Delft, 26 February 2019. Brightsight is pleased to announce that we have been accredited by SESIP, the Secure Evaluation Scheme for IoT Platforms. Owned by TrustCB, SESIP was developed by key players in the hardware and software industry for IoT devices. Its main objective is to provide accessible, solution-ready and pre-certified IoT platforms that meet the major industry compliance requirements.
Security has been important for IoT devices, but it has become more relevant. The past years have shown that there are still vulnerabilities in the security of these devices. As a result, dozens of norms and regulations have been introduced around the world to make sure IoT products provide security and privacy by design. Products often have to meet requirements imposed by various public and private policy makers, all looking for evidence of security elements such as encryption, secure storage and secure communication. But not all IoT devices require the same level of certification, and there are simply too many of them to test individually.
Brightsight joined forces with key players in the security market to develop SESIP. SESIP optimised the Common Criteria (CC) methodology for IoT devices. CC is an internationally recognised methodology for IT security evaluation. SESIP uses composite security evaluations to certify individual hardware and software components (the IoT platform). IoT products which are developed by using a SESIP certified IoT platform, allows developers to have cost and time effective way of delivering certified products to the market. The scheme is aimed at the certification of individual IoT platform components, providing evidence of the security functionality and its strength against physical, logical and software attacks. The scheme facilitates developers’ access to the right secure platforms for their IoT applications.
“We’re proud to be the very first lab licensed by TrustCB to perform SESIP evaluations,” says Dirk-Jan Out, CEO of Brightsight. “SESIP provides an accessible, time- and cost-effective way to demonstrate compliance, due diligence and state-of-the-art solutions for data protection. This benefits everyone in the IoT ecosystem, from chipmakers and service providers to end users. We’re happy to be part of this important, innovative scheme.”
“TrustCB welcomes Brightsight as the first SESIP licensed lab” said Wouter Slegers, CEO of TrustCB. “We highly appreciate Brightsight’s solid experience in efficiently providing high assurance, and are looking forward to the growth of the SESIP scheme from this.”
If you are interested in a SESIP evaluation, please send an e-mail to firstname.lastname@example.org.
For more information about SESIP and TrustCB, visit https://www.trustcb.com/iot/sesip/.
We offer security evaluations to developers and manufacturers of security products and applications, such as smart cards, ICs, HSMs, System on Chips, Payment terminals, Mobile Payment solutions, IoT solutions, Automotive solutions and Biometric solutions.
We can open up the global market for you by providing fast evaluations and certification. The results of our evaluations are recognized by major international organisations such as EMVCo, Arm PSA certified, SESIP, Common Criteria, Mastercard, PCI, Visa and American Express, as well as several nation-specific certification schemes.
In addition to security evaluations, we offer you customised training courses to equip you with the knowledge and skills necessary to take on future challenges in your business. Brightsight is located in Delft, the Netherlands (HQ), Barcelona, Spain and Beijing, China.