Minimum ITSEF requirements for security evaluations of Hardware devices with security boxes

The physical evaluation of hardware devices with security boxes (HDwSB) requires the development of specific skills and knowledge. The aim is to provide a technical guidance for evaluators running an evaluation and to expose the related minimum requirements. 

To achieve this, the following sections will encompass:

• The understanding of the secure physical technology, its underlying principles and the development equipment used by manufacturers. 
• The knowledge and experience in physical attack techniques that could compromise the hardware and an ability to use the related equipment to stress the hardware layers. This includes the understanding of the underlying physical principles.
• The ability to use the related equipment to conduct physical disruptions and the understanding of the related physical effects on the hardware.
• The knowledge and experience in cryptographic attack techniques and the ability to perform the analysis (including data-capture, signal processing procedures, analysis and rating). 

The required tools for performing the various attack techniques can be categorised in standard (basic), specialised and bespoke.