Hardware and software: tested security from a single source

With its evaluation body for IT security, TÜViT is one of the world's leading providers of testing services for IT products and systems. The evaluation body has been recognized by the German Federal Office for Information Security (BSI) since 1991.

 

Perfect lineup

The framework conditions for the evaluation and measurement methods are determined either by international standards and specifications, such as Common Criteria, FIPS PUB 140-3, as well as specifications of the national and international credit services sector (EMVCo, Die Deutsche Kreditwirtschaft (The German Banking Industry Committee)).

If required, we agree the framework conditions individually with you. Our evaluation body for IT security is set up in accordance with the best available technology.

Our services at a glance

  • CC evaluations of IT products and systems in all evaluation levels
  • support for the preparation of security specifications and evidence documentation
  • workshops on the security criteria and the evaluation scope
  • consulting on evaluation processes / consulting packages
  • conduct of trainings, including training in criteria and attack methods

Our evaluation body covers the following topics

  • operating systems
  • security controller
  • database management systems
  • network devices (e.g. firewalls, VPN solutions, routers)
  • payment systems (smartcard components), software and hardware evaluations, payment applications
  • mobile systems, e.g. smartphones
  • communication systems
  • smart meter gateways (with conformity test for TR-03109)
  • signature applications
  • smartcard terminals
  • government applications (e.g. passport, identity card, eHealth)
  • combined systems, e.g. operating system + applications
  • smart cards
  • smart card operating systems and applications
  • hardware security modules
  • security controller

Your benefits at a glance

  • we have more than 20 years of experience with globally recognized evaluations of security-critical IT products and systems. As a result, we are able to offer you the best evaluation approach in each case
  • TÜViT is one of the few providers to test both hardware and software
  • your critical values are provided with the best possible protection: We use the strongest attack techniques that are currently available on the market
  • our IT security experts have outstanding know-how

Project examples

Evaluation of

  • smart card security controllers of various IC manufacturers
  • payment applications for EMVCo and its members
  • mobile payment applications
  • smart card operating systems (signature, payment, passport, health)
  • Java Card systems
  • complex software products such as database and network systems


Marc Le Guin Director Evaluation Body for IT Security

Further services