GlobalPlatform Specification Simplifies Process to Check the Compliance and Certification Status of a Secure Component Product
August 2016 by Marc Jacob
Industry association GlobalPlatform has released a specification
which standardizes the digital format of Letters of Approval issued from
certification bodies and standardizes how they can be retrieved.
This clarity will
simplify the process for validating the functional compliance and security
certification status of a secure component product or of an application.
The Digital Letter of Approval (DLoA) Specification, which is free to download from
the GlobalPlatform,
will be of interest to stakeholders wanting to clarify the certification status of
secure component products, such as a secure element (SE) or trusted execution
environment (TEE), and of applications. This includes trusted service manager
vendors, certification bodies, platform and application developers, platform
evaluators, issuers, manufacturers and verification authorities.
All Letters of Approval issued by GlobalPlatform are now published on its
website in this universal format.
Gil Bernabeu, Technical Director at GlobalPlatform, explains: "Today, multiple
applications can reside on one secure component. If product issuers commit to
ensuring DLoAs are centrally available and presented in a globally consistent
manner, as outlined in our specification, trusted service managers and other parties
can quickly and easily validate if a product is secure and if an application can be
updated without complication."
The specification also:
* Clarifies how to access all certification documents (DLoAs) available for
a given secure component.
* Improves the management of the certification lifecycle.
* Defines a new entity called a DLoA registrar. A repository that states the
interface which enables a management system to retrieve a digital letter.