Grants8 | The most comprehensive grants search on the web

Grant Analysis

Purpose & Target

- The core objective of this grant is to enhance the security of implementations of Post-Quantum Cryptography (PQC) algorithms. It aims to develop solutions and analysis methodologies to protect PQC against advanced implementation attacks, contributing to robust digital infrastructures and EU strategic autonomy. - Target recipients are legal entities established in EU Member States, Associated Countries, and OECD countries. Particular attention will be given to SMEs. - This grant is SECTOR-SPECIFIC, focusing on Cybersecurity, Post-Quantum Cryptography, and Digital Security. - The geographic scope covers legal entities based in EU Member States, Associated Countries, and OECD countries. - Key filtering criteria include projects focused on resisting side-channel and fault attacks on PQC, optimizing countermeasures, analyzing new AI-enhanced attacks, and designing automated security evaluations. - This is a single call within the broader Horizon Europe Work Programme 2025, specifically under the Civil Security for Society cluster, managed by the European Cybersecurity Competence Centre (ECCC).

Financial Structure

Funding is provided in the form of a lump sum contribution.
Minimum funding per project: EUR 2,000,000.
Maximum funding per project: EUR 3,000,000.
The total budget allocated for this specific topic (HORIZON-CL3-2025-02-CS-ECCC-05) in 2025 is EUR 6,000,000.
Eligible costs for lump sum calculation, based on estimated direct and indirect costs, may include:
- Personnel costs (employees, direct contractors, seconded persons, SME owners, natural person beneficiaries).
- Subcontracting costs.
- Purchase costs (e.g., travel, subsistence, equipment, other goods, works, and services).
- Other cost categories (e.g., financial support to third parties, internally invoiced goods/services, transnational access to research infrastructure, PCP/PPI procurement).
Indirect costs are calculated at a 25% flat rate applied to qualifying direct cost categories.
Payments are linked to the proper implementation and completion of defined work packages, rather than actual incurred costs.
A percentage between 5% and 8% of the total lump sum is retained as a contribution to the Mutual Insurance Mechanism.
The co-financing principle applies, meaning the EU contribution may partially cover the total estimated costs of the action, with reimbursement rates applied as per Horizon Europe rules.
Applicants must propose the lump sum amount with a detailed breakdown per work package and per beneficiary/affiliated entity.

Eligibility Requirements

Organizational Type & Control

Legal entities established in EU Member States, Associated Countries, and OECD countries are eligible.
Entities directly or indirectly controlled by a non-eligible country or by a non-eligible country entity are explicitly not eligible, even if established in an eligible country.
Particular attention will be given to Small and Medium-sized Enterprises (SMEs).

Financial & Operational Capacity

Applicants must demonstrate sufficient financial and operational capacity as outlined in Annex C of the Horizon Europe Work Programme General Annexes.

Application Format

Proposals must adhere to specified page limits and layout requirements described in Annex A and E of the Horizon Europe Work Programme General Annexes, and Part B of the Application Form available in the Submission System.

Application Process

Application Timeline

Call opening date: 2025-06-12.
Application submission deadline: 2025-11-12 00:00:00+0000.
The application process follows a single-stage submission model.

Submission Materials

Applicants must use the standard application form (HE RIA, IA) available through the Electronic Submission System.
A specific 'Annex - Ownership Control Declaration' is required from all applicants under this call (except HORIZON-CL3-2025-02-ECCC-03).
A detailed budget table (HE LS) is required for lump sum proposals.

Application Procedure

Proposals must be submitted via the Funding & Tenders Portal's Electronic Submission Service.
Applicants are required to prepare a detailed budget based on estimated direct and indirect costs, providing a breakdown per work package and per beneficiary/affiliated entity.

Support and Guidance

Support for applicants is available through National Cybersecurity Coordination Centres (NCCs) and the ECCC Applicants Direct Contact Centre ([email protected]).
Guidance is also provided via the Online Manual, Horizon Europe Programme Guide, Funding & Tenders Portal FAQ, Research Enquiry Service, National Contact Points (NCPs), and the Enterprise Europe Network.
Technical assistance for portal issues is available from the IT Helpdesk, and intellectual property queries can be directed to the European IPR Helpdesk.
Partner Search tools are available on the portal to help find collaborators.

Post-Award Obligations

Payments are contingent upon the proper implementation of corresponding work packages as outlined in the grant agreement.
Monitoring and evaluation will primarily focus on the technical implementation of the action and the fulfillment of work package conditions.

Evaluation Criteria

General Evaluation Criteria

Excellence: Assesses the quality of the proposed research, innovation, and methodology, including the soundness of the concept and credibility of the proposed approach.
Expected Impact: Evaluates the potential contribution to the expected outcomes and broader impacts, including societal, economic, and environmental benefits, and strategic relevance to the EU’s cybersecurity objectives.
Quality and Efficiency of Implementation: Examines the soundness of the work plan, the appropriateness of resource allocation, the clarity of management structures, and the quality of the technical expertise within the proposing team.

Specific Scoring Factors (inferred from scope and expected outcomes)

Effectiveness of proposed solutions in protecting PQC algorithms against various implementation attacks (e.g., side-channel, fault attacks).
Optimization of countermeasures that balance security, performance, and cost-effectiveness.
Comprehensive analysis of new attacks or combinations of attacks, including those potentially enhanced by Artificial Intelligence (AI).
Design and development of automated security evaluation methodologies and frameworks for PQC implementations.
Contribution to strengthening the EU’s technological capabilities, strategic autonomy, digital sovereignty, and resilience in cybersecurity.
Explicit consideration and promotion of security and privacy 'by design' principles within the proposed solutions.
Relevance of the proposed activities to foster the European Cybersecurity Competence Community, with particular attention to SMEs.

Budget Evaluation

The proposed budget estimate will be checked by experts against relevant benchmarks such as market prices, statistical data, or historical data from comparable actions.
Experts will assess whether the proposed resources and the breakdown of lump sum shares adequately support the achievement of planned activities and expected outputs.
Beneficiaries must declare that they followed their own accounting practices for budget preparation.

Compliance & Special Requirements

Regulatory Compliance

Projects must adhere to all general conditions and regulatory frameworks applicable under the Horizon Europe Work Programme, including admissibility conditions.

Ownership and Control

A critical requirement is that, even if established in an eligible country, entities directly or indirectly controlled by a non-eligible country or non-eligible country entity are strictly excluded from participation.
Applicants must complete and submit an 'Ownership Control Declaration' to certify compliance with these stipulations.

Financial Compliance

Although beneficiaries are not obligated to report actual costs incurred for the action, they must comply with their national accounting rules.
Financial checks, reviews, and audits will not focus on detailed cost reporting but rather on the technical implementation of the project and the fulfillment of work package conditions.
Failure to meet work package conditions may lead to grant reduction or recovery of undue payments.

Ethical Standards

All activities must adhere to the highest ethical standards and principles of research integrity.

Intellectual Property

Compliance with Horizon Europe's intellectual property policies regarding the management, dissemination, and exploitation of project results is mandatory.

Data Protection and Security

The project inherently deals with cybersecurity, implying strict adherence to data protection and privacy regulations relevant to digital information and communication security.
Solutions developed must contribute to secure services, processes, products, and robust digital infrastructures.

Cross-Cutting Themes

Emphasis is placed on incorporating 'security-by-design' and 'privacy-by-design' principles in solutions.
Projects are expected to consider gender equality aspects.
The grant aligns with broader EU priorities such as the Digital Agenda and the advancement of Artificial Intelligence (AI).

Unique Aspects

The funding mechanism uses a simplified lump sum model, which significantly reduces the administrative burden for beneficiaries concerning financial reporting and audits.
The action is specifically launched and implemented by the European Cybersecurity Competence Centre (ECCC), underscoring its strategic importance to EU cybersecurity capabilities and autonomy.

Grant Details