ESA title

IoT Trust+

  • ACTIVITYDemonstration Project
  • STATUSOngoing
  • THEMATIC AREAInfrastructure & Smart Cities

Objectives of the service

Remote communications in healthcare and remote sensor networks rely on Internet of Things (IoT) and Operational Technology (OT) communicating via satellite links. These devices face mounting cyber threats, particularly with quantum computing advancing, yet encryption remains challenging to implement. Devices vulnerable to supply-chain attacks increasingly connect to enterprise networks, elevating organizational risk. Remote healthcare workers and industrial operators need secure connectivity without constant vigilance about connection security. 

IoTtrust+ delivers quantum-safe encrypted satellite communications between security-hardened control services and remote IoT/OT endpoints. Using a zero-trust approach, the software fingerprints and sandboxes individual applications, not just devices and defends against supply-chain and malware attacks. This prevents compromised endpoints from exploiting network connections even if a device is breached. 

Building upon CyberHive's existing Connect Zero Trust Network Access (ZTNA) mesh product, the project will develop application attestation capabilities and support multiple platforms: embedded Linux for IoT gateways, Real-Time Operating Systems (RTOS) for microcontroller sensors, and full Windows/Linux for enterprise control services. The satellite-optimized protocol ensures low-latency, fast-connecting communications across challenging network environments. 

The activity will produce commercially-ready software that enables mission-critical, data-driven decisions through provably secure endpoints and confidential data transmission, protecting the 3.5 billion IoT devices expected in Critical National Infrastructure utilities by 2030. 

Users and their needs

Target User Communities: 

Primary users include utilities operators managing Critical National Infrastructure (CNI), industrial process controllers using Supervisory Control and Data Acquisition (SCADA) systems, and remote healthcare providers requiring secure connectivity. These organisations operate devices in remote locations with satellite communication dependencies. 

User Needs: 

  • Quantum-safe encryption protecting against emerging threats 

  • Defence against supply-chain attacks on field devices 

  • Secure satellite communications with acceptable latency 

  • Low-power operation for extended field deployment 

  • Simple administration without specialist cybersecurity expertise 

  • Protection preventing compromised devices from accessing enterprise networks 

  • Long-term operational capability without physical device access 

  • Verifiable trust in remote applications and data transmission 

Key Challenges: 

Meeting these needs requires overcoming severe compute constraints on IoT/OT devices while maintaining robust security. The software must operate across diverse platforms from microcontrollers to enterprise servers. Satellite communication environments can present additional bandwidth and latency challenges requiring protocol optimisation. Embedded security must not compromise device longevity or require frequent maintenance interventions. 

Geographic Focus: 

Initially targeting the United Kingdom, international expansion will be targeted via reseller partners to enable scalability for global deployment across developed economies requiring CNI protection and secure industrial communications. 

Service/ system concept

Capabilities Delivered: 

IoTtrust+ provides users with a secure communication tunnel between remote devices and central control systems. The software verifies that only authorized applications—not malware or compromised software—can send or receive data. All communications are encrypted using quantum-resistant algorithms, protecting against both current and future threats. 

Key Features: 

  • Application fingerprinting ensures only trusted software communicates 

  • Automatic encryption of all data transmitted over satellite links 

  • Real-time verification that devices haven't been compromised 

  • Simple management dashboard requiring minimal cybersecurity expertise 

  • Low-power operation extending device field life 

  • Fast connection establishment despite satellite latency 

How It Works: 

Think of IoTtrust+ as a secure postal service with multiple checkpoints. Before any message leaves a device, the software verifies the sender's identity by checking its unique "fingerprint." The message is then sealed in an unbreakable quantum-safe envelope. The satellite transmits this encrypted package, and at the destination, the software again verifies the application before allowing access. If malware exists on a device, it cannot pass these verification checks and remains isolated—unable to communicate or spread. 

The system creates isolated "sandboxes" around each application, preventing unauthorized software from accessing the network connection. 

System Architecture: 

 

Space Added Value

IoTtrust+ operates satellite-agnostically, supporting multiple Low Earth Orbit (LEO), Geostationary Orbit (GEO), and emerging direct-to-device satellite services. The project leverages Starlink terminals for high-bandwidth applications like the Welsh Air Ambulance requiring video transmission, and Iridium Certus terminals for lower-volume IoT deployments such as industrial sensors in fixed locations. The roadmap includes implementation either within modems or via standalone gateway components. 

Added Value Over Competitors: 

Existing security solutions struggle with satellite environments due to high latency and connection overhead. IoTtrust+ uniquely combines quantum-safe encryption with satellite-optimized protocols already proven through Viasat testing, demonstrating low latency and minimal overhead even with small packet sizes. 

The critical differentiator is intelligent multi-network routing automatically selecting the most cost-effective channel (5G when available, satellite as fallback) while maintaining the same IP address throughout transitions.  

For remote operations where terrestrial networks are unavailable or unreliable, satellite connectivity enables the same homogeneous security architecture across all locations. Users simply connect without changing workflows—crucial for reducing cognitive load in high-stress situations like emergency healthcare or critical infrastructure monitoring. 

Current Status

IoTtrust+ has completed initial requirements gathering through online workshops with two pilot users: Welsh Air Ambulance (healthcare use case) and an energy management systems company (industrial IoT use case). These sessions established operational requirements for both Baseline Design Review and Critical Design Review phases. 

Achievements to date: 

  • Baseline Design Review in progress with pilot user input 

  • Critical Design Review in progress, finalising technical specifications 

  • Satellite performance validation completed using Viasat BGAN terminal and Starlink Mini, confirming low latency and minimal overhead with existing Connect protocol 

Currently in progress: 

  • Application fingerprinting and sandboxing module development planning commenced 

  • Real-Time Operating System (RTOS) platform adaptation for embedded IoT sensors.  Connect Nano in development 

  • Refactoring of connectivity to ensure performance in networks with misconfigured NAT or firewalls.  

Prime Contractor(s)

CyberHive

United Kingdom

https://cyberhive.com

Status Date

Updated: 12 March 2026