|
ENISA close to first certification scheme
SOG-IS / Common criteria as the first EU cybersecurity certification scheme
The EU’s Cybersecurity Agency (ENISA) is finalising work on the first certification scheme to transpose Common criteria or SOG-IS into the European Certification Scheme Framework.
The candidate scheme is envisaged to provide for cybersecurity certification of ICT products and ICT services. It will be based on the Common Criteria for Information Security Evaluation, the Common Methodology for Information Technology Security Evaluation and the corresponding standards, namely ISO/IEC 15408 and ISO/IEC 18045.
A group of national officials is scheduled to gather on September 18 to wrap up work on so-called “Common Criteria,” or SOG-IS, which set overall security requirements. According Steve Purser contacted by Politico, the agency is “hoping to have a first scheme out there and signed off” soon, adding certification is the “biggest new component in the Cybersecurity Act.”
Call for expression of interest for the first ad hoc on CC/SOG-IS
ENISA announces the call for expression of interest for the selection of members of the ad hoc working group to support the preparation of the aforementioned candidate scheme. Key tasks of this ad hoc working group include a review of the existing achievements under SOGIS, the pre-qualification of elements that need to be included in a cybersecurity certification scheme.
|
