The JEDS objectives are to provide technical input to the EUCC ISAC for evaluation of products produced from a series of discrete parts on one or more printed circuit boards whereby significant proportions of the required security functionality depend upon a hardware physical envelope with counter-measures (a so-called “Security Box”) against direct physical attacks (for example payment terminals, tachograph vehicle units, smart meters, taxi meters, access control terminals, Hardware Security Modules, etc.)

This main technical input takes the form of three documents, that JEDS has to maintain, harmonize and develop:

• Application of Attack Potential to hardware devices with security boxes;
• Minimum ITSEF requirements for security evaluations of Hardware devices with security boxes;
• Attack Methods for HW Devices with Security Boxes.

Other types of technical inputs may be decided by the JEDS or following the request of the Steering Committee.

Further objectives of JEDS are:

• Refinement of the EUCC evaluation methodology for this Technical Domain;
• Establishing and maintaining “state-of-the-art” and “best practice” for security evaluations of products in this Technical Domain;
• Harmonisation of attack method and potential papers used for an EUCC evaluation, especially maintaining the Attack method and Attack potential papers for HW devices with security boxes. State-of-the-art maintenance is expected to be supported through external publications and internal group presentations sharing new attack techniques;
• Management of Protection Profiles relevant to the Technical Domain.

Key point of this JEDS working group is harmonisation of the security rating of products in this Technical Domain undergoing a EUCC evaluation.

Technical Group leaders:

Léo LARSSON, Thales Group
Chairman

Terms of Reference

Joint Embedded Devices Subgroup (JEDS)