Track Keynote: How Europe’s Cyber Security Act and CCRA Can Be Best Friends (U12a)
Currently Europe implements a Cyber Security Act (CSA) which amongst others sets up a European IT-Security certification framework. It is more than an educated guess... Read More
Next-Generation Tooling to Develop Protection Profiles, Automate Security Target Generation, and Support Evaluation Activity Reporting (A23b)
The speakers will showcase tooling that is freely available to the Common Criteria community on GitHub at https://github.com/commoncriteria. Major contributions include: (1) Development of a... Read More
Modular PPs: The Building Blocks of Tomorrow (A22b)
The concept of PP-Modules was added to the CC in 2017. The first PP-Modules are just now being written and published for public consumption. As... Read More
Common? C’mon! (A21b)
Common? C’mon! Over the years, the CC have struggled to establish a common understanding of where the bars shall be positioned that products must clear... Read More
TEE Certification: Managing Risk for Digital Services (A20c)
GlobalPlatform will present the use of Common Criteria to build a Trusted Execution Environment (TEE) security scheme. The speech will cover; Lessons learnt within the... Read More
Basissicherheitszertifizierung (BSZ)—An Alternative Means to Achieve Assurance (A20b)
This session will present a new approach – BSZ – in the German scheme (comparable to CSPN in France) which aims at providing assurance while... Read More
Introducing the Partner Program Certification Concept (A20a)
The FIDO Alliance, a 250+ member association developing specifications and certification programs for simpler, stronger authentication, announced back in March 2018 the expansion of its... Read More
Evaluation of Distributed Products in the CC Paradigm (A13c)
Distributed products evaluated under the Common Criteria paradigm have their own set of unique challenges. The Network Device iTC has supported distributed TOEs since the... Read More
A Compositional Certification Methodology For a COTS-Based System (A13b)
The aim of this presentation is providing an overview of the compositional security certification methodology to be used in the scope of MILS (Multiple Independent... Read More
Why Composite Evaluations Fail (A13a)
The topic of this presentation is the current approach for composite evaluations (where a hardware platform is evaluated separately from the software running on the... Read More