GP Confidential GlobalPlatform’s Modular Approach to its Compliance and certification.

Slides:



Advertisements
Similar presentations
Connected Health Framework
Advertisements

What is Cloud Computing? Massive computing resources, deployed among virtual datacenters, dynamically allocated to specific users and tasks and accessed.
What is Cloud Computing? Massive computing resources, deployed among virtual datacenters, dynamically allocated to specific users and tasks and accessed.
Multi-Application in Smart Card-based Devices Christophe Colas, Chief Software Architect August 2002.
Jose Jimenez Director. International Programmes Telefónica Digital.
Digital Identity Group May GIXEL  GIXEL is the professional association of electronic component and system industries in France. It brings together.
Quality Label and Certification Processes Vienna Summit 11 April 2014 Karima Bourquard Director of Interoperability IHE-Europe.
The GSMA July 2014 Restricted - Confidential Information
1 GP Confidential © GlobalPlatform’s Value Proposition for Mobile Point of Sale (mPOS)
Dongyan Wang GlobalPlatform Technical Program Manager
SE 464: Industrial Information systems Systems Engineering Department Industrial Information System LAB 02: Introduction to SAP.
AceMedia Personal content management in a mobile environment Jonathan Teh Motorola Labs.
- 1 - Component Based Development R&D SDM Theo Schouten.
Secure Element Access from a Web browser W3C Workshop on Authentication, Hardware Tokens and Beyond 11 September Oberthur Technologies – Identity.
Web Cryptography & Utilizing ARM TrustZone® based TEE for Authentication & Cryptography Ilhan Gurel September 10th & 11th, 2014.
IoT Standardization; A vendors perspective Brussels, 11 th of May 2015 Yun Chao Hu Version 2.0.
OneM2M Draft proposal for slide set. This is not intended to be a oneM2M presentation. It is a collection of source material slides which can be used.
OHT ARCHITECTURE COUNCIL UPDATE Presentation to September 2011 OHT Board of Stewards Meeting Ken Rubin, HP Craig Miller, Vangent.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Confidential 1 MAP Value Proposition.
SOA – Development Organization Yogish Pai. 2 IT organization are structured to meet the business needs LOB-IT Aligned to a particular business unit for.
Securing Legacy Software SoBeNet User group meeting 25/06/2004.
Olivier Amiot Director, Enterprise Marketing Sierra Wireless mHealth.
IAR Bluetooth technical support 23th, April, 2002 Taipei David Feng IAR Business Concept.
Who Are We? An open, international ecosystem containing 70+ organizations each working in their own self-interest while collaborating toward a common industry.
TEC Automobile WG. Joint Work Group Meeting.
THE GITB TESTING FRAMEWORK Jacques Durand, Fujitsu America | December 1, 2011 GITB |
GOC Technical Architecture GoC Position on Open Source Presentation to eGovOS Open Source in Government Series March 15, 2004.
Business Seminar - Technical Overview & Roadmap August 21, 2002 – Toronto Marc Kekicheff GlobalPlatform Technical Director August 21, 2002 – Toronto Marc.
Panel Three - Small Businesses: Sustaining and Growing a Market Presence Open Interfaces and Market Penetration Protecting Intellectual Innovation and.
An Operators Input for oneM2M Baseline  Group name: TP#2/WG1  Source: DTAG, Vodafone Group  Meeting Date:  Agenda Item: WG1 agenda item.
Draft – discussion only Content Standards WG (Documents and Data) Proposed HITSC Workgroup Evolution 1 Architecture, Services & APIs WG Transport and Security.
SOFTWARE REUSABILITY AJAYINDER SINGH CSC What is Software Reuse Software reuse is the process of implementing or updating software systems using.
THE MOBILE CHANNEL IN FINANCIAL SERVICES TARIK HUSAIN BUSINESS DEVELOPMENT DIRECTOR ASIAN BANKER SUMMIT APRIL 2011.
© Mahindra Satyam 2009 Decision Analysis and Resolution QMS Training.
Overview TIA TR-50 – Smart Device Communications Orlett W. Pearson March 2010.
Ivo Rosol, OKsystem Middleware.
JEMMA: an open platform for a connected Smart Grid Gateway GRUPPO TELECOM ITALIA MAS2TERING Smart Grid Workshop Brussels, September Strategy &
Work Group / Work Item Proposal Slide 1 © 2012 oneM2M Partners oneM2M-TP oneM2M_Work_Group_Work_Item_Proposal Group name: Technical Plenary Source:
Last Updated 1/17/02 1 Business Drivers Guiding Portal Evolution Portals Integrate web-based systems to increase productivity and reduce.
Enabling the Future Service-Oriented Internet (EFSOI 2008) Supporting end-to-end resource virtualization for Web 2.0 applications using Service Oriented.
Mariann Yeager, NHIN Policy and Governance Lead (Contractor) Office of the National Coordinator for Health IT David Riley, CONNECT Lead (Contractor) Federal.
1 HGI MESSAGE TO ONEM2M TECHNICAL PLENARY HANS WERNER BITZER, DEUTSCHE TELEKOM VICE CHAIR, HGI ONEM2M TP#19, SOPHIA ANTIPOLS, FRANCE.
OpenHAN TF Meeting Where do we go next? Erich W. Gunther.
OneM2M Partnership Project. Contents Introduction Founding Partners Participation Scope & Objectives Structure Deliverables Contacts © 2013 oneM2M Partners.
Status of Active Work Items Level of Completeness Group Name: WPM Source: Roland Hechwartner, WPM Convenor Updated:
OUTCOMES OBJECTIVES FUNCTIONS ACTIONS TERRITORIES LOCATIONS MARKET SEGMENTS TIME LINESCHALLENGE IMPACT RESOURCESACTIVITIESCHANNELS RELATIONS PARTNERS CUSTOMERS.
AIOTI ALLIANCE FOR INTERNET OF THINGS INNOVATION Chair: Kit Lam (Samsung) & Co-Chair: Thomas Kallstenius (iMinds) Brussels, WG7 Wearables.
DM Collaboration – OMA & BBF: Deployment Scenarios Group Name: WG5 - MAS Source: Tim Carey, ALU, Meeting Date:
Discussion on oneM2M and OSGi Interworking Group Name: ARC Source: Jessie, Huawei, Meeting Date: Agenda Item:
IoT R&I on IoT integration and platforms INTERNET OF THINGS
Education Portal Solutions for Higher Education Education portals create a common gateway to the data and services that the people throughout your university.
The Future Digital Identity Landscape in Europe Timothée Mangenot, chairman 14th of December, 2015 ACSIEL partners day.
TST R01-MBT_for_test_suites_development Use of MBT for test suites development- discussion Group Name: TST WG Source: Easy Global Market (EGM)
TST MBT_for_test_suites_development Use of MBT for test suites development- discussion Group Name: TST WG Source: Easy Global Market (EGM) Meeting.
Status of Active Work Items Level of Completeness
SIMalliance Members & Strategic Partners
Development of Sustainable Smart Cities based on IoT
SIMalliance Members & Strategic Partners
SIMalliance Members & Strategic Partners
WPM ad-hoc group report TP#24
Management of Virtual Execution Environments 3 June 2008
Microsoft Azure Platform Powers New Elements Constellation Software Suite to Deliver Invaluable Insights From Your Data for Marketing and Sales MICROSOFT.
Building the Smart City Together
ETSI Standardization Activities on Smart Grids
Internet Engineering Course
SIMalliance Members & Strategic Partners
Development of Sustainable Smart Cities based on IoT
Building the Smart City Together
CCSA Considerations on M2M Consolidation
Presentation transcript:

GP Confidential GlobalPlatform’s Modular Approach to its Compliance and certification program Gil Bernabeu GlobalPlatform Technical Director January

The Value Proposal of GlobalPlatform Cross-industry interoperability, which allows for portability of services across platforms – Service providers now focus on convenience and functionality Scalable security that remains robust as the number of devices, applications and services proliferate – Real proof (certificate) of the interoperability and security End-to-end security and interoperability that leverages existing and proven methods and technologies – No barriers for deploying innovative services thanks to the remote update of the secure component 2

GlobalPlatform Members

Our Collaborative Industry Partners Secure Content Storage Association

GlobalPlatform Positioning 5

Variety of Devices 6

Variety of Market Requirements 7

The Killing Situation 8 PLATFORM Security Requirements for MY Service APPLICATION Security Requirements for MY Service APPLICATION

Solution Standardize platform interface layer Control the requirements for the platform Develop cross-market platform Protection Profile (PP)  Ensure consistency of markets’ demands  Promote cross-market PP endorsement Develop dedicated PP-modules for each market  Comply with stakeholders requirements 9

Helping a new complete solution GlobalPlatform Compliance GlobalPlatform Security Evaluation Market Certification Scheme Certified Qualified

Sustainable Ecosystem for Interoperability GlobalPlatform Compliance Program provides common core interoperable solutions An eco-system built around: 11 Test Suite Qualified Test Tool Qualified Test Laboratories Qualified Product SpecificationConfiguration

Compliance Program Web Portal 12 Qualified Products: Cards, SEs, TEE…! Qualified Labs Qualified Test Tools Public Workspace

Model-Based Testing (MBT) compliance program 13 Is used to generate Is abstractly implemented with Is concretely implemented with GlobalPlatform Specification Test tool Are implemented in GlobalPlatform Qualified Lab Is used by Is tested by MBT Model Test Suite

GlobalPlatform Compliance Program Test Tools from 5 member companies 14 Qualified Test Labs operated by 8 member companies 150 Qualified Products card and TEE from 25 different companies

Multi market recognized certification scheme – Adapted to an heterogeneous set of market requirements – Facilitate procurement rules (e.g. Common Criteria based) Two phased process – Certification of the TEE in a reference board implementing the complete architecture – Second phase on the final device TEE certification initiative 15 Secure boot HW features Trusted OS Evaluation scope

Typical collaboration with a vertical organization on Compliance & Certification Reuse the result of a GP qualification / Certification into a Associated organization scheme In place – with EMVCO for any secure element – with GSMA on UICC for NFC – with GSMA for M2M eUICC Official endorsement of the GP compliance/certification program also provides direct access to the road map of these programs 16 GP qualified ? No Yes

Proposed Collaboration: oneM2M & GlobalPlatform Evolution to provide additional services – Include oneM2M specific requirements in future GP specifications – On TEE – On SE Create specialized GP configuration for oneM2M deployments – Minimum functional requirements for secure components in one M2M deployments – E.g. for SE in oneM2M Gateway Include oneM2M security requirements into the GP security specifications – in TEE Protection profile TEE protection is built in the device/module (e.g. GP has a configuration for device with biometric UI) Specific module may be created for oneM2M ex security functions for LwM2M – IoT specific requirements for SE 17

Thank you! 18