The Internet of Things (IoT) is growing rapidly, and with it both the number of security incidents involving IoT products and the number of dedicated IoT product evaluation schemes (GDPR, IEC 62443, …).
This explosion of IoT products needs to be supported by a solid base of IoT platforms. For these IoT platforms, there are
- PSA Certified builds on the foundations of the Platform Security Architecture (PSA) to provide a Root of Trust (RoT) Service. The evaluation scope is a combination of hardware and software components, and there are three predefined certification scopes.
- Security Evaluation Standard for IoT Platforms (SESIP), which allows the functionality range typically required by secure IoT products from the underlying platform to be evaluated to one of five hierarchical assurance levels. This way, a platform can be evaluated once, and many secure products can be built on top of it without the need to re-evaluated the platform over and over.