The Security Evaluation Standard for IoT Platforms (SESIP), published by GlobalPlatform and by CEN CENELEC defines a standard for the trustworthy assessment of the security of the IoT platforms. It is designed to be efficient and able to be re-used in fulfilling the requirements of various commercial product domains. SESIP provides the technical basis for the TrustCB SESIP scheme.

The security functionality provided by the platform is expressed using the SESIP catalogue. Commonly provided sets of functionality have been published as SESIP profiles by organisations including GlobalPlatform and PSA Certified.

There are five Assurance Levels in SESIP, labelled and defined as:

• SESIP Assurance Level 1 (SESIP1); a self-assessment-based level. There is no independent check by the evaluators the platform actually implements the SFRs. SESIP1 provides a basic level of assurance.
• SESIP Assurance Level 2 (SESIP2); a black-box penetration testing level. The highest level that can be applied to a closed-source platform without cooperation by the developer. SESIP2 provides a moderate level of assurance.
• SESIP Assurance Level 3 (SESIP3); a traditional white-box vulnerability analysis. The evaluation is structured around a time-limited source code analysis combined with a time-limited penetration testing effort. SESIP3 provides a substantial level of assurance.
• SESIP Assurance Level 4 (SESIP4); intended for re-use of SOG-IS certified platforms or platform parts by licensed evaluation laboratories, allowing those platforms to utilize the mappings from SESIP to specific commercial product domains. A SESIP4 evaluation is performed as a complement to a SOG-IS certification that includes at least all the standard Common Criteria assurance components, and in particular AVA_VAN.4. The current methodology simply provides guidance on how to obtain a SESIP4 certificate in addition to such a SOG-IS certificate.
• SESIP Assurance Level 5 (SESIP5); intended for re-use of SOG-IS certified platforms or platform parts by licensed evaluation laboratories, allowing those platforms to utilize the mappings from SESIP to specific commercial product domains. A SESIP5 evaluation must then be performed as a complement to a SOG-IS certification that includes at least all the standard Common Criteria assurance components, and in particular AVA_VAN.5. The current methodology simply provides guidance on how to obtain a SESIP5 certificate in addition to such a SOG-IS certificate.

TrustCB is a GlobalPlatform member certification body issuing certificates in accordance with GlobalPlatform SESIP

TrustCB is working with the following licensed labs for the TrustCB SESIP scheme:

• Applus+ (Barcelona, Spain + Madrid, Spain)
• Brightsight (Delft, The Netherlands + Barcelona, Spain + Graz, Austria)
• DEKRA Testing and Certification (Madrid, Spain)
• ECSEC Laboratory Inc. (Tokyo, Japan)
• Keysight Technologies Netherlands Riscure (Delft, The Netherlands)
• Institute for Information Technology (Taipei City, Taiwan (R.O.C.))
• Serma Safety & Security (Pessac, France)
• TÜV Informationstechnik (Essen, Germany)

TrustCB has awarded the following labs with Candidate status, reflecting that confidence in the lab’s technical competence to perform SESIP evaluations, while full Licensing is pending:

• atsec information security AB (Sweden)
• Beijing Unionpay Card Technology Co., Ltd. (Beijing, China)
• CEA Leti (Grenoble, France)
• Thales SIX GTS France (Labege, France)
• UL (Leiden, The Netherlands)

Further details of the licensed labs can be found under Labs