The International Chair in Blockchain for Cybersecurity (CyberChain)

Cybersecurity Week took place from May 5th to 7th in Salamanca, Spain, organized jointly by the University of Salamanca and the National Cybersecurity Institute (INCIBE). This event gathered a diverse group of cybersecurity experts, institutions, and prominent projects dedicated to advancing digital security. It featured discussions and presentations addressing the latest challenges, trends, and innovations in cybersecurity. A key component of the event was a roundtable focused on "international projects," where leading initiatives from across Europe shared insights and progress in securing digital ecosystems.

The European project CERTIFY was prominently featured during the roundtable on international cybersecurity projects, represented by the Spanish partner AIR Institute and cybersecurity specialist Pablo Plaza. Plaza outlined CERTIFY’s main goal: to secure the entire lifecycle of Internet of Things (IoT) devices by embedding security from the design stage, rather than treating it as an afterthought. CERTIFY employs a flexible and adaptable methodological framework tailored to the specific needs of different devices and operating environments. The project integrates secure hardware components and applies efficient cryptographic protocols alongside the Manufacturer Usage Description (MUD) standard. This standard facilitates secure management of network traffic without overburdening the device's limited resources, addressing critical challenges unique to IoT ecosystems.

CERTIFY stands out for its comprehensive, dynamic security architecture, designed to operate effectively in the real world where IoT devices vary widely and often face technical constraints. The project emphasizes cybersecurity as an essential part of functional design, enabling key features such as secure Over-The-Air (OTA) firmware updates protected by cryptographic signatures. These mechanisms ensure device security without compromising performance or usability. The roundtable also discussed common challenges in implementing strong security measures in devices that weren’t originally designed with security in mind, highlighting CERTIFY’s role as a forward-thinking, adaptable solution. Currently, CERTIFY is integrating its security solutions into practical, real-world scenarios, with upcoming presentations planned to demonstrate the feasibility and effectiveness of its approach to various stakeholders across the industry.