

If you are a certification body dealing with 3rd party software assessment—this project developed benchmarking data and certification processes. This allows for a standardized way to verify that AI-augmented software is actually secure.

Frequently asked

Quick answers

What is the cost or pricing for these tools?

Based on available project data, no specific pricing or cost information is provided as the project focuses on generating open-source tools and methodologies.

Can this be scaled to a full industrial level?

Yes, the project validates its approach through real-world pilots in 5G, aviation, and software certification, involving large enterprises like Airbus, SAP, and Thales.

Who owns the IP and what are the licensing terms?

The project aims to generate a set of open-source tools, though specific licensing agreements for the 13 partners are not detailed in the provided text.

How does this help with regulatory compliance?

It develops certification methods and assurance processes for AI/ML components to align with the European Digital Resilience and Sovereignty strategy.

How is this integrated into existing workflows?

The tools are designed to support DevOps teams in secure coding and vulnerability mitigation, specifically targeting the reduction of false positives in AI-powered security tools.

Consortium

Who built it

The consortium is heavily weighted toward industrial application, with a 46% industry ratio comprising 6 companies, including global giants like Airbus, SAP, and Thales. This balance of 5 universities and 4 SMEs ensures that the research is grounded in commercial reality and targeted at high-value sectors like aerospace and telecommunications.

How to reach the team

Contact Universita Degli Studi di Trento

Next steps

Talk to the team behind this work.

Contact us to explore the open-source tools for AI security certification.