IT Evaluation & Assessment
Security Evaluation Standard for IoT Platforms (SESIP)
Consult our experts. We are happy to support you.
The Security Evaluation Standard for IoT Platforms (SESIP) is a specialized security framework designed to evaluate and certify the security of IoT platforms and has been adopted by the European Committee for Standardization (CEN) and the European Committee for Electrotechnical Standardization (CENELEC) as a European Standard (EN 17927). SESIP provides a standardized method for assessing the security features of IoT devices, ensuring they meet industry-recognized security requirements, thus certification helps manufacturers and developers identify vulnerabilities, comply with global security standards, and build trust in their IoT products.
SESIP requirements are based on the Common Criteria standard (ISO 15408), but they have been specifically modelled for the evaluation of IoT platforms. SESIP certification is structured into different levels – SESIP Level 1 to SESIP Level 5 – each representing a progressively higher degree of security assurance, which allows SESIP to cater to a wide range of IoT devices, from basic sensors to complex systems. By understanding and selecting the appropriate SESIP level, IoT manufacturers can ensure their devices meet the necessary security standards and are protected against relevant threats.
What atsec offers:
atsec is provisionally licensed to perform evaluation under the TrustCB SESIP Scheme (SESIP Level 1- SESIP Level 2).
Our SESIP portfolio encompasses the following services:
- A readiness assessment to help you estimate the level of effort required for your product to comply with SESIP requirements
- SESIP assessments at SESIP level 1- SESIP level 2
Why our services are important to you:
SESIP provides cost-effective security evaluations for IoT devices as the methodology emphasizes modularity and the reuse of security components across different IoT devices, which allows manufacturers to reuse security evaluations across different products by defining a set of standardized security functions.
atsec’s testing services will enable you to navigate security requirements for IoT devices across diverse vertical markets, and use cases.
Still have questions?
Can’t find what you’re looking for? Let’s talk!
Common Criteria Evaluation
The Common Criteria (CC), also known as ISO 15408, is an internationally recognized standard used to specify and assess the security of IT products.
Cryptographic Algorithm Testing
Testing that cryptographic algorithms are implemented correctly is a prerequisite for FIPS 140-3 cryptographic module testing and NIAP Common Criteria evaluations.
FIPS 140-3 Testing
FIPS 140-3 specifies requirements related to securely designing and implementing cryptographic modules, and compliance is increasingly mandatory worldwide.
The Information Security Provider
Read Our Latest Blog Articles
Learn the latest and greatest about information security. You’ll find insights and analyses of recent developments in technology and policy on our blog.
-
ICMC 2024 Update
We enjoyed seeing our colleagues at ICMC24, and have updated this year’s animation with Stephan’s opening remarks.
-
The NCCoE’s Automation of the CMVP
The NCCoE presented an update for the Automated CMVP at ICMC 2024 – we have a bit more detail on atsec’s involvement!
-
ICMC 2024 has Arrived, and We’ll See You There
ICMC 2024 is here, and it’s packed with excellent sessions on PQC, AMVP, and more. See you there!