18-19 November 2019, The Hotel, Brussels, Belgium

Lessons Learnt in the Commercial Use of Security Certification—From Setting Standards to an Innovator’s Perspective

A11a
18 Nov 2019
12:30 pm-1:00 pm
Ballroom 3

Lessons Learnt in the Commercial Use of Security Certification—From Setting Standards to an Innovator’s Perspective

This presentation will share experiences in the use of existing security certification frameworks for commercial mass-market products, both from the perspective of chairing the Trusted Computing Group’s certification program for key security technologies, and from the point of view of an IT vendor. The presenter will discuss those different perspectives, and explore challenges encountered in the use of existing certification frameworks for mass-market commercial products, ranging from state of the art technical innovations, to established security technologies.  The presenter will also share experiences with the difficulty of setting the bar for certification requirements, which still achieving intended outcomes in the market and then will then touch on the role that EU-wide certification frameworks could play to help address these challenges, notably to raise the bar for security across the industry while still promoting continuous innovation to rise above minimum security requirements.