C5-DEC (Common Criteria for Cybersecurity, Cryptography, Clouds – Design, Evaluation and Certification) part of project CyFORT: a suite of methods and CAD tools dealing with the creation and evaluation of secure IT systems according to the CC standards, capturing SSDLC, V&V, and our cyber-physical system security assessment method

Automated security analysis tool generating STRIDE threats and DREAD risk scores from UML diagrams, DFDs, and Infrastructure-as-Code (IaC), built using SSDLC and secure coding practices, addressing OWASP Top 10, and supporting CI/CD-driven DevSecOps workflows.

Create a secure CI/CD Pipeline using CDK and BridgeCrew and Bandit using Python 3

Secure, role-based FAQ chatbot for universities. Features: Argon2id password hashing, server-side sessions, RBAC, hash-chained audit logs, rate limiting, TLS/HTTPS via nginx. Built with FastAPI + Streamlit. Demonstrates secure software design principle.