The SecBluRed project enters its final year. From amplía))) we will validate the prototypes developed over the past three years, combining decentralized identity, traceability and AI-based monitoring to strengthen IIoT security and resilience.

SecBluRed enters its final year: from research to validation

The SecBluRed project has started its fourth and final year. During the previous three, the amplía))) Innovation team has contributed to an ambitious European initiative that addresses one of the biggest challenges in the digital transformation of industry: how to protect Industrial IoT (IIoT) infrastructures against increasingly complex cyber threats.

This final phase is focused on designing and executing the experiments that validate the findings and conclusions reached so far. It is no longer just about theoretical frameworks or proofs of concept, but about demonstrating—through prototypes and metrics—that the proposed solutions can effectively improve the resilience of IIoT ecosystems.

Two innovation fronts

• Identity and traceability. One of the main research areas has been to guarantee that devices and their messages can always be trusted. To achieve this, we have combined decentralized identity mechanisms (DID, Self-Sovereign Identity) with Distributed Ledger Technologies (DLTs). Prototypes developed with Hyperledger Fabric and Hedera Consensus Service enable immutable recording of IIoT data, ensuring complete auditability of device communications and lifecycle, while we have also evaluated the use of networks such as IoTA for identity management. This work has been integrated into our OpenGate platform, enabling advanced functionalities for signing, verification and historical traceability of messages, which will be the core of the final experimentation.

• AI for proactive threat detection. Another key line of work has been the application of Artificial Intelligence to proactive security monitoring. Our team has developed models based on UEBA (User and Entity Behavior Analytics) to detect anomalies in IIoT traffic. Instead of relying on manually configured static thresholds, the models learn behavioral patterns and identify subtle deviations that may correspond to attacks. Validation combines anonymized operational data, synthetic anomalies and benchmark datasets, rigorously measuring performance (precision, recall, F1-score, false positives/negatives) and model explainability.

Why is this relevant?

Industrial networks are becoming increasingly connected and complex. Traditional rule-based monitoring systems are no longer sufficient to protect critical infrastructures such as energy, transportation or manufacturing. By embedding identity, traceability and AI-based monitoring into IIoT platforms, SecBluRed aims to deliver practical solutions that strengthen both security and trust at scale.

Next steps in Year 4

• End-to-end trials of the combined identity and traceability stack integrated in OpenGate, validating device-level message integrity with signed and verifiable logs.
• Comprehensive evaluation of AI-based anomaly detection models, comparing them against theoretical baselines and current monitoring practices.
• Integration and transfer of prototypes into product roadmaps, ensuring that innovation validated in the lab translates into real-world industrial applications.

This last year represents the transition from research to impact. The challenge is to prove that innovation can be transformed into robust, scalable and market-ready solutions capable of strengthening Industrial IoT cybersecurity across Europe.