In the years 2021–2024, we conducted the project “Laboratory for Testing the Vulnerability of Stationary and Mobile IT Devices as well as Algorithms and Software (LaVa)”. The project was funded by the National Centre for Research and Development.
The objective of the project was to build a vulnerability analysis laboratory equipped with:
- an experimental laboratory testbed for vulnerability testing of devices and software;
- tools for vulnerability scanning in IT systems using innovative methods developed during the project;
- tools for static application analysis and behavioral analysis.
As a part of the project, a coherent methodology for conducting security research on selected IT technologies was developed, based on innovative methods for detecting vulnerabilities to cyber threats in hardware, software, and algorithms.
PROJECT RESULTS:
- Development of methods and tools for vulnerability testing of mobile applications.
- Development of methods and tools for vulnerability testing of IoT devices – vulnerabilities at the hardware, firmware, and protocol levels.
- Development of methods and tools for vulnerability testing of complex cyber-physical systems.
- Development of methods and tools for automating the testing of authorization mechanisms in access management.
- Development of a coherent methodology for conducting security research on technologies of backbone components of next-generation telecommunications networks, in particular 5G.
- Construction of a research platform (laboratory) for comprehensive vulnerability testing of IT systems and devices against cyber threats.
- Preparation of documentation for the implementation of the research platform and services for vulnerability testing of IT devices and software.
PROJECT PARTICIPANTS:
- National Research Institute NASK
- Warsaw University of Technology
- Galach Consulting Sp. z o.o.
Implementation period: 01.05.2021 – 30.09.2024.
Project value: PLN 11,505,385.00.
