Fund the frontier.

DARK-5G delivers reliable 5G connectivity in underground environments to support emergency response. The solution combines the i46 portable 5G Standalone network with Rinicom's leaky cable system, ensuring continuous coverage in tunnels and confined spaces.

Validated at Patras5G/PNET using the FIDAL platform, it supports advanced features such as network slicing, mission-critical (MCX) services, and AI-driven operations. Complementary IoT devices enhance detection and extend connectivity, resulting in a resilient, rapidly deployable network for real-world emergency conditions.

GOALS Project objectives

• Portable, rapidly deployable 5G for emergency communications in subway tunnels, mines, and collapsed buildings
• Integrate 5G SA architecture with resilient hardware (network-in-a-box + leaky feeder cables)
• IoT-based device detection via WiFi & 5G sensors for real-time localization of survivors and responders
• AI-driven resource optimization and network slicing for prioritized first-responder communications
• Validate through lab & field trials with seamless integration into the FIDAL experimental framework

Developed under the CyberSecDome Open Call framework and led by i46 s.r.o., SHIELD advances cybersecurity defenses by integrating a state-of-the-art Intrusion Prevention System into network flow analysis pipelines.

The project focuses on the creation and delivery of representative network traffic datasets to train and validate ML models. These include realistic attack scenarios: port scanning, DDoS, ping floods, insider threats : and benign activity like OS updates, captured in PCAP to allow replay, labelling, and detailed analysis.

GOALS Project objectives

• Develop and validate PCAP datasets that accurately capture attack and benign scenarios
• Enable training of AI-driven IPS models with high detection accuracy and minimal false positives
• Secure, ethical, and compliant data governance aligned with GDPR and EU AI standards

Leveraging a representative testbed, the project establishes a dedicated testing environment integrating cloud servers, local servers, and geographically distributed IoT devices.

CATT-46 supports diverse attack scenarios: website penetration (with and without credentials), server- and client-side intrusions, and API-level exploitation : to assess the tools' performance under real-world conditions.

GOALS Project objectives

• Simulate real-world IoT cyber threats (malware, DDoS, data exfiltration, phishing) in a controlled environment
• Evaluate CyberSecDome's AI-driven penetration testing tools across multiple scenarios
• Achieve ≥ 90% tool utilisation, ≥ 90% vulnerability discovery rate, ≥ 90% resilience assessment accuracy
• Deliver actionable recommendations to improve accuracy, usability, and adaptability of the tools

DISK46 is the swift, efficient, and transparent solution for achieving compliance with the EU Cyber Resilience Act, simplifying the integration of automated disk encryption and secure boot into unattended and remote IoT deployments.

KEY Features

• Pre-installed LUKS encryption
• Automated secure boot with Clevis
• Secure key retrieval via i46 server
• On-demand Software Bill of Materials (SBOM)

WHY Why it matters

The EU Cyber Resilience Act is non-negotiable. It mandates that all 'products with digital elements'; especially IoT and edge devices which must protect the confidentiality and integrity of stored data.

DISK46 directly resolves this challenge by combining encryption at rest (LUKS), verified integrity during boot (Clevis-based decryption), and transparent documentation (SBOM generation). Manufacturers demonstrate technical compliance with Annex I (e) and (f) : turning a regulatory hurdle into a competitive advantage.

Proposed by the consortium of i46 and IMA (acquired by Witte Automotive) under the TARGET-X Open Call, 5G-SAIIoT advances secure connectivity for Industrial IoT. Its key innovation is Device-to-Device Authentication (D2DA), which extends beyond conventional user-centric mechanisms to ensure that only authorized devices communicate and interact within the network.

GOAL Three-layer authentication

• Device-level: device authenticity via D2DA
• Network-level: secured communication through 5G
• Cloud-level: authorized access to i46 platform resources

OUTCOME Results

A holistic, three-layer authentication system validated in large-scale testbeds: the IMA/Witte Automotive factory in Prague and Target-X's Aachen testbed; demonstrating operational scalability at TRL 7. Built on a 6G-aligned, decentralized trust architecture, the solution supports device autonomy and future functionality integration. All software will be open-source.

SpaceBox adapts i46's DISK46 encryption stack for space-grade computing hardware, relocating the encryption vault to orbit to eliminate the physical attack surface of ground-based systems. Built around a QRNG one-time-pad engine and multi-party authorization, the vault is isolated from the internet entirely: reachable by authorised parties, unreachable by adversaries.

Co-designed with Rinicom Ltd., a secure communications operator for critical infrastructure, targeting TRL 4 breadboard validation. Project period: March – November 2026.

GOALS Project objectives

• Adapt DISK46 to space-grade, radiation-tolerant platforms
• Implement QRNG/OTP vault with multi-party key isolation
• Validate requirements with Rinicom & Brno University of Technology
• Demonstrate breadboard against space hardware constraints
• Deliver commercialisation roadmap for in-orbit deployment

KEY Features

• Post-quantum encryption: QRNG-derived, unconditional confidentiality
• Off-planet sovereignty: no terrestrial tamper surface
• Offline-capable: operational during blackouts & outages
• Multi-party authorization: no single point of compromise
• Non-custodial: data inaccessible to operator without physical satellite access

WHY Why it matters

Quantum computers capable of breaking RSA and ECC are expected by the early 2030s: adversaries are already harvesting encrypted data today for future decryption. Classical HSMs, cloud vaults, and cold storage remain vulnerable to physical compromise, insider misuse, and internet dependency. SpaceBox places the vault beyond physical reach, removes internet reliance, and applies encryption no future computer can break.

Supported by ESA Technology Broker Czech Republic through the ESA Spark Funding initiative. esa-technology-broker.cz →

Moore4Power is a 36-month EU Horizon Chips JU project bringing together ~60 consortium partners to advance next-generation power electronics for energy, automotive, and industrial domains. i46 leads the Trust & Security cross-innovation track (CIT1.4), developing CID1.4.4 : a strong authentication framework for offline IoT devices. The solution combines time-based parameters with QRNG-derived keys to deliver multi-party OTA authorization that is fully resistant to quantum attacks anticipated by 2030.

GOALS i46 Objectives

• Define requirements for OTP integration into hardware security elements (WP1)
• Develop QRNG-based authentication framework for offline IoT devices (WP2)
• Implement multi-party OTA authorization : N-of-M approval before any update executes
• Build open demonstration facility for third-party quantum-resistance testing (WP4)
• Disseminate via 10+ social posts, articles, workshops with CTU Prague & BUT Brno

KEY Exploitable Results

• Highly secured remote access: QRNG one-time keys for OTA & physical updates (TRL3→7)
• Secure IoT-to-cloud transmission: asymmetric encryption, private key never exposed (TRL6→7)
• Multi-party authorization API: N-of-M approval enforced at hardware level (TRL3→7)
• Demonstration facility open to third parties for remote quantum-resistance validation
• Security-by-design compliance aligned with the EU Cyber Resilience Act

WHY Why it matters

Power electronics systems such as inverters, converters, smart grid nodes, are increasingly internet-connected and AI-driven, yet secured by classical asymmetric encryption that quantum computers will break by ~2030. A compromised OTA update pipeline or remote access channel in critical energy or mobility infrastructure carries catastrophic consequences. i46's QRNG-based authentication eliminates this vector, ensuring that sensitive operations remain sovereign and tamper-proof regardless of future computational advances.