EUCC ISAC
Technical Groups
Active Technical Groups
JHAS develops, maintains, and continuously enhances the methodology used to assess attack paths in security IC hardware, as well as embedded security firmware and software. JHAS provides guidance on interpreting this rating methodology and actively monitors the latest advancements in attack techniques.
The International Security Certification Initiative (ISCI) is the EUCC ISAC group tasked with generating interpretation documents for Common Criteria certification (ISO 15408) of Security IC products (Smartcard and similar devices). ISCI is tasked with supporting the interpretation of the Common Criteria, with respect to Security IC domain (both HW and SW) security certifications.
The JEDS objectives are to provide technical input to the EUCC ISAC for evaluation of products produced from a series of discrete parts on one or more printed circuit boards whereby significant proportions of the required security functionality depend upon a hardware physical envelope with counter-measures (a so-called “Security Box”) against direct physical attacks (for example payment terminals, tachograph vehicle units, smart meters, taxi meters, access control terminals, Hardware Security Modules, etc.)
The subgroup is taked with the edition of on a guidance document bridging embedded Artificial Intelligence cybersecurity evaluation with the common criteria framework. The document is expected to be a guidance document, outlining the steps for evaluating an embedded AI system in regard of the CC framework, clearly mapping the CC requirements (SFRs, SARs, ST, TOE…), to currently accepted works and standards (CEN JTC21 WD Cybersecurity specifications for AI).