Security Task Force

The Security Task Force is chaired by Olivier Van Nieuwenhuyze from STMicroelectronics. All GlobalPlatform members are eligible to participate in this group, as well as approved non-member government agencies.

The Security Task Force defines the association’s security philosophy and its contribution to the security landscape

Objectives

The Security Task Force works to:

• Engage and collaborate with external security organizations to ensure that security requirements from a broad range of use cases and market sector are brought into GlobalPlatform.
• Advise the GlobalPlatform technical committees in security philosophies, cryptography, certification and applicability.
• Facilitate collaboration with government agencies and their security experts to define market requirements.

Current Priorities

• Continue to identify and classify secure technologies for the Internet of things (IoT).
• Develop a use case for SCP in IoT.
• Identify the IoT cryptography constraint when there are limitations on the remote connection.
• Progress work on cryptographic agility and post-quantum cryptography.
• Maintain and update cryptographic algorithm recommendations table.
• Define how to combine GlobalPlatform technology and TPM technology (or other equivalent library).
• Finalize security levels definitions and updated certification program.
• Support the TEE Committee with the development of an MCU Protection Profile.
• Support Certification Bodies and laboratories to integrate Security Evaluation Standard for IoT Platforms (SESIP) methodology alongside their existing schemes and ensure consistency of evaluations, by creating an Evaluation Methodology composed of:
  • Templates for vendors
  • Database of pseudo SFRs
  • Link with Attack Methodologies.