CCAT: European Research Project

We develop open-source tools for cybersecurity verification.

We are a proud partner of the new European project Cybersecurity Certification and Assessment Tools (CCAT).

Led by the CRoCS research group from the Department of Computer Systems and Communications at Masaryk University’s Faculty of Informatics, this three-year project aims to create practical, open-source tools for cybersecurity certification and assessment in compliance with new EU legislation.

All tools will be open-source and available to everyone, free of charge.

The project involves a strong European consortium consisting of leading academic institutions and technology companies specializing in cybersecurity:

Universities and Research Institutions:

Paderborn University (DE)
Università Ca’ Foscari Venezia (IT)
University of Tartu (EST)

Private Companies and Industrial Partners:

Monet+ (CZ)
Cybernetica AS (EST)
10Sec S.r.l. (IT)

Associated Partners:

Red Hat (CZ)
Tropic Square (CZ)

Clear methodologies and tools for a secure future

The European Cybersecurity Act and Cyber Resilience Act are becoming increasingly demanding. Our mission within the project is to ensure that the resulting tools are practically applicable for companies, helping them meet these rigorous standards with ease.

For Monet+, this collaboration represents another step toward building a trustworthy digital environment where security is not just a theoretical concept, but a measurable and certifiable parameter.

Monet+’s Role in CCAT

As experts in applied cryptography and software security, we serve as the testing and validation partner in the CCAT project. Our role is to ensure that theoretical models and academic tools succeed in real-world commercial environments and during integration into critical infrastructure.

Our goal is to develop and test practical open-source tools that help companies and institutions effectively verify the security of products and services, while providing developers with clearer guidance on how to meet European cybersecurity requirements.

Technological tools of CCAT

The project is built on the development and integration of four existing tools that are vital to the security of the digital ecosystem:

TLS-Scanner: A tool for assessing the security of TLS clients and servers to identify vulnerabilities and configurations issues.

SCRUTINY: A set of tools of evaluating cryptographic implementations in both hardware devices (e.g., smart cards) and software libraries.

ALVIE: A tool for analyzing the security architectures of embedded systems with respect to vulnerabilities, combining formal methods with vulnerability research.

sec-certs: A platform for analyzing the environment of certified cybersecurity products, mapping the dependencies between certified products and newly emerging vulnerabilities.

The project is supported by the European Cybersecurity Competence Centre (ECCC) under Grant Agreement No. 101225878.

Funded by European Cybersecurity Competence Centre (ECCC).

The Cybersecurity Certification and Assessment Tools (CCAT) project is a Horizon Europe Innovation Action (HORIZON-IA, topic: HORIZON-CL3-2024-CS-01-01 – Approaches and tools for security in software and hardware development and assessment) with a total budget of €4,223,156.