The Rise of Flaw Remediation: What ALC_FLR’s Growth Reveals About CC Certifications, and What Vendors Need to Know to Claim It. (C21b)
On the Common Criteria Portal, flaw remediation is claimed in nearly half of all Security Targets, and has an approximate 80% increase in claims between... Read More
Panel: Lessons Learned from Implementing EUCC and Managing an Evolving Environment (P11c)
The EUCC scheme has significantly reshaped the CC landscape, with a growing number of EU certification bodies and ITSEFs that increasingly operate cross-border. At the... Read More
Industry Keynote (P11a)
Insights on emerging cyber threats, building organizational resilience, and fostering trust in an increasingly connected world.
Beyond the SBOM: Cryptography, AI, and the API-First Future of Transparency (C21a)
The SBOM has outgrown its origins. What began as software inventory now spans cryptography, AI, hardware, and operational dependencies. As supply chain transparency matures, static... Read More
Real-World Applications of AI in Common Criteria (for Labs and Vendors) (C20c)
The potential of artificial intelligence to support Common Criteria (CC) activities is a topic of growing interest, yet its practical value and limitations are still... Read More
Review of Changes to NIAP TLS, SSH and X.509 Functional Packages for CC:2022 And CNSA 2.0 (C20b)
In 2024/2025, NIAP published updates to their cryptographic functional packages for TLS and SSH and introduced a new package for X.509. These updates incorporate changes... Read More
Aligning CC Certification with Customer Deployment Realities: Cloud, Hybrid, and Containerized Environments (C20a)
CC certification evaluates products in tightly defined configurations, yet customers increasingly deploy them as virtual appliances in public clouds, containerized microservices, and hybrid architectures that... Read More
Mapping CRA Requirements to Common Criteria Protection Profiles—An Actual Example (C13d)
The new European Union (EU) Cyber Resilience Act (CRA) that went into affect on 10 December 2024 has placed a new set of requirements on... Read More
Certification Strategy of the Federal Office for Information Security (C13c)
The presenter will address the software certification strategy of BSI. Today development processes like CI/CD, agile implementation or the future usage of AI require a... Read More
US Scheme Update (C13b)
This talk will provide an update on NIAP and CCRA, U.S. Scheme Updates, and NIAP Top Five Priorities for upcoming year.