Brightsight is now a licensed BSPA evaluation lab

10.09.18 10:11 AM By Brightsight

Delft, 10 September 2018: We are pleased to announce that Brightsight has been recognised by the Dutch Baseline Security Product Assessment (BSPA) scheme. BSPA is intended to evaluate the suitability of IT security products for use in the “sensitive but unclassified” domain that is managed by the Netherlands National Communications Security Agency (NLNCSA), a cyber defence unit of the Dutch Intelligence and Security Service (AIVD). BSPA provides a framework in which IT products go through a basic “black-box” security assessment, carried out in a maximum of 25 man-days of testing within 8 weeks. BSPA is based on the Common Criteria concepts and applies to a wide range of IT products, including firewalls, VPNs, secure ICs, and secure tokens. The result of this assessment is a Deployment Advisory (DA) that advises users on how to configure and use the product in order to meet the requirements of the Dutch Government Security Baseline (BIR). The DA includes a so-called statement of conformity of the product to the security evaluation target. “We are very happy to add BSPA to our broad portfolio of services”, says Dirk-Jan Out, CEO at Brightsight. “We will continue to expand our portfolio to support our customers in obtaining the approvals they need.” Brightsight has several years of experience in conducting BSPA evaluations of a wide range of products. 

Interested in more information? Get in touch with