安全任务小组

安全任务小组由来自 STMicroelectronics 的 Olivier Van Nieuwenhuyze 担任主席。 所有 GlobalPlatform 成员均有资格参加此小组,获批准的非成员政府机构同样有此资格。

安全任务小组定义了协会的安全理念及其对安全领域的贡献

目标

安全任务小组致力于:

  • 参与外部安全组织并进行协作,以确保将广泛的用例和市场部门的安全要求纳入 GlobalPlatform。
  • 向 GlobalPlatform 技术委员会提供安全理念、密码学、认证和适用性方面的建议。
  • 推进与政府机构及其安全专家的合作,以确定市场需求。

目前优先事项

  • 继续确定和分类面向物联网 (IoT) 的安全技术。
  • 为物联网中的 SCP 开发用例。
  • 远程连接有限制时,确定物联网密码学约束。
  • 推进加密灵活性和后量子密码学方面的工作。
  • 维护和更新加密算法建议表。
  • 定义如何结合使用 GlobalPlatform 技术和 TPM 技术(或其他等效库)。
  • 完成安全级别定义和更新的认证计划。
  • 支持 TEE 委员会制定 MCU 保护框架。
  • 通过建立由如下方面组成的评估方法论,支持认证机构和实验室将物联网平台安全评估标准 (SESIP) 方法与其现有计划相结合,并确保评估的一致性:
    • 供应商模板
    • 虚拟 SFR 数据库
    • 指向攻击活动方法的链接。
相关内容

RoT 要求

通过定义和要求文件,原始设备制造商 (OEM) 和服务提供商 (SP) 能够创建、实施和使用信任根 (RoT) 来保护其设备和服务。

下载

GlobalPlatform RoT 简介(英语)

GlobalPlatform 的 RoT 定义和要求视频简介解释了 RoT 的定义以及 GlobalPlatform 创建技术文档的原因。

观看英文版

使用信任链部署和保护数字服务

该商业出版物由 GlobalPlatform 的安全任务小组编撰,其中解释了以安全为核心设计设备和服务的重要性。

下载
主席

Olivier Van Nieuwenhuyze

Security Task Force Chair

STMicroelectronics

Mr. Van Nieuwenhuyze currently serves as Senior R&D Engineer at STMicroelectronics. Within this role he has software architecture responsibilities for the NFC ecosystem and secure elements.

He joined STMicroelectronics in 2003 and since 1999 Mr. Van Nieuwenhuyze has been active in several smart card projects for banking, transport and near field communication.

Mr. Van Nieuwenhuyze joined the GlobalPlatform Board of Directors in 2017.

Xavier Vilarrubla

Security Task Force Co-Vice-Chair

Brightsight

Mr. Vilarrubla was elected to serve as Co-Vice Chair of the Security Task Force in 2015.

Béatrice Peirani

Thales

Beatrice Peirani joined Thales in 2006 and serves as the Standardization Manager, with expertise in security. She has participated in various standardization activities, including deployment of eIDAS through ETSI and CEN, ISO SC27 and FIDO where she is chair of the Security & Privacy Working Group. In 2019, Beatrice was appointed to chair GlobalPlatform’s Crypto Sub Task Force where she is responsible for overseeing and inputting to the Security Task Force’s work on cryptographic agility and post-quantum cryptography.

Eve Atallah

NXP Semiconductors

Eve Atallah, Security Certification Expert in NXP Semiconductor, is a specialist in security evaluation and certification of IT products. In NXP, she is in the IoT Certification Team working on topics related to IoT security. She is the chair of the SESIP sub-Task Force at GlobalPlatform.

有兴趣加入安全任务小组?

GlobalPlatform
Hey There!

It seems you are using an outdated browser, unfortunately this means that our website will not render properly for you. Update your browser to view this website correctly.

GOOGLE CHROME
FIREFOX
MICROSOFT EDGE