ISCI supports the harmonisation and consistent application of Common Criteria within the Security IC domain, covering both hardware and software security certifications for smartcards and similar devices.

Its mission includes:

• Supporting the interpretation and practical application of the Common Criteria for Security IC certifications.
• Developing methodologies, guidance, and supporting documentation to ensure certification processes are efficient, clear, and consistent.
• Promoting the use of common evaluation criteria and analysis techniques across the Security IC certification ecosystem.
• Facilitating cooperation between certification schemes, certification bodies, evaluation facilities, developers, and end-user organisations.
• Welcoming collaboration with new and existing certification schemes active in the Security IC domain.

ISCI brings together global experts from certification bodies, recognised certification schemes, security evaluation facilities, industry, and user organisations. Through the publication and consultation of methodologies and interpretations, ISCI contributes to the broader cybersecurity certification community.

A key objective of ISCI is to harmonise the interpretation of Security IC certifications in order to create a fair, transparent, and consistent framework for all stakeholders. This enables certification schemes, policymakers, industry, and users to evaluate security solutions with greater confidence across both current and emerging technology domains.

Other schemes may use ISCI methodologies and outcomes; however, formal recognition can only be granted through official authorisation by ECCG (EsEm) or the relevant ENISA/ECCG authorities.

Technical Group leaders:

Jan Eichholz, G+D
Chairman

Terms of Reference

International Security Certification Initiative (ISCI)