Extended zero-trust and intelligent security for resilient and quantum-safe 6G networks and services

Project number: 101192749

Project acronym: XTRUST-6G

Full title: Extended zero-trust and intelligent security for resilient and quantum-safe 6G networks and services

Call: HORIZON-JU-SNS-2024

Topic: HORIZON-JU-SNS-2024-STREAM-B-01-04 — Reliable Services and Smart Security–Standardisation and Follow-up/PoCs

Type of action: HORIZON JU Research and Innovation Actions

Effective start/end date: 1/01/25 → 31/12/27 (36 month)

 

The project aims to establish a robust security framework for 6G ecosystems, underpinned by the zero-trust principle and emphasizing core tenets like resilience, privacy, and dependability. Dynamic access control via a context-aware risk-based policy engine, leveraging rich cyber-threat intelligence and behavioral insights gathered from the 6G infrastructure, is at the core of the proposed approach. Micro-segmentation of vulnerable virtualized functions from critical O-RAN assets is a primary goal to prevent attackers’ lateral movement capabilities and minimize damage. Proactive security measures will be deployed alongside sophisticated AI tools to optimize attack surface reduction and enhance intrusion detection capabilities. An intelligent extended detection and response solution will be developed, covering all layers of a 6G network; this entails the integration of collaborative intrusion detection networks and graph-based threat models, facilitating real-time and optimal responses to sophisticated multi-stage attacks targeting the 6G ecosystem. Automation will be pivotal in various aspects, including threat modeling and response orchestration, aided by blockchain to secure integration and lifecycle management of 6G applications. Moreover, the project will prioritize supply chain security by implementing automated vulnerability scanning and introducing O-RAN application certification. Quantum-safe technologies (QKD and PQC) and AI-driven solutions will be employed to safeguard against physical layer attacks, ensuring uninterrupted and secure data transmission in 6G networks. Additionally, privacy-preserving and trusted AI/ML schemes will be developed upholding principles like fairness, explainability, and sustainability to ensure high energy efficiency and minimal environmental footprint of the proposed solutions. These efforts aim to ensure that critical 6G communications infrastructure achieves high security and resilience against evolving cyber threats.

TALTECH infrastructure (for pilot P2)
An extensive infrastructure and advanced equipment are made available by TALTECH; they include an autonomous vehicle (AV) shuttle minibus engaged in pilot operations on specified roads, replicating essential urban elements and traffic infrastructure found in a city. The test track features a private 5G+ mobile network, various smart units, like intelligent traffic signs, EV chargers, and other 6G UEs for V2V and V2I experiments. Smart traffic infrastructure (iseAuto) that includes pedestrian crossings, traffic lights, etc., is available and forms the backbone of TALTECH’s mobility as a service (MaaS) ecosystem; it provides an architecture and open service, referencing the Estonian X-Road concept, which deliver mobility solutions requests asynchronously. Moreover, the above are complemented by TALTECH’s IOD big data platform for automated vehicle sensors that serves as a centralized repository designed to collect & store a wealth of vital data (navigation, environmental, sensor) generated from the autonomous shuttle’s operations.

Consortium