Delft, 16 February 2021. The GSMA eUICC Security Assurance (eSA) scheme has been officially launched. The new scheme is developed in collaboration with different industry stakeholders including Brightsight security evaluation laboratory, aiming to provide assurance and trust to the operators on embedded SIM (eSIM/eUICC) products.
eSA scheme is based on the Common Criteria approach to create security assurance where the security objectives within the GSMA Protection Profiles (i.e. SGP.05 (for M2M devices) and SGP.25 (for Consumer devices)) are applied.
As a GSMA eSA Licensed Laboratory, Brightsight is now able to perform security evaluations with the eSA scheme requirements. If the Evaluation Technical Report is found correct and to the satisfaction of the Certification Body (CB), the CB and GSMA will issue an eSA Certificate stating your product is secure. Read here a detailed description of the Evaluation Phase processes, meetings and deliverables to be presented during the Evaluation Phase.
Brightsight additionally combines different evaluations e.g. CC with eSA or CC, eSA and EMVCo on eSIM or eUICC in one evaluation to have an efficient evaluation approach with multiple outputs, resulting in a greater market deployment of your product.