Skip to main content
  • Supplementary information

Minimum ITSEF requirements for security evaluations of smart cards and similar devices

Details

Part of collection
Publication date
31 January 2024
Author
European Union Agency for Cybersecurity
Type of Documents
  • State-of-the-art Documents
Certification Schemes
Certification Stakeholders
  • CAB

Description

This state-of-the-art document supporting the EUCC scheme provides requirements related to the minimum capabilities an accredited ITSEF shall have in its premises to conduct the different types of attacks present in the state-of-the-art document APPLICATION OF ATTACK POTENTIAL TO SMARTCARDS AND SIMILAR DEVICES. These capabilities include the knowledge and the skills of their evaluators and the necessary equipment, and evaluation methodology description, all necessary to conduct the attacks mentioned above. The capabilities are intended to cover the minimum requirements to perform the evaluation of an Integrated Circuit (IC), a crypto library, a platform, and Integrated Circuit Card (ICC) with sufficient guarantees. This document is not intended to provide guidance on how an IC, crypto library, platform (IC + OS) or ICC (IC + OS + App) evaluation has to be performed, but it provides guidance to ensure ITSEFs have the necessary capabilities to conduct such evaluations.

EUCC State-of-the-Art

Files

  • 29 APRIL 2024
Minimum ITSEF requirements for security evaluations of smart cards and similar devices