LINCE: Certification for all audiences

Blog

20
- Febr
2019
Posted by: Javier Tallón
[Cybersecurity & hacking tools and techniques]
LINCE: Certification for all audiences

The SIC magazine of February 2019 (Nº133) has published our article.

The different countries of the European Union are giving answers to improve the situation of cybersecurity certification. Spain has already done so and its response is called LINCE: a lightweight certification, focused on vulnerability analysis and with a limited duration and cost.

LINCE is a lightweight methodology for evaluating and certifying ICT products, created by the National Cryptologic Center, of national scope (for the time being), based on Common Criteria principles and oriented to vulnerability analysis and penetration tests. LINCE strengths over more robust certifications mainly consist of reduced effort, duration and cost to the manufacturer. However, the way in which it is applied also makes it possible to pay more attention to the critical points of each product, giving more weight to concrete and practical tests that combat real threats than to dense documentation or exhaustive functionality tests.

LINCE is not a substitute for other certifications such as Common Criteria, its objective is to offer a guarantee of security for manufacturers and consumers at a more affordable level in time, effort and money, and is currently especially focused on the entry of certified products in the CPSTIC catalog, although the methodology itself can be used perfectly in more private frameworks.

We leave you the complete article here.

If you want to certify your product, do not hesitate to contact jtsec experts in hello [at] jtsec.es.

tags
Javier Tallón/Technical Director

Expert consultant on the Common Criteria standard, and other security assurance standards in the field of the information technology (FIPS 140-2, ITSEC, ISO 27K1, SOC 2, ENS...). Javier has served as an evaluator in the Spanish CB for the country major evaluation labs. As a consultant, he has successfully accompanied national and international companies in several certification processes (to EAL5+). His experience has led him to participate as a speaker at several conferences on computer security and certification (SuperSec, Cybercamp, Navaja Negra, International Common Criteria Conference, International Cryptographic Module Conference, EUCyberact Conference). He is also Cyber Security lecturer, giving classes of Secure Software Engineering at the University of Granada and is CISSP (Certified Information Systems Security Professional) and OSCP/OSCE (Offensive Security Certified Professional & Certified Expert) certified .

In 2015 he begins to lay the foundations of what will be jtsec. He currently works as Technical Director of the evaluation lab and Chief Operations Officer (COO) of the Granada site from where the company develops most of the work. Recognized expert in various disciplines of cybersecurity (reversing, exploiting, web, ...), assumes the technical direction of most of the projects, directing and organizing the work of the team. He also leads the Research and Development area, encouraging the participation of the jtsec team in multiple Congresses.


Contact

Send us your questions or suggestions!

By sending your data you allow us to use it to resolve your doubts by sending you commercial information of interest. We will delete it when they are no longer necessary for this matter. Know your rights in our Privacy Policy.
RECENT POSTS
jtsec - Our LINCE 2024
Febr 3, 2025
jtsec - Our LINCE 2024
jtsec achieves pioneering accreditation for MEMeC cryptologic evaluation
Jan 17, 2025
jtsec achieves pioneering accreditation for MEMeC cryptologic evaluation
jtsec & Applus+ Laboratories at ICCC24
Nov 14, 2024
jtsec & Applus+ Laboratories at ICCC24
How to use the CCN product catalog to improve your company's security
Oct 14, 2024
How to use the CCN product catalog to improve your company's security
Common Criteria Statistics 2023
June 17, 2024
Common Criteria Statistics 2023
How to enter ENS category high, stay in the catalog and add new versions of my product
April 23, 2024
How to enter ENS category high, stay in the catalog and add new versions of my product
jtsec - Our LINCE 2023
Febr 6, 2024
jtsec - Our LINCE 2023
We wish you a happy and cybersecure 2024
Dec 19, 2023
We wish you a happy and cybersecure 2024
How to Prepare Your Products and Services for the Quantum Era and Ensure Their Certification?
Dec 14, 2023
How to Prepare Your Products and Services for the Quantum Era and Ensure Their Certification?
How to include your product or service in ENS ALTA.
Oct 31, 2023
How to include your product or service in ENS ALTA.
CATEGORIES