SecOPERA stands for Secure OPen source softwarE and hardwaRe Adaptable framework. SecOPERA aims to provide a one-stop hub for complex OSS/OSH (Open-Source Software/Open-Source Hardware) solutions delivering to a connected device designer, implementer and operator as well as any open-source software/hardware developer, the means to analyse, assess, secure/harden and share open-source solutions as those are integrated in an overall complex product developed for a networked connected environment. SecOPERA achieves its tasks by taking any complex OSS/OSH solution and decomposing it into four distinct layers: cognitive, network, application, and device layers. The SecOPERA framework then makes use of state-of-the-art security testing tools and other specialized tools designed for operations such as code debloating, updating/patching on each layer, providing better and more accurate results. The SecOPERA hub offers to the open-source community a framework supporting the open-source DevSecOps lifecycle and generates secure open-source solutions along with an appropriate, verifiable security guarantee.
