GlobalPlatform Launches TEE Security Evaluation Secretariat to Accelerate Deployment of Certified Trusted Execution Environment Products
Products will be evaluated for conformance to the TEE Protection Profile through GlobalPlatform’s TEE Certification Scheme
23 June 2015 – In a move that will accelerate the deployment of certified Trusted Execution Environment (TEE)* products and promote a globally interoperable mobile ecosystem, GlobalPlatform has announced that it is launching a TEE Security Evaluation Secretariat to manage its TEE Certification Scheme. Under the scheme, providers of TEE products will be able to submit their products to the new GlobalPlatform secretariat for independent evaluation of their conformance to the organization’s TEE Protection Profile.
The TEE Protection Profile, which has been certified against Common Criteria under its Trusted Computing category, specifies the typical threats the hardware and software of the TEE needs to withstand. It also details the security objectives that are to be met in order to counter these threats and the security functional requirements that a TEE will have to comply with. A positive evaluation of conformance to this security framework, through GlobalPlatform’s Certification Scheme, will indicate that a TEE product meets an international security baseline. The scheme will enable service providers to confidently and effectively manage risk, by ensuring that there is a consistent level of security across connected devices.
The TEE Security Evaluation Secretariat will perform the following four functions:
- Maintenance of the GlobalPlatform Certification Scheme documents (including the TEE Protection Profile, the security evaluation methodology and legal framework).
- Accreditation of laboratories which meet certification scheme criteria.
- Management of requests for evaluation from TEE product vendors and reviews of accredited laboratory reports.
- Issuance of certificates for TEE products which meet the security evaluation criteria. GlobalPlatform will also maintain a public list of evaluated products on its website, enabling service providers to identify certified products “at a glance”.
Once initial laboratories have been accredited, a key priority for the TEE Security Evaluation Secretariat will be to evaluate products combining hardware and software, within three months of receiving the product. A fast time-to-market for TEE products has been identified as a strong requirement from the mobile community, to reflect rapid mobile handset development cycles.
Gil Bernabeu, GlobalPlatform’s Technical Director, comments: “The launch of the TEE Security Evaluation Secretariat is a natural next step for GlobalPlatform as it advances its TEE standardization activities. The security evaluation methodology at the heart of the TEE Certification Scheme was developed by GlobalPlatform’s membership; our unique technical community represents the entire mobile ecosystem, including service providers, chipset makers, OEMs, mobile network operators and security evaluation laboratories. As such it is a truly global and cross-industry exercise. This neutrality is essential to support the development of a TEE security evaluation process which addresses the connected device security requirements of all actors, across all sectors and all regions.
“Over the next twelve months, GlobalPlatform will begin accrediting laboratories which successfully meet the criteria of the certification scheme. Multiple laboratories from all major continents have already confirmed their intent to participate in this process. Once accredited laboratories are in place, we expect the first certificates to be issued in approximately twelve months from launch. The three month evaluation cycle will then continue, in line with market requirements for a rapid certification process.”
More information on the GlobalPlatform TEE Security Evaluation Secretariat and Certification Scheme can be found on the GlobalPlatform website.
In addition to the TEE security evaluations offered by the TEE Certification Scheme, GlobalPlatform also offers assurances to application and software developers and hardware manufacturers that a TEE product will perform in line with the GlobalPlatform standards and as intended, through its established TEE Compliance Program. Visit the GlobalPlatform Compliance Program webpages for further information.
Want to learn more about the TEE? View GlobalPlatform’s infographic.
*A TEE is a secure area that resides in the main processor of a mobile device and ensures that sensitive data is stored, processed and protected in a secure environment.
For further media information, please contact Rob Peryer or Andrew Murgatroyd at iseepr: firstname.lastname@example.org / email@example.com or on + 44 (0) 1943 468007
Keep up to date with the latest news from GlobalPlatform:
- Follow on Twitter: http://bit.ly/wOiHFp
- Join us on LinkedIn: http://linkd.in/xjxsN5
- Subscribe to GlobalPlatformTV: http://bit.ly/1BzvLoa
Notes to editors:
GlobalPlatform® is a registered trademark in the U.S. and other countries.
GlobalPlatform defines and develops specifications to facilitate the secure deployment and management of multiple embedded applications on secure chip technology. Its standardized infrastructure empowers service providers to develop services once and deploy across different markets, devices and channels. GlobalPlatform’s security and privacy parameters enable dynamic combinations of secure and non-secure services from multiple providers on the same device, providing a foundation for market convergence and innovative new cross-sector partnerships.
GlobalPlatform is the international industry standard for trusted end-to-end secure deployment and management solutions. The technology’s widespread global adoption across finance, mobile/telecom, government, healthcare, retail and transit sectors delivers cost and time-to-market efficiencies to all. GlobalPlatform supports the long-term interoperability and scalability of application deployment and management through its secure chip technology open compliance program.
As a non-profit, member-driven association, GlobalPlatform has cross-market representation from all continents. 130+ members contribute to technical committees and market-led task forces. For more information on GlobalPlatform membership visit www.globalplatform.org