Singapore says its new status as a certifying body for a global cybersecurity standard will enable local developers to attain the certification more quickly and at a lower cost. Products developed in Singapore can also be exported, boosting the country’s competitiveness in the global cybersecurity market, the government said.
Singapore in January became a certificate authorising nation under the Common Criteria Recognition Arrangement (CCRA). Also called ISO/IEC 15408, Common Criteria (CC) is a technical standard used to evaluate and certify cybersecurity products and is the de-facto standard for such product certification adopted by governments and the industry.
According to the Ministry of Communications and Information (MCI), Singapore is one of 18 nations that can authorise certificates, joining a list that includes India, Malaysia, Australia, Germany, France, and the UK. Another 12 nations, which includes Indonesia, Greece, and Israel among others, are deemed to be able to consume certificates, which means they can accept CC certificates but cannot issue them.
A local CC Certification Body was set up by Singapore’s Cyber Security Agency (CSA) and tasked in ensuring ensuring the product evaluation conformed to the requirements of the CC standards. The certification body also would maintain approved Common Criteria Testing Laboratories that carried out product evaluation.
By Eileen Yu
To read the full article, please click here