VESSEDIA (Verification Engineering of Safety and Security Critical Industrial Applications) aims at enhancing safety and security of information and communication technology (ICT) and especially the Internet of Things (IoT). More precisely the aim of this project consists in making formal methods more accessible for application domains that want to improve the security and reliability of their software applications by means of Formal Methods.

VESSEDIA will tackle this challenge by:

• developing a methodology that allows one to adopt and use source code analysis tools efficiently and produce similar benefits in other application domains of lower criticality than for highly-critical applications (i.e. an exhaustive analysis and extraction of faults)
• providing an enhanced toolbox (Frama-C) to enable easy and efficient use by developers
• demonstrating the new toolbox capabilities on typical IoT applications including an IoT Operating System (Contiki)
• developing a standardisation plan for generalising the use of the toolbox to a wider set of applications
• contributing to the Common Criteria certification process
• defining Security Certification Levels (SCL) for lower critical IoT devices where Common Criteria certification is not convenient in practice
• defining a label “Verified in Europe” for validating software products with European technologies such as Frama-C

The VESSEDIA consortium brings together a team of recognized partners in the fields of industry and research in combination with innovation-oriented SMEs and a certification expert. This makes it suitable to achieve the project’s objectives. These 10 VESSEDIA partners are spread over 7 European countries and comprise basic research and service design with applied research and end-user oriented service.