Update on The EU Cybersecurity Act: Is The Feared Balkanization of Common Criteria Being Reversed?
At the ICMC conference in 2018, Oracle presented concerns that the EU’s Cybersecurity Act could balkanize Common Criteria and its community. Now that the Act has come into force this talk will re-examine if these concerns have been addressed, and what the remaining challenges are in the Act’s implementation. The talk will examine the fit between CCRA, protection profiles, and the Act’s Assurance and Evaluation levels, and will discuss the necessity of mutual recognition. Addressing such concerns in a successful manner can prevent the feared balkanization.