安全任务小组

安全任务小组由来自 STMicroelectronics 的 Olivier Van Nieuwenhuyze 担任主席。 所有 GlobalPlatform 成员均有资格参加此小组，获批准的非成员政府机构同样有此资格。

安全任务小组定义了协会的安全理念及其对安全领域的贡献

目标

安全任务小组致力于：

• 参与外部安全组织并进行协作，以确保将广泛的用例和市场部门的安全要求纳入 GlobalPlatform。
• 向 GlobalPlatform 技术委员会提供安全理念、密码学、认证和适用性方面的建议。
• 推进与政府机构及其安全专家的合作，以确定市场需求。

目前优先事项

• 继续确定和分类面向物联网 (IoT) 的安全技术。
• 为物联网中的 SCP 开发用例。
• 远程连接有限制时，确定物联网密码学约束。
• 推进加密灵活性和后量子密码学方面的工作。
• 维护和更新加密算法建议表。
• 定义如何结合使用 GlobalPlatform 技术和 TPM 技术（或其他等效库）。
• 完成安全级别定义和更新的认证计划。
• 支持 TEE 委员会制定 MCU 保护框架。
• 通过建立由如下方面组成的评估方法论，支持认证机构和实验室将物联网平台安全评估标准 (SESIP) 方法与其现有计划相结合，并确保评估的一致性：
  • 供应商模板
  • 虚拟 SFR 数据库
  • 指向攻击活动方法的链接。

Crypto Sub-Task Force

GlobalPlatform promotes cross industry discussion to identify and address market requirements

Mission

The purpose of the Crypto sub-task force is to evaluate and provide recommendations on the cryptographic mechanisms used in GlobalPlatform technology, to ensure high levels of security as cryptography trends and technologies evolve.

Objectives

• Analyze and report on relevant trends in cryptographic development for new markets and new use cases, as well as trends in cryptographic standardization and policies.
• Evaluate cryptographic algorithms and protocols, and suggest improvements/modifications to GlobalPlatform when appropriate
• Identify new cryptographic algorithms and protocols to be considered by GlobalPlatform
• Provide analysis and recommendations on specific cryptography topics.
• Collaborate with external industry groups and organizations, through the GP liaison process, in order to better understand and gather functional and technical requirements.

Current Priorities

• Examine hybrid crypto approaches starting with TLS, to be able to recommend a version in the near future that is acceptable with SE (and TEE) constraints, including collaboration with the GlobalPlatform IoTopia Task Force to understand impact for size-constrained embedded devices.
• Progress work on hybrid post-quantum cryptography (PQC), including a plan for the integration of new algorithms published security standards bodies including National Institute of Standards and Technology (NIST).

SESIP Sub-Task Force

The SESIP sub-task force is chaired by Eve Atallah of NXP Semiconductors. All GlobalPlatform members are eligible to participate in this group.

Mission

The objective of the SESIP Sub-Task Force is to develop and drive global adoption and recognition of the Security Evaluation for IoT Standard (SESIP) methodology across markets, to address the unique complexities and challenges of the evolving IoT ecosystem and promote consistency across IoT certification schemes.

Objectives

• Develop and maintain GlobalPlatform’s SESIP methodology, expand applicability to a global audience and grow awareness of GlobalPlatform’s role in IoT security certification.
• Collaboration with Government agencies including ENISA and NIST, SOG-IS Certification Bodies, and global Standardization groups such as ISO and ETSI, to increase recognition of SESIP certificates, and create Protection Profiles that map SESIP to other standards requirements.
• Establishing SESIP governance within GlobalPlatform.

Current Priorities

• Establish SESIP as an international standard by contributing the methodology to CEN CENELEC.
• Support Certification Bodies and laboratories to integrate the Security Evaluation Standard for IoT Platforms (SESIP) methodology alongside their existing schemes and ensure consistency of evaluations, by creating an Evaluation Methodology composed of:
  • Templates for vendors
  • Database of pseudo SFRs
  • Link with Attack Methodologies.
• Define how the automotive industry can use standardized security technologies and the SESIP methodology to drive innovation, security and operational efficiency.