Swedish Scheme Update Dag Ströman, Head of CSEC
|
|
- April Spencer
- 5 years ago
- Views:
Transcription
1 Swedish Scheme Update Dag Ströman, Head of CSEC 1
2 CSEC - The Legal Base Swedish Parliament approval of the Government bill in May 2002, which stated: The Swedish Defence Materiel Administration, FMV, is suitable to be assigned the task of creating and maintaining a system for evaluation and certification according to Common Criteria FMV shall be responsible for licensing of evaluation facilities FMV shall operate a certification body and issue the certificates FMV shall engage in the international cooperation to assure and preserve the recognition of Swedish certificates FMV shall contribute internationally in the continued improvement of the evaluation methodology The certification body shall be eligible for accreditation by SWEDAC 2
3 Governmental Context 3
4 CSEC s Main Tasks Licensing of ITSEF Oversight of ITSEFs operations Training and support to ITSEF Oversight of evaluations Review evaluation reports Write certification reports Issue certificates Publish list of certificates Participate in international cooperation: Interpretation Harmonisation Standardisation Marketing of CC Maintain and develop the Scheme. Enforce the rules of the Scheme. 4
5 CSEC - Boards and Committees FMV Board of Directors Lead by FMV chairman of the board Establish policies and provides oversight that scheme operation are in accordance with directions from the government. Scheme Advisory Committee Lead by Head of CSEC Enable the participation of all parties significantly concerned in the development of policies and principles regarding the content and functioning of the certification system. See: SP-103 Terms of Reference for the Scheme Advisory Committee. Change Control Board Lead by Quality Manager The Change Control Board (CCB) is established to manage and control the CSEC procedures for change management and handling of nonconformities. 5
6 The Scheme An Overview CSEC 6
7 Full License Cond.. License Application The Licensing Process Agreement Agreement Preparation Organizational and legal setup Assessment Initial training Initial assessment Enter ISO accreditation Conditional license Trial evaluation Full license assessment Obtain ISO accreditation License Maintain License Conduct evaluations Train evaluators Re-assessments Termination 7
8 Evaluation and Certification Process Developer Sponsor ITSEF CB Pre-Evaluation Evaluation initial contact Feasibility study Acceptance of evaluation Certification Application Initial meeting Certification acceptance Conduct Conclusion Evaluation evidence Single Evaluation Report Single Evaluation Report Technical Oversight Report Final Evaluation Report Technical Oversight Report Certification Report Certificate 8
9 Scheme Publications 1(2) SP-001 Certification and Evaluation Scheme - Scheme Overview SP-002 Evaluation and Certification SP-003 Certificate Maintenance SP-004 Licensing of Evaluation Facilities SP-005 Mutual Recognition and International Liaison SP-007 Quality Manual SP-008 Charges and Fees SP-010 Certification Application - Form SP-021 ITSEF License Application Form SP-022 Evaluator Status Change Application Form 9
10 Scheme Publications 2(2) SP-024 Evaluator IT Security Competence Form SP-061 Certification Agreement Form SP-070 Conditions for the Use of Trademarks SP-079 Licensing Agreement Form SP-084 Sponsor's and Developer's Guide SP-089 Complaint Report Form SP-092 Appeal Report Form SP-094 Request for Interpretation Form SP-103 Terms of Reference for the Scheme Advisory Committee SP-136 Legal Dependencies SP-153 License Agreement 10
11 Current Status CSEC Staff, docs and procs in place. Four certifications running EN45011 accreditation close to completion CCRA Shadowing done in early Sep Labs Combitech and atsec Both got conditional license from CSEC Both accreditation close to completion. Both trial evaluations close to completion About 10 evaluators in the Scheme. 11
12 Cooperation with SEMA SEMA Swedish Emergency Management Agency Information booklet about CC & CCRA. Study to find CCRA Protection Profiles that could be suitable for use by Swedish government agencies. Cooperation with other Swedish government agencies to: Identify most common threats to IT-products used by Swedish gov. Identify most common IT-sec incidents caused by weaknesses of such IT-products. To be used as knowledge base during certifiers oversight of PP and Product evaluations. 12
13 Thanks for your attention. Q s? More info: 13
Swedish Certification Body for IT Security. 007 Quality Manual. Issue: 32.0, 2014-jun-24. Authorisation: Mats Engquist, Quality Manager, CSEC
Template: CSEC_mall_doc, 7.0 Ärendetyp: 6 Diarienummer: 14FMV1748-32:1 Dokument ID SP-007 HEMLIG/ enligt Offentlighets- och sekretesslagen (2009:400) 2014-06-24 Country of origin: Sweden Försvarets materielverk
More information070 Conditions for the Use of Trademarks
Ärendetyp: 6 Diarienummer: 17FMV9080-47:1 Dokument ID SP-070 HEMLIG/ enligt Offentlighets- och sekretesslagen (2009:400) 2018-02-07 Country of origin: Sweden Försvarets materielverk Swedish Certification
More informationIT Security Evaluation : Common Criteria
AfriNIC-9 MEETING Mauritius 22-28 November 2008 IT Security Evaluation : Common Criteria Ministry of Communication Technologies National Digital Certification Agency Mounir Ferjani November 2008 afrinic
More information004 Licensing of Evaluation Facilities
Template: CSEC_mall_doc, 7.0 Ärendetyp: 6 Diarienummer: 14FMV1748-1:1 Dokument ID SP-004 HEMLIG/ enligt Offentlighets- och sekretesslagen (2009:400) 2014-02-06 Country of origin: Sweden Försvarets materielverk
More informationCertification Report - Secure Messages Protection Profile
Ärendetyp: 6 Diarienummer: 18FMV5993-20:1 HEMLIG/ enligt Offentlighets- och sekretesslagen (2009:400) 2018-12-18 Country of origin: Sweden Försvarets materielverk Certification Report - Secure Messages
More informationIT Security Evaluation and Certification Scheme Document
IT Security Evaluation and Certification Scheme Document June 2015 CCS-01 Information-technology Promotion Agency, Japan (IPA) IT Security Evaluation and Certification Scheme (CCS-01) i / ii Table of Contents
More information002 Evaluation and Certification
Ärendetyp: 6 Diarienummer: 17FMV9080-2:1 Document ID SP-002 enligt sekretesslagen (1980:100) 2017-11-01 Country of origin: Sweden Försvarets materielverk Swedish Certification Body for IT Security Issue:
More informationCC Part 3 and the CEM Security Assurance and Evaluation Methodology. Su-en Yek Australasian CC Scheme
CC Part 3 and the CEM Security Assurance and Evaluation Methodology Su-en Yek Australasian CC Scheme What This Tutorial Is An explanation of where Security Assurance Requirements fit in the CC evaluation
More informationSECURITY CERTIFICATION
ÉDITION 2018 SECURITY CERTIFICATION OF PRODUCTS BY THE FRENCH NATIONAL CYBERSECURITY AGENCY (ANSSI) PAR L AGENCE NATIONALE DE LA SÉCURITÉ DES SYSTÈMES D INFORMATION Security Visas provide a competitive
More informationOverview of ICT certification laboratories FINAL V1.1 JANUARY European Union Agency For Network and Information Security
Overview of ICT certification laboratories FINAL V1.1 JANUARY 2018 www.enisa.europa.eu European Union Agency For Network and Information Security About ENISA The European Union Agency for Network and Information
More informationISO/IEC INTERNATIONAL STANDARD. General requirements for the competence of testing and calibration laboratories
INTERNATIONAL STANDARD ISO/IEC 17025 Second edition 2005-05-15 General requirements for the competence of testing and calibration laboratories Exigences générales concernant la compétence des laboratoires
More informationRFM Procedure 3: Certification Body Approval for Chain of Custody Standard. Alaska Responsible Fisheries Management (RFM) Certification Program 17065
RFM Procedure 3: Certification Body Approval for Chain of Custody Standard Alaska Responsible Fisheries Management (RFM) Certification Program 17065 RFM Version 4, Jan 2018 1 1.0 Purpose This document
More informationPolicy for Accrediting Assessment Bodies Operating within the Cradle to Cradle Certified Product Certification Scheme. Version 1.2
Policy for Accrediting Assessment Bodies Operating within the Cradle to Cradle Certified Product Certification Scheme Version 1.2 July 2015 Copyright, Cradle to Cradle Products Innovation Institute, 2015
More information084 Sponsors and Developers Guide to the Evaluation and Certification
Ärendetyp: 6 Diarienummer: 17FMV9080-8:1 Dokument ID SP-084 HEMLIG/ enligt Offentlighets- och sekretesslagen (2009:400) 2017-11-01 Country of origin: Sweden Försvarets materielverk Swedish Certification
More informationAdditional Requirements for Accreditation of Certification Bodies
Additional Requirements for Accreditation of Certification Bodies ADDITIONAL REQUIREMENTS FOR ACCREDITATION OF CERTIFICATION BODIES Copyright Standards Council of Canada, 2008 All rights reserved. No
More informationConformity Assessment Schemes and Interoperability Testing (1) Keith Mainwaring ITU Telecommunication Standardization Bureau (TSB) Consultant
Conformity Assessment Schemes and Interoperability Testing (1) Keith Mainwaring ITU Standardization Bureau (TSB) Consultant Moscow, 9-11 november 2011 Contents The benefits of conformity assessment Conformity
More informationAn unofficial translation, in case of any discrepancies between the English version and the original Swedish version the latter will prevail.
An unofficial translation, in case of any discrepancies between the English version and the original Swedish version the latter will prevail. Consolidated version of The Swedish Board for Accreditation
More informationBuilding an Assurance Foundation for 21 st Century Information Systems and Networks
Building an Assurance Foundation for 21 st Century Information Systems and Networks The Role of IT Security Standards, Metrics, and Assessment Programs Dr. Ron Ross National Information Assurance Partnership
More informationPolicy for Certification of Private Label Products Within the Cradle to Cradle Certified Certification Scheme. Version 1.0.
Policy for Certification of Private Label Products Within the Cradle to Cradle Certified Certification Scheme Version 1.0 March 2015 Copyright, Cradle to Cradle Products Innovation Institute, 2015 Cradle
More informationAccreditation Services Council Governing Charter
Accreditation Services Council Governing Charter 2 Accreditation Services Council Governing Charter I. Introduction The Accreditation Services Council (Council) is established as a standing committee of
More informationProcess for the Evaluation and Acceptance of Building Products in the USA
Process for the Evaluation and Acceptance of Building Products in the USA Rick Okawa, P.E. Deputy Vice President of Global Services and Business Development An Integrated Building System Product Certification
More informationInspection and Certification for Individual Farms, Smallholder Group Certification S S R A N A S R S C I E N T I S T
Inspection and Certification for Individual Farms, Smallholder Group Certification S S R A N A S R S C I E N T I S T What is Certification? Organic certification system is a quality assurance initiative,
More informationICNDT WG1 on qualification and certification efforts on global harmonization of the process of personnel certification
19 th World Conference on Non-Destructive Testing 2016 ICNDT WG1 on qualification and certification efforts on global harmonization of the process of personnel certification Alexander MULLIN 1 1 RTC Testing
More informationCertification Report Arbit Data Diode 2.0
Ärendetyp: 6 Diarienummer: 15FMV10190-35:1 Dokument ID CSEC-37-1072 HEMLIG/ enligt Offentlighets- och sekretesslagen (2009:400) 2016-10-13 Country of origin: Sweden Försvarets materielverk Swedish Certification
More informationCERTIFICATE SCHEME THE MATERIAL HEALTH CERTIFICATE PROGRAM. Version 1.1. April 2015
CERTIFICATE SCHEME For THE MATERIAL HEALTH CERTIFICATE PROGRAM Version 1.1 April 2015 Copyright Cradle to Cradle Products Innovation Institute, 2015 1 Purpose The intention of the Certificate Scheme is
More informationLaboratory Accreditation Building Confidence on Testing Quality
Laboratory Accreditation Building Confidence on Testing Quality Dr. George Anastasopoulos, Director (Conformity Assessment) & Prasanth S Ramakrishnan, MS, LEED-AP (Principal Staff & Program Manager) ASME
More informationITU Asia-Pacific Centres of Excellence Training on Conformity and Interoperability. Session 2: Conformity Assessment Principles
ITU Asia-Pacific Centres of Excellence Training on Conformity and Interoperability Session 2: Conformity Assessment Principles 12-16 October 2015 Beijing, China Keith Mainwaring ITU Expert Agenda 1. Context
More informationEA-7/05 - EA Guidance on the Application of ISO/IEC 17021:2006 for Combined Audits
Publication Reference EA-7/05 EA Guidance on the Application of ISO/IEC 17021:2006 for Combined Audits PURPOSE This document has been prepared by a task force under the direction of the European Cooperation
More informationHKICA-CC01 Certification Criteria CERTIFICATION SCHEME OF QUALITY MANAGEMENT SYSTEM AUDITOR (CSQMSA)
HKICA-CC01 Certification Criteria 1 CERTIFICATION SCHEME OF QUALITY MANAGEMENT SYSTEM AUDITOR (CSQMSA) HKICA-CC01 Criteria established based on IPC (BD-05-007) Specification for the Development of Examinations
More informationISO/IEC INTERNATIONAL STANDARD. Conformity assessment Requirements for bodies certifying products, processes and services
INTERNATIONAL STANDARD ISO/IEC 17065 First edition 2012-09-15 Conformity assessment Requirements for bodies certifying products, processes and services Évaluation de la conformité Exigences pour les organismes
More informationCommon Criteria. Introduction Emilie Barse Magnus Ahlbin
Common Criteria Introduction 2015-02-23 Emilie Barse Magnus Ahlbin 1 Magnus Ahlbin Head of EC/ITSEF Information and Security Combitech AB SE-351 80 Växjö Sweden magnus.ahlbin@combitech.se www.combitech.se
More informationIATF - International Automotive Task Force Rules for achieving and maintaining IATF Recognition IATF Rules 5 th Edition Sanctioned Interpretations
Rules for achieving and maintaining IATF Recognition IATF Rules 5 th Edition Sanctioned Interpretations The Rules for achieving and maintaining IATF Recognition 5 th Edition for IATF 16949 ( Rules 5 th
More informationPART IV GLOSSARY OF TERMS
PART IV GLOSSARY OF TERMS Terms and Definitions For the purposes of this document, the following terms and definitions shall apply: PROCESS MANUAL FOR THE GFSI BENCHMARKING PROCESS V7.2 Introduction Purpose
More informationCertification program PCWU-3
The certification program of utility products type 3 of the certification program according to PN-EN ISO/IEC 17067 Number: Page: 1 z 8 MS-0013527 Is valid from: 01.03.2016 Prepared: Tomasz Marcinek Approved:
More informationUKAS accredited Certification Bodies
Transfer of ISO 9001 Certification between UKAS accredited Certification Bodies CIBSE Certification as a Certification Body The Significance of UKAS Accreditation The Transfer Route CIBSE Certification
More informationHKICA-CC01 Examination Syllabus
HKICA-CC01 Examination Syllabus 1 CERTIFICATION SCHEME OF QUALITY MANAGEMENT SYSTEM AUDITOR (CSQMSA) SANDRA WN HO HKICA-CC01 Criteria established based on IPC (BD-05-007) Specification for the Development
More informationAuthorized Training Provider Application Process
Authorized Training Provider Application QuEST Forum Training Sub-Team 10 August 2015 This document describes the process and provides guidance to organizations that wish to become Authorized Training
More informationChecklist According to ISO IEC 17024:2012 for Certification Bodies for person
Name of Certifying Body Address of Certifying Body Case number Date of assessment With several locations Yes No Assessed locations: (Name)/Address: (Name)/Address: (Name)/Address: Assessed area (technical
More informationISO/IEC INTERNATIONAL STANDARD. Information technology Security techniques Methodology for IT security evaluation
INTERNATIONAL STANDARD ISO/IEC 18045 First edition 2005-10-01 Information technology Security techniques Methodology for IT security evaluation Technologies de l'information Techniques de sécurité Méthodologie
More informationInformation technology Security techniques Requirements for bodies providing audit and certification of information security management systems
Provläsningsexemplar / Preview INTERNATIONAL STANDARD ISO/IEC 27006 Third edition 2015-10-01 Information technology Security techniques Requirements for bodies providing audit and certification of information
More informationMyCC Scheme Policy (MyCC_P1)
File name: Version: v1a Date of document: 31 Dec 2009 Document classification: For inquiry about this document, please email to mycc@cybersecurity.my For general inquiry about us or our services, please
More informationNational Information Assurance Partnership. Common Criteria Evaluation and Validation Scheme Validation Report
National Information Assurance Partnership TM Common Criteria Evaluation and Validation Scheme Validation Report IEEE IEEE 2600.1-2009 Report Number: CCEVS-VR-10340 Dated: 2009-06-09 Version: 2.0 National
More informationACCREDITATION: A BRIEFING FOR GOVERNMENTS AND REGULATORS
ACCREDITATION: A BRIEFING FOR GOVERNMENTS AND REGULATORS Accreditation is continuously gaining recognition as an important technical tool in the delivery of objectives across an increasing range of policy
More informationPROTERRA CERTIFICATION PROTOCOL V2.2
PROTERRA CERTIFICATION PROTOCOL V2.2 TABLE OF CONTENTS 1. Introduction 2. Scope of this document 3. Definitions and Abbreviations 4. Approval procedure for Certification Bodies 5. Certification Requirements
More informationRevised November EFESC Handbook
Revised November 2015 EFESC Handbook 1 Table of Contents EFESC Handbook... 1 Table of Contents... 2 Handbook EFESC... 4 1 Background and objectives... 4 1.1 Sectoral developments... 4 1.1 Objectives...
More informationISO/IEC TR Information technology Security techniques Guidelines for the use and management of Trusted Third Party services
This is a preview - click here to buy the full publication TECHNICAL REPORT ISO/IEC TR 14516 First edition 2002-06-15 Information technology Security techniques Guidelines for the use and management of
More informationUNCONTROLLED IF PRINTED
161Thorn Hill Road Warrendale, PA 15086-7527 1. Scope 2. Definitions PROGRAM DOCUMENT PD 1000 Issue Date: 19-Apr-2015 Revision Date: 26-May-2015 INDUSTRY MANAGED ACCREDITATION PROGRAM DOCUMENT Table of
More informationThe Accreditation and Verification Regulation - Verification report
EUROPEAN COMMISSION DIRECTORATE-GENERAL CLIMATE ACTION Directorate A - International and Climate Strategy CLIMA.A.3 - Monitoring, Reporting, Verification Guidance Document The Accreditation and Verification
More informationCommon Criteria Evaluation and Validation Scheme for. Information Technology Laboratory DRAFT
59 Common Criteria Evaluation and Validation Scheme for Information Technology Security Validation Body Standard Operating Procedures Scheme Publication #2 DRAFT Version 1.5 May 2000 National Institute
More informationDescription of the certification procedure MS - ISO 9001, MS - ISO 14001, MS - ISO/TS and MS BS OHSAS 18001, MS - ISO 45001, MS - ISO 50001
The certification of a management system based on standard ISO 9001, ISO 14001, ISO/TS 29001, BS OHSAS 18001, ISO 45001 or ISO 50001, consists of the offer and contract phase, the audit preparation, performance
More informationACCAB. Accreditation Commission For Conformity Assessment Bodies
ACCAB Accreditation Commission For Conformity Assessment Bodies ACCAB Platinum Plus Accreditation For Certification Bodies, Inspection Bodies, Testing & Calibration Laboratories and Medical Laboratories
More informationIAS Accreditation Overview. Mark Johnson, ICC
IAS Accreditation Overview Mark Johnson, ICC What We Will Cover IAS Background Overview of IAS Programs IAS Accreditation and Building Codes IAS Laboratory Accreditation Program 2 About IAS: Company Profile
More informationISO/IEC INTERNATIONAL STANDARD
INTERNATIONAL STANDARD ISO/IEC 27006 Second edition 2011-12-01 Information technology Security techniques Requirements for bodies providing audit and certification of information security management systems
More informationRules for the Authorization of Certification Bodies
Rainforest Alliance Rules for the Authorization of Certification Bodies April, 2018 Version 1 More information? For more information about the Rainforest Alliance, visit www.rainforest-alliance.org or
More informationCertification Report. EAL 4+ (ALC_DVS.2) Evaluation of TÜBİTAK BİLGEM UEKAE. AKİS v1.4i PASAPORT
Certification Report EAL 4+ (ALC_DVS.2) Evaluation of TÜBİTAK BİLGEM UEKAE AKİS v1.4i PASAPORT issued by Turkish Standards Institution Common Criteria Certification Scheme SOFTWARE TEST and CERTIFICATION
More informationPhase I CAQH CORE 102: Eligibility and Benefits Certification Policy version March 2011
Phase I CAQH CORE 102: Eligibility and Benefits Certification Policy GUIDING PRINCIPLES After signing the CORE Pledge, the entity has 180 days to complete CORE certification testing. CORE will not certify
More informationACCREDITATION COMMISSION FOR CONFORMITY ASSESSMENT BODIES
ACCREDITATION COMMISSION FOR CONFORMITY ASSESSMENT BODIES ACCREDITATION SCHEME MANUAL Document Title: Document Number: Various Accreditation Schemes ACCAB-ASM-7.0 CONTROLLED COPY Revision Number Revision
More informationVOLUNTARY CERTIFICATION SCHEME FOR MEDICINAL PLANT PRODUCE REQUIREMENTS FOR CERTIFICATION BODIES
VOLUNTARY CERTIFICATION SCHEME FOR MEDICINAL PLANT PRODUCE 1. Scope REQUIREMENTS FOR CERTIFICATION BODIES 1.1 This document describes the requirements the Certification Bodies (CBs) are expected to meet
More informationPosition Description IT Auditor
Position Title IT Auditor Position Number Portfolio Performance and IT Audit Location Victoria Supervisor s Title IT Audit Director Travel Required Yes FOR OAG HR USE ONLY: Approved Classification or Leadership
More informationChain of Custody Policy. July, 2015
July, 2015 Copies of this document are available for free in electronic format at the following website: www.rainforest-alliance.org Please send your comments or suggestions concerning this document to
More informationGermany and The Netherlands Certification of cryptographic modules
Germany and The Netherlands Certification of cryptographic modules Leo Kool (Msc), Brightsight 18 May 2016, kool@brightsight.com Outline CC and Schemes Evaluation Process and Reporting forms (NSCIB, BSI)
More informationACCAB. Accreditation Commission For Conformity Assessment Bodies
ACCAB Accreditation Commission For Conformity Assessment Bodies ACCAB Platinum Plus Accreditation For Certification Bodies, Inspection Bodies, Testing & Calibration Laboratories and Medical Laboratories
More informationNATIONAL INSTITUTE OF FORENSIC SCIENCE
NATIONAL INSTITUTE OF FORENSIC SCIENCE LEGISLATIVE OUTLINE National Institute of Forensic Sciences (NIFS) The NIFS will be responsible for the coordination, administration, and oversight of all of the
More informationThe Next Step for ISO 9001 and ISO Certification Advanced Surveillance and Recertification procedures (ASRP)
Companies with mature management systems often feel a decrease in value and an increase in cost over time due to third-party audits. Advanced Surveillance and Recertification Procedures (ASRP) is a solution
More informationPECB Change Log Form
GENERAL INFORMATION Owner / Department* Approver / Department * Training Development Department Quality Assurance Department Date of Approval* 2018/03/21 Course name: Language: New Version: Previous Version:
More informationMinimum Scheme Requirements to Certify Criminal Justice Restraints Described
This document is scheduled to be published in the Federal Register on 07/13/2017 and available online at https://federalregister.gov/d/2017-14638, and on FDsys.gov Billing Code: 4410-18 DEPARTMENT OF JUSTICE
More informationTrend Micro Professional Services Partner Program
Trend Micro Professional Services Partner Program PROGRAM OVERVIEW The Trend Micro Partner Program provides professional services companies with the certification, training, technical support and access
More informationISO/IEC INTERNATIONAL STANDARD. Information technology Security techniques Information security management system implementation guidance
INTERNATIONAL STANDARD ISO/IEC 27003 First edition 2010-02-01 Information technology Security techniques Information security management system implementation guidance Technologies de l'information Techniques
More informationEXAM PREPARATION GUIDE
When Recognition Matters EXAM PREPARATION GUIDE PECB Certified ISO 37001 Lead Auditor www.pecb.com The objective of the Certified ISO 37001 Lead Auditor examination is to ensure that the candidate possesses
More informationINTERNATIONAL STANDARD
ISO/IEC 18598 INTERNATIONAL STANDARD Edition 1.0 2016-09 Information technology Automated infrastructure management (AIM) systems Requirements, data exchange and applications INTERNATIONAL ELECTROTECHNICAL
More informationSession 5: Business Continuity, with Business Impact Analysis
Session 5: Business Continuity, with Business Impact Analysis By: Tuncay Efendioglu, Acting Director Internal Oversight Division, WIPO Pierre-François Gadpaille, Audit Specialist (Information Systems),
More informationProgress of the UAE Nuclear Power Program -Regulator s Perspective
Progress of the UAE Nuclear Power Program -Regulator s Perspective INTERNATIONAL FRAMEWORK FOR NUCLEAR ENERGY COOPERATION INFRASTRUCTURE DEVELOPMENT WORKING GROUP WORKSHOP ON NEW CHALLENGES FACING NUCLEAR
More informationThe German IT Security Certification Scheme. Joachim Weber
The German IT Security Certification Scheme Joachim Weber The German IT Security Certification Scheme 1. The role of the BSI 2. The German IT Certificate Scheme 3. Certification procedures in detail 4.
More informationPlumbing Product Certification WaterMark Level 2
NCSI Recognition Booklet Addendum Plumbing Product Certification WaterMark Level 2 1. General In Australia most of the plumbing and drainage products and materials are required to be certified under the
More informationIntroduce the major evaluation criteria. TCSEC (Orange book) ITSEC Common Criteria
Introduce the major evaluation criteria. TCSEC (Orange book) ITSEC Common Criteria Evaluation: assessing whether a product has the security properties claimed for it. Certification: assessing whether a
More informationMinimum Requirements For The Operation of Management System Certification Bodies
ETHIOPIAN NATIONAL ACCREDITATION OFFICE Minimum Requirements For The Operation of Management System Certification Bodies April 2011 Page 1 of 11 No. Content Page 1. Introduction 2 2. Scope 2 3. Definitions
More informationIAF Guidance on the Application of ISO / IEC Guide 65:1996
IAF GD5:2004 International Accreditation Forum, Inc. IAF Guidance Document IAF Guidance on the Application of ISO / IEC Guide 65:1996 General Requirements for Bodies operating Product Certification Systems
More informationCCM 4350 Week 22. Security Architecture and Engineering. Dr A. Lasebae School of Science and Technology CCM4350 1
CCM 4350 Week 22 Security Architecture and Engineering Dr A. Lasebae School of Science and Technology CCM4350 1 Security Evaluation CCM4350 2 Security Evaluation How do you get assurance that your computer
More informationJuniper Networks EX3200 and EX4200 Switches running JUNOS 9.3R2
122 ASSURANCE MAINTENANCE REPORT MR2 (supplementing Certification Report No. CRP248 and Assurance Maintenance Report MR1) Juniper Networks EX3200 and EX4200 Switches running JUNOS 9.3R2 Version 9.3R2 Issue
More informationAssurance Continuity Maintenance Report
Assurance Continuity Maintenance Report Tatsuo Tomita, Chairman Information-technology Promotion Agency, Japan 2-28-8 Honkomagome, Bunkyo-ku, Tokyo Changed TOE Reception Date of Application 2018-01-04
More informationIAF Mandatory Document for the Transfer of Accredited Certification of Management Systems
IAF MD 2:2007. International Accreditation Forum, Inc. IAF Mandatory Document IAF Mandatory Document for the Transfer of Accredited Certification of Management Systems (IAF MD 2:2007) IAF MD2:2007 International
More informationEVALUATION AND APPROVAL OF AUDITORS. Deliverable 4.4.3: Design of a governmental Social Responsibility and Quality Certification System
EVALUATION AND APPROVAL OF AUDITORS Deliverable 4.4.3: Design of a governmental Social Responsibility and Quality Certification System 1 TABLE OF CONTENTS 1. Scope and field of Application 3 2. Normative
More informationISO/IEC INTERNATIONAL STANDARD. Conformity assessment Supplier's declaration of conformity Part 1: General requirements
INTERNATIONAL STANDARD ISO/IEC 17050-1 First edition 2004-10-01 Conformity assessment Supplier's declaration of conformity Part 1: General requirements Évaluation de la conformité Déclaration de conformité
More informationJuniper Networks J2300, J2350, J4300, M7i and M10i Services Routers running JUNOS 8.5R3
122 ASSURANCE MAINTENANCE REPORT MR3 (supplementing Certification Report No. CRP237 and Assurance Maintenance Reports MR1 and MR2) Juniper Networks J2300, J2350, J4300, M7i and M10i Services Routers running
More informationEXAM PREPARATION GUIDE
When Recognition Matters EXAM PREPARATION GUIDE PECB Certified ISO 14001 Lead Implementer www.pecb.com The objective of the PECB Certified ISO 14001 Lead Implementer examination is to ensure that the candidate
More informationR103 - GENERAL REQUIREMENTS: PROFICIENCY TESTING FOR ISO/IEC LABORATORIES
Page 1 of 8 R103 - GENERAL REQUIREMENTS: PROFICIENCY TESTING FOR ISO/IEC 17025 2018 2018 by A2LA All rights reserved. No part of this document may be reproduced in any form or by any means without the
More informationGlobal Specification Protocol for Organisations Certifying to an ISO Standard related to Market, Opinion and Social Research.
CONTENTS i. INTRODUCTION 3 ii. OVERVIEW SPECIFICATION PROTOCOL DOCUMENT DEVELOPMENT PROCESS 4 1. SCOPE 5 2. DEFINITIONS 5 3. REFERENCES 6 4. MANAGEMENT STANDARDS FOR APPROVED CERTIFICATION BODIES 6 4.1
More informationTimber Products Inspection, Inc.
Timber Products Inspection, Inc. Product Certification Public Document Timber Products Inspection, Inc. P.O. Box 919 Conyers, GA 30012 Phone: (770) 922-8000 Fax: (770) 922-1290 TP Product Certification
More informationCertification Report - Protection Profile Encrypted Storage Device
Template: CSEC_mall_doc, 7.0 Ärendetyp: 6 Diarienummer: 11FMV10216-27:1 Dokument ID FMVID-297-247 HEMLIG/ enligt Offentlighets- och sekretesslagen (2009:400) 2012-06-25 Country of origin: Sweden Försvarets
More informationASSURANCE MAINTENANCE REPORT MR3 (supplementing Certification Report No. CRP248) Version 9.3R1. Issue 1.0 April 2011
122 ASSURANCE MAINTENANCE REPORT MR3 (supplementing Certification Report No. CRP248) Juniper Networks M7i, M10i, M40e, M120, M320, T320, T640, T1600, MX240, MX480 and MX960 Services Routers and EX3200,
More informationISO/IEC Accreditation: The Big Picture and Getting Started
ISO/IEC 17025 Accreditation: The Big Picture and Getting Started John Szpylka, Ph.D. Scientific Affaires Director, Chemistry N.A. AAFCO 2017 Midyear Meeting Takeaways Accreditation versus Certification
More informationPolicy for Manufacturers to Maintain Compliance Within the Material Health Certificate Scheme. Version 1.1. January 2015
Policy for Manufacturers to Maintain Compliance Within the Material Health Certificate Scheme Version 1.1 January 2015 Copyright Cradle to Cradle Products Innovation Institute, 2015 1 Purpose This policy
More informationACCREDITATION COMMISSION FOR CONFORMITY ASSESSMENT BODIES
ACCREDITATION COMMISSION FOR CONFORMITY ASSESSMENT BODIES ACCREDITATION SCHEME MANUAL Document Title: Document Number: Various Accreditation Schemes ACCAB-ASM-7.0 CONTROLLED COPY Revision Number Revision
More informationACCREDITATION OF CERTIFICATION BODIES OF SOCIAL ACCOUNTABILITY SYSTEMS SAAS ACCREDITATION REQUIREMENTS TABLE OF CONTENTS
SOCIAL ACCOUNTABILITY ACCREDITATION SERVICES ACCREDITATION OF CERTIFICATION BODIES OF SOCIAL ACCOUNTABILITY SYSTEMS SAAS ACCREDITATION REQUIREMENTS TABLE OF CONTENTS 1.0 INTRODUCTION 2 2.0 REFERENCES 2
More informationDEFINING FEATURES OF QUALITY CERTIFICATION AND ASSESSMENT-BASED CERTIFICATE PROGRAMS (Draft) Rev. 5.1 August 8, 2007
Introduction In January 2007, the National Organization for Competency Assurance (NOCA) Board of Directors established a Certificate Task Force to: identify characteristics of quality certification and
More informationISO/IEC INTERNATIONAL STANDARD. Information technology Security techniques Information security risk management
INTERNATIONAL STANDARD ISO/IEC 27005 First edition 2008-06-15 Information technology Security techniques Information security risk management Technologies de l'information Techniques de sécurité Gestion
More informationAccreditation Criteria For Conformity Assessment Bodies
Page 1 of 8 Reviewed by: Getnet Tsigemalak Approved by: Araya Fesseha Position: Quality Manager Position: Director General Signature: Signature: Contents Page 1 Purpose and Scope... 2 2 References... 2
More informationISO / IEC 27001:2005. A brief introduction. Dimitris Petropoulos Managing Director ENCODE Middle East September 2006
ISO / IEC 27001:2005 A brief introduction Dimitris Petropoulos Managing Director ENCODE Middle East September 2006 Information Information is an asset which, like other important business assets, has value
More informationProcedure for Network and Network-related devices
Lloyd s Register Type Approval System Type Approval Requirements for components within Cyber Enabled Systems on board Ships Procedure for Network and Network-related devices September 2017 1 Reference:
More informationMembership Categories and Benefits
Membership Categories and Benefits As a participant in ISASecure, you are working with thought leaders who are taking action to improve our world. ISASecure promotes and certifies robust and secure technology
More information