Eurosmart: The Voice of The Smart Card Industry

Security Working Group

The EUROSMART Security Working Group represents a competent body of experts combining knowledge of the major players of the smart secure industry in the complete range from the semiconductor, the software development up to the final production and the personalisation.

Missions

	Optimise security efficiency in term of assurance, methodology & cost

	Sectors to focus on: Banking, Government, Telecom

	Active participant in various expert groups at EU Level: Payment Systems Market Group (for SEPA implementation), Fraud Prevention Expert Group (security standard)

Actions

	To meet with the main objective regarding Security of the product and the system, members are working on : - Protection Profile Survey - Common Criteria Methodology version 3.0 (implemented late 2006) - ISO follow-up concerning security - International Security Certification Initiative follow-up (see specific page on the subject) - Security segmentation

	Security Managers responsible for site security are working on: - analysing the different certification schemes - analysing the audit cost situation for Security Management evaluation and certification - harmonising the different concepts of Security Certification scheme

Production Security Working Group

The Working group is composed of security managers of chip and smart card manufacturers.
Missions

	Discuss and improve manufacturers risk potentials

	Finalise methods to avoid incidents threatening security,

	Initiate guidelines to discuss with cards organisations regarding security requirements

Its priorities for the year-to-come is to contact the card organisations to revise or rather to optimise (risk orientated) the existing standards and to prevent cost intensive procedures, which are not risk minimising, to come into effects.

EUROSMART - Rue du Luxembourg, 19-21 B-1000 Brussels - Tel: +32 (0) 2 506 88 38 - Fax: +32 (0) 2 506 88 25