Start of the Project

due on: September 01, 2021

The project has started in September 2021, and the timeline, milestones ordered by the due date were created. Five different activities will be considered throughout the project as described in the project proposal and the grant agreement. And these activities were defined:
1. Project management and coordination
2. Methodology for the conformity self-assessment and basic assurance
3. Proof of concept for the self-assessment and basic level of assurance
4. Proposal of a process to evaluate conformity based on cybersecurity risks
5. Training and dissemination.

Milestone 2

due on: February 15, 2022

One of the First Milestones is the White-paper on the state-of-the-art standardization approaches in cybersecurity and is due on February 15, 2022.

Milestone 3

due on: March 15, 2022

Report with basic concepts finalised (including the target audience identification, main domains of technical inquiry for the risk assessment approach. Due on March 15, 2022.

Milestone 4

due on: August 31, 2022

Elaborate a set of questionnaires, and possible recommendations for the self-assessment and the basic level of assurance, due on August 31, 2022.

Milestone 5

due on: February 15, 2023

PoC for self-certification and basic level of assurance has been completed, due on February 15, 2023.

Milestone 6

due on: April 15, 2023

Conformity assessment guidance document gathering results of the [Basic steps and actors in the certification process] and the [Development of auditor profile] has been finalised.

Milestone 7

due on: April 30, 2023

Completion of the feasibility study by April 01 (delayed to April 30th), 2023.

Milestone 8

due on: June 01, 2023

Elaboration of CORAL presentation materials (instead of training materials) by June 01.

Milestone 11

due on: June 09, 2023

The beneficiaries have participated in working groups of the European Cybersecurity Certification Group AND/OR have contributed to activities organized in the context of the European cooperation platform for cybersecurity certification set-up by the EC. Due by October 31, 2023.

Milestone 10

due on: July 31, 2023

Published articles about the project, our findings, and contribution to keeping products and services safe on the market. Due by June 01 but delayed to July 31, 2023.

Milestone 9

due on: October 01, 2023

Produced promotional videos. Due by September 30, 2023. Extra video published on October 31, 2023.

End of the EC funding

due on: December 15, 2023

Completion and submission of the final report to the EC. The project, however, will move on and continue developing! Due by December 15, 2023.

The project has a continous development and improvement over time. Below, we will see all major progress, ordered from the latest to the oldest.

All updates

Some more CORAL documents that can be useful

The CORAL project partners have 2 more reports to share with the public in the context of CSA and cybersecurity certification. There are two questions that we looked at:

CORAL Videos

All promotional videos for CORAL are out!

Thank you for taking part in our CORAL Event

On behalf of the CORAL project consortium, thank you for attending our CORAL event on the 18th of October!

CORAL Event Agenda

The CORAL project consortium is pleased to invite you to its CORAL end-of-project event. Key facts: Time: Oct. 18, 2023 from 13:40 to 16h40 Place: Luxembourg House of Cybersecurity, 122...

The Phase 1 Feasibility study results are out

The feasibility study, in its initial phase, has been completed and the report with the results have just been published. We have reached out to an audience of over 40...

CORAL presentation at ICT Spring Luxembourg

ICT Spring is one of the most prominent yearly events in Luxembourg in the area of technology and innovation. Participants to ICT Spring range from decision makers, to startups, researchers...

CORAL discussed at ECCG meeting

We are happy to discuss CORAL and its approach at the ECCG meeting today. ECCG stands for European Cybersecurity Certification Group and is composed of representatives of national cybersecurity certification...

CORAL's Fit4CSA Feasibility study started

We are seeking feedback to the first tool that streamlines the basic-level CSA certification of an ICT service, product or process!

First version of Fit4CSA is out

CORAL’s proof of concept has materialised in its first version, and it is called Fit4CSA.

Your possibility of contributing to the first European Cybersecurity certification project based on the CSA

With the entry into force of the Cybersecurity Act, cybersecurity certifications are becoming a crucial trust factor for business success for SMEs in charge of ICT products, services or processes....

Target Audience & Domains of Technical Requirements

In this activity, the CORAL team focuses on the identification of CSA’s basic target audience, the definition of low-complexity products, services, which is dedicated to the identification of the category...

State-of-the-Art: Cybersecurity standards and guidelines for low-complexity, low-risk products, services, and processes

In the state of the art, the team reviewed and analyzed requirements and considerations from widely accepted published standards and guidelines to serve as a source of generic requirements and...

Welcome to the Project!

We have signed the European Commission Grant Agreement with the number INEA/CF/ICT/A2020/2397459 for the European Project. CASES, ILNAS and ANEC are ready to start working on the project and start...