Software provenance provides the auditable evidence needed to meet compliance objectives across regulatory, contractual, and policy requirements. By recording and verifiably linkin...
TECHNICAL ADVANCEMENTS
eknows-e3 (eknows evidence extractor) is part of the evidence gathering tools which are being developed in EMERALD and supports the assessment of security and compliance of a cloud...
The EMERALD project aims to make the complex world of cybersecurity certification easier to navigate. To do this, we are designing a user interface (UI) that guides our target user...
The EMERALD project reached its milestone MS5 in October 2025. This milestone, located in month 24, corresponds to the second version (V2) of the EMERALD CaaS components.EMERALD ...
The development of the AI-SEC tool [1] is making steady progress. This tool is designed to systematically evaluate various security and trustworthiness properties of AI models in a...
In EMERALD’s Work Package 4, we adopted a co-creation and co-design approach - a way of developing technology with users rather than for them. This method brings together those w...
Work to integrate EMERALD metrics into the security-metrics repository is making steady, practical progress [1]. The initial content and category scaffolding have been added, and a...
The EU project "EMERALD" is developing a framework with new approaches for cloud security compliance with a focus on the user. As cyberattacks, data breaches, and regulatory requir...
MARI is an intelligent component developed in EMERALD by CNR to support compliance activities in the context of cybersecurity certification schemes. Its main goal is to automate th...
As in one previous fragment presented, the CertGraph Ontology is proposed as an extensible approach to model evidence. The foundation of the ontology is Core, which consists of the...