Project Background
PrEVent delivers Europe’s first end-to-end cybersecurity framework for the e-mobility ecosystem, addressing the rising complexity of cyberattacks on EVs, charging stations, and grid systems. Aligned with the Cyber Resilience Act (CRA), NIS2, and ISO/SAE 21434, the project provides a modular, standards-based architecture. Key innovations include secure-by-design hardware, hardened firmware, post-quantum PKI, and AI-enhanced digital twins for threat detection. By utilising reinforcement learning for decision support, PrEVent enables self-healing capabilities and proactive incident response across EVs, EVSE, and backend platforms.
To ensure robustness, a shift-left testing methodology is applied before deployment across four European pilots, including car-sharing and logistics fleets. Beyond technology, PrEVent offers training to upskill the workforce and authorities on CRA compliance. The project provides an EU-wide exploitation roadmap to ensure adoption by OEMs and DSOs, securing EU leadership in trusted, zero-emission mobility and 2ZERO resilience goals.
To ensure robustness, a shift-left testing methodology is applied before deployment across four European pilots, including car-sharing and logistics fleets. Beyond technology, PrEVent offers training to upskill the workforce and authorities on CRA compliance. The project provides an EU-wide exploitation roadmap to ensure adoption by OEMs and DSOs, securing EU leadership in trusted, zero-emission mobility and 2ZERO resilience goals.
Project Objectives
ESTABLISH
a unified, scalable cybersecurity framework and secure modular architecture for the entire EU e-mobility landscape, fully aligned with current regulations.
PREPARE
against advanced threats by delivering CRA-compliant hardware guidelines, sophisticated risk analysis tools, and a robust Post-Quantum PKI solution.
DETECT
anomalies early using an AI-enhanced Digital Twin and visualisation dashboard to monitor the EV-to-grid ecosystem in real-time.
RESPOND
rapidly with an AI-driven multi-agent Decision Support System, managing cross-domain incidents and executing Over-The-Air (OTA) mitigation strategies.
VALIDATE
the system-of-systems resilience through novel co-designed penetration testing, rigorous lab trials, and attack simulations in the Digital Twin.
DEMONSTRATE
the full-lifecycle performance of PrEVent innovations across diverse real-world use cases, including e-buses, logistics, and V2G scenarios.
SUSTAIN
long-term cross-border impact through stakeholder engagement, policy recommendations, and scalable exploitation strategies for new innovations.
Project Facts
Duration
05/2026 to 10/2029
Programme
Horizon Europe
HORIZON-CL5-2025-04-D5-02
HORIZON Innovation Actions
Grant ID
101269392
Coordinator
ETRA INVESTIGACIÓN Y DESARROLLO SA
05/2026 to 10/2029
Programme
Horizon Europe
HORIZON-CL5-2025-04-D5-02
HORIZON Innovation Actions
Grant ID
101269392
Coordinator
ETRA INVESTIGACIÓN Y DESARROLLO SA
Project Impacts
IMPACT 1:
STRENGTHENED cybersecurity resilience of the entire European e-mobility “System-of-Systems,” protecting critical EV charging infrastructure from cross-domain attacks.
IMPACT 2:
ENHANCED data privacy and system trust through the deployment of Post-Quantum Cryptography (PQ-PKI) and Zero Trust Architecture, fully compliant with EU regulations.
IMPACT 3:
BOOSTED real-time threat detection capabilities using AI-driven Digital Twins (DeTwin) and federated learning, ensuring proactive anomaly identification across the EV grid.
IMPACT 4:
ACCELERATED incident response and recovery times for operators, powered by an intelligent Multi-Agent Decision Support System (DSS) with automated mitigation strategies.
IMPACT 5:
IMPROVED physical and cybersecurity hardening of EVSE and Automated Charging Devices (ACD-U), validating resilience through novel penetration testing frameworks.
IMPACT 6:
INCREASED market uptake and scalability of secure e-mobility solutions across the EU, supported by standardised certification methods and capacity-building training.
IMPACT 1:
STRENGTHENED cybersecurity resilience of the entire European e-mobility “System-of-Systems,” protecting critical EV charging infrastructure from cross-domain attacks.
IMPACT 2:
ENHANCED data privacy and system trust through the deployment of Post-Quantum Cryptography (PQ-PKI) and Zero Trust Architecture, fully compliant with EU regulations.
IMPACT 3:
BOOSTED real-time threat detection capabilities using AI-driven Digital Twins (DeTwin) and federated learning, ensuring proactive anomaly identification across the EV grid.
IMPACT 4:
ACCELERATED incident response and recovery times for operators, powered by an intelligent Multi-Agent Decision Support System (DSS) with automated mitigation strategies.
IMPACT 5:
IMPROVED physical and cybersecurity hardening of EVSE and Automated Charging Devices (ACD-U), validating resilience through novel penetration testing frameworks.
IMPACT 6:
INCREASED market uptake and scalability of secure e-mobility solutions across the EU, supported by standardised certification methods and capacity-building training.
Project Structure
WP1
Use case refinement, requirement definition, threat analysis and architectural design
The main objective of WP1 is to establish a unified and scalable cybersecurity foundation for the PrEVent solution. It will refine sector-specific use cases and functional requirements while identifying comprehensive threat scenarios across the entire e-mobility ecosystem (including EV, EVSE, and grid interactions). Finally, it will define a secure, modular system architecture that is fully compliant with all current cybersecurity regulations, development standards, and implementation protocols.
WP2
Prevention and preparation: threat modelling, guidelines for cyber-resilient hardware and firmware, PKI governance and PQC solutions for secure e-mobility system
The main objective of WP2 is to develop a suite of preventive measures and supportive tools that operators and manufacturers can use to significantly enhance the resilience of the entire e-mobility ecosystem against cyber and physical threats. The work package is building on the architecture defined in WP1, ensuring compliance with key regulatory and development standards (e.g., NIS2, CRA, ISO 15118-20). The main outcomes include the PreRisk tool, designed for advanced cross-domain cyber-physical risk analysis; CRA-compliant hardware and firmware hardening guidelines; and PrePQ-PKI, a solution to manage post-quantum cryptography within a Zero Trust framework.
WP3
Detection and monitoring: Digital twin-driven cyber-physical detection, monitoring and analytics
The main objective of WP3 is to develop and deploy an AI-enhanced monitoring and detection framework across the entire e-mobility ecosystem, from EVs and EVSE to management systems and grid interfaces. To achieve this, a physics-aware end-to-end Digital Twin (DeTwin) will be created, coupling high-fidelity physical representation with dedicated cyber-monitoring. This is supported by DeFed, a lightweight federated-learning intrusion-detection framework (NIDS) that fuses telemetry to flag anomalies. Finally, operators are provided with a role-based visual-analytics dashboard that converts data into heat-mapped KPIs and actionable insights.
WP4
Response and recovery: decision support systems, fast reaction protocols for e-mobility systems
The main objective of WP4 is to develop a Decision Support System (DSS) using Reinforcement Learning and generative AI to enable rapid response and recovery across the e-mobility ecosystem. It will focus on both tactical incident response (Res-OrgDSS), including Data Breach Response Planning, and strategic self-healing and system recovery (Rec-ICTDSS). The WP is further developing a governance framework for regulatory and legal compliance, complemented by a structured library of attack and recovery scenarios. This includes a certification feedback loop to assess update effectiveness.
WP5
Comprehensive Testing framework, Codesign verification and certification methods & inlab testing, validation, preparation for on-field validation
The main objective of WP5 is to define and implement a novel, system-of-systems cybersecurity testing framework for resilience. This includes co-designing verification and certification methods for both hardware and software. The WP is preparing the pilot sites for PrEVent solutions, including the automated charging (ACD-U) use case using cyber-secure-by-design LiFi technology. Finally, it implements the testing framework through lab tests, secure test beds, and attack simulations in the Digital Twin to validate resilience.
WP6
Integration, Testing and Demonstration in real life operational environment, validation, final prototype refinement and release of PrEVent solutions
The main objective of WP6 is to demonstrate the effectiveness of cybersecurity measures specifically adapted to the use cases at the four pilot sites to increase the resilience of the EV ecosystem against cyber-attacks. To achieve this, PrEVent solutions will be integrated into the pilot sites and Hackathons (internal and external) will be organized to test them in a controlled environment. The WP will apply the testing frameworks from WP5 to ensure uniform determination and presentation of cybersecurity levels achieved. Finally, it provides analytical evaluation of the results, defines necessary improvements, and releases refined solutions.
WP7
Impact maximisation: communication, dissemination, exploitation, stakeholder engagement, clustering activities, standardisation & policy, training – Period 1
The main objective of WP7 is to execute the initial phase of the dissemination and exploitation strategy for Period 1. To achieve this, effective communication channels are established for scientific awareness and knowledge exchange during the project’s startup. It engages early stakeholders across the e-mobility value chain and external clusters. Finally, this WP lays the standardisation groundwork to facilitate market uptake and reports on initial project KPIs to the European Partnership ‘Towards zero emission road transport’ (2ZERO).
WP8
Impact maximisation – Period 2
The main objective of WP8 is to execute the mid-term phase of the dissemination and exploitation strategy for Period 2. It drives stakeholder engagement, standardisation activities, and the publication of project results as the technical solutions (from WP2-WP4) mature and move toward pilot integration. Moreover, WP8 focuses on the initial rollout of interactive web-based cybersecurity training courses to build capacity for e-mobility actors. It continues active collaboration with CINEA and report on project KPIs to 2ZERO.
WP9
Impact maximisation – Period 3
The main objective of WP9 is to execute the final phase of the dissemination and exploitation strategy for Period 3. To achieve this, a comprehensive exploitation plan is finalized to maximize the long-term impact, promotion, and replication of PrEVent solutions following successful pilot validation. It concludes the delivery of training courses and ensures continuous stakeholder collaboration. Finally, WP9 facilitates final market uptake and standardisation activities, ensuring all innovations are visible across relevant Horizon Europe programme actions.
WP10
Project coordination and management – Period 1
The main objective of WP10 is to ensure comprehensive project management for Period 1 in line with Horizon Europe guidelines. To achieve this, it provides administrative, financial, and legal coordination during the project startup and initial reporting phase. It establishes effective communication channels among the consortium and oversees technical progress and innovation to ensure alignment with PrEVent’s initial goals. Finally, it implements initial risk management and quality control processes to ensure high-quality outcomes.
WP11
Project coordination and management – Period 2
The main objective of WP11 is to ensure comprehensive project management for Period 2 in line with Horizon Europe guidelines. It maintains continuous administrative and financial coordination during the critical mid-term reporting phase. It oversees technical progress and fosters innovation as solutions are developed and move toward integration and testing. The WP focuses on robust risk monitoring, quality assurance, and conflict resolution mechanisms. Moreover, it ensures ongoing ethical integrity and data compliance across all activities.
WP12
Project coordination and management – Period 3
The main objective of WP12 is to ensure comprehensive project management for Period 3 in line with Horizon Europe guidelines. This includes administrative and financial coordination for the final reporting phase, ensuring successful project closure. It oversees the completion of all technical objectives and provides final evaluation of innovation achievements against the initial PrEVent goals. Finally, it manages the final delivery of quality outcomes and ensures that all ethical integrity and data compliance requirements are fully documented.
Project Deliverables
| ID | Deliverable Description |
|---|---|
| D1.1 | Pilots & use case definition analysis |
| D1.3 | Architectural, functional and cybersecurity specifications |
| D2.1 | Design of the prevention and preparation measures for the e-mobility ecosystem |
| D2.4 | Cyber-resilient hardware design guidelines |
| D2.5 | Public summary of prevention and preparation measures |
| D3.3 | Visual-analytics dashboard for threat and system health monitoring |
| D3.4 | Public summary of Digital Twin specification |
| D3.5 | Public summary of NIDS specifications |
| D4.1 | Design and evaluation of the DSS for incident response |
| D4.2 | Design and evaluation of the DSS for incident recovery |
| D4.3 | Governance framework for regulatory, legal compliance for response and recovery |
| D4.4 | Compliance report for certification feedback loop |
| D5.1 | Comprehensive cyber-security testing framework and co-designed verification and certification method |
| D5.2 | Preparation report of automated charging with LiFi technology |
| D6.1 | PrEVent pilot validation report |
| D6.2 | PrEVent pilot feedback report |
| D6.3 | Characteristics and effectiveness of the PrEVent solutions |
| D9.3 | Public report for standardisation |
| D10.1 | Project management handbook |
| D10.2 | Data and ethics management (DEM) plan |
| D11.1 | DEM (i) |
| D12.1 | DEM (ii) |