O-CEI Pilot 7 — Lombardy
AEGIS
Autonomous, Edge-native & GenAI-driven Infrastructure Security for Trustworthy EV Charging
>> Problem space
What this project addresses.
EV-charging infrastructure has become operational technology in everything but name. A regional charging network now coordinates payment systems, load on the local grid, identity for fleet operators, and the firmware running inside the chargers themselves — all over protocols (OCPP, ISO 15118) that were not designed to survive a determined adversary.
AEGIS works against two threat patterns the Lombardy pilot has put on the table. First, protocol-level fuzzing — malformed messages from a compromised charger or a man-in-the-middle on a fleet management link that probes for a weak parse. Second, model poisoning — quiet manipulation of the data feeding the operational AI that allocates load, prices charge sessions, or flags fraud.
Both are hard to catch with conventional perimeter tooling because they look like ordinary traffic until they do not. The pilot frames the work against an operator’s real network in Lombardy, not a synthetic benchmark.
>> Approach
What we’re building.
AEGIS is a GenAI-driven continuous penetration-testing simulator coupled to a threat-mitigation pipeline. The simulator generates and replays realistic, non-disruptive attack sequences against the charging network — protocol fuzzing runs at the OCPP/ISO 15118 boundary, model-poisoning runs against staged copies of the operational AI — and feeds findings back into the mitigation layer.
The consortium handles the work in pieces. E-Gap brings the operator network and the operational reality of running EV charging at scale in Lombardy. Nova, CERTH and Ares2t cover the simulator, the threat-modelling lifecycle, and certification-aligned validation respectively. PinakashieldTech’s contribution sits in the GenAI simulator and the mitigation pipeline that ties detection to action.
Output is being staged as O-CEI Pilot 7 deliverables — pilot reports, replayable attack libraries, and the mitigation components themselves, released as the consortium clears them.
>> Consortium
Who we’re building this with.
- E-Gap
- Nova
- CERTH
- Ares2t
AEGIS runs as a Horizon Europe consortium under the O-CEI Pilot 7 (Lombardy) framework — each partner contributes a defined work package against a shared pilot deliverable schedule.
>> Outputs
Where to find the work.
Programme deliverables
Pilot reports and validation traces published as the consortium clears them on the O-CEI programme site.
Programme sitePeer-reviewed publications
Publication slot 1 — target IEEE journal, expected Q3 2026. Additional slots will be linked here as submissions clear review.
Open-source artifacts
Code repositories publish on GitHub as deliverables clear the consortium release process.
Conference presentations
Conference presentations will be listed here as they’re confirmed.
Horizon Europe operates under open-publication obligations; artifacts are released as each consortium-internal review and IP check completes.
>> Programme
About the programme.
O-CEI is a Horizon Europe project for charging-infrastructure cybersecurity, running operational pilots across Europe. Pilot 7 in Lombardy stresses the EV-charging ecosystem against realistic, end-to-end attack chains — protocol-level fuzzing, model poisoning of operational AI, and supply-chain compromise.
Visit the O-CEI site>> Want to collaborate?
Reach the research team.
If you’re a programme officer, a research partner, or a security architect working on EV-charging infrastructure, we’d like to hear from you.