/Laboratories/GLOBAL/2021/Applus--Laboratories-performs-evaluation-of-the-new-GP-Secure-Element-Protection-Profile- Applus+ Laboratories performs evaluation of the new GlobalPlatform Secure Element Protection Profile

Applus+ Laboratories performs evaluation of the new GlobalPlatform Secure Element Protection Profile

15/11/2021

    This new Protection Profile (PP) widens vendors’ options to develop multipurpose Secure Element (SE) platforms. GlobalPlatform SE PP offers a stand-alone alternative for a Common Criteria Evaluation compliant with Java Card and GlobalPlatform.

    Applus+ Laboratories has evaluated the new Protection Profile (PP) developed by GlobalPlatform for SE Platforms. This new PP is now officially certified under Common Criteria by the Spanish Certification Body (CCN) and available for SE platform vendors. 

    Although it is a well known technology, this new PP widens vendor options when developing new products, as it encompasses all the different specifications required, Java Card and GlobalPlatform. Until now, there was no PP including GlobalPlatform functionalities, so security definition of numerous GlobalPlatform configurations and amendments fell back on a task that the Vendors needed to do to build their Security Target. Now, the new protection profile ensures standardization and minimum scope defined, which leads to being comparable between different product evaluations with Card Content Management requirements.

    GlobalPlatform SE PP provides key functionalities for Card Content Management. The GlobalPlatform Framework implements the functionalities described in GlobalPlatform specifications and, optionally, some amendments such as Amendment A, B, C, D, E, F, G, H and I. One of the advantages of this PP is its modularity, since all the amendments and their objectives are independently defined.

    “As a security lab, we have a deep knowledge of SE Platforms compliance. Performing the evaluation of this new PP demonstrates Applus+ Laboratories’ knowledge on Java Card technology, and their responsibility of pushing forward standardization of CC requirements for easier security product definitions. We are happy to support the industry, facilitating convenient evaluation options that streamline certification and product time-to-market,” stated Josepmaria Roca, Cybersecurity & Interoperability Labs director, at Applus+ Laboratories.
     

    Applus+ uses first-party and third-party cookies for analytical purposes and to show you personalized advertising based on a profile drawn up based on your browsing habits (eg. visited websites). Click HERE for more information. You can accept all cookies by pressing the "Accept" button or configure or reject their use by clicking here.

    Cookie settings panel