Brightsight Certification Body (CB) is proud to announce the issuance of its inaugural SESIP certificate, marking a significant milestone in the company’s growth in security certifications.
The certified product is a microprocessor by STMicroelectronic. The certification, issued under SESIP Level 3 assurance for the STM32MP13xx product line, confirms the microprocessor meets stringent security requirements for IoT platforms. The certificate is available on the CB services page.
STMicroelectronic requested to renew the certificate to maintain a high-level of security assurance for their product line and ensure continued market access. This achievement highlights their ongoing commitment to maintaining robust security standards and excellence.
STMicroelectronics is a global semiconductor leader, providing solutions for a wide range of electronic applications.
What is SESIP?
Brightsight certification scope includes SESIP which stands for the Security Evaluation Standard for IoT Platforms. It is a European Standard (EN 17927), published by GlobalPlatform and adopted by CEN and CENELEC. It provides an optimised version of the Common Criteria methodology, applied to certification of IoT platforms and their components.
Why SESIP?
SESIP methodology minimizes security fragmentation in IoT devices—and so reduces the costs, complexity and effort of evaluation and certification—by allowing a single evaluation to provide evidence for multiple certification requirements. This simplifies the process and eliminates the need for multiple security evaluations. SESIP certification aligns with global standards such as IEC 62443-4-2, ISO 21434 and the Cyber Resilience Act.
Our certification process
The certification followed the Brightsight CB SESIP certification process, which includes:
- Submission of an application form and security target.
- Evaluation by Brightsight ITSEF, with evidence and deliverables reviewed in multiple evaluation meetings.
- Technical review and assessment by the Certification Body (CB), including a new certification report and certificate.
Benefits of SESIP certification
In November 2020, SESIP was mentioned in the ENISA study as one of the most relevant standards in the area of risk management for IoT Platforms and components security.
- It demonstrates commitment to security and compliance with the latest IoT security standards.
- It enables developers to market their products as trusted for security-sensitive applications.
- It provides product robustness assurance of security processes to clients and partners.
- It strengthens products’ position in the IoT and embedded systems market.
Why Brightsight
By realizing your SESIP certification with Brightsight, you benefit from:
- Predictable certification processes: Clear steps and transparent communication throughout.
- Fair & impartial decisions: Independent evaluation and certification.
- Responsive & transparent communication: Regular updates and collaborative problem-solving.
What makes Brightsight different
- Certification and lab services under one roof, with seamless collaboration between CB and ITSEF.
- Efficient communication and knowledge sharing, leading to faster and more reliable certification outcomes.
Interested?
Do you want to know how to achieve your product’s compliance?
To make your product's certification journey smoother, many developers work with trusted partners like Brightsight—a recognized lab and a licensed CB, and a founding member of SESIP.
Our decades of experience in security evaluations, combined with a deep understanding of the SESIP standard, enable us to navigate your challenges efficiently and effectively, and in a structured and predictable manner.
Contact us for more details - our experts are ready to assist you.
Enjoyed this article?
Learn more about SESIP here.
Stay up-to-date with our news, updates and latest developments by following us on LinkedIn.
Don't miss any of our news, updates and latest developments - subscribe to our newsletter.
Subscribe to our newsletter
Subscribe today to stay-up to date with the latest cybersecurity news, trends and regulatory developments from across the payment, internet of things, medical, automotive, industrial, government, telecommunication and network or integrated circuit sectors.
Receive expert insights on cybersecurity testing and certification, upcoming events, and webinars tailored for manufacturers and developers of chip-based devices.
