Proposal and Validation of a Standard Protection Profile for Homologation of Commercial Videoconferencing Equipment

Proposal and Validation of a Standard Protection Profile for Homologation of Commercial Videoconferencing Equipment

In the present work, we propose and validate a Common Criteria Standard Protection Profile (sPP) for videoconferencing equipment. The research presents the definition and analysis of the homologation system used to validate the standard protection profile, focusing on its application focused in a la...

Full description

Bibliographic Details
Main Authors: Ariane C. B. Florentino, Sanderson Cesar Macado Barbalho, Raphael Carlos Santos Machado
Format: Article
Language:English
Published: IEEE 2021-01-01
Series:IEEE Access
Subjects:
Banking
common criteria
cyber defense
homologation
mechatronic product
security
Online Access:https://ieeexplore.ieee.org/document/9344589/
id doaj-2356577d64f047ffa0fa9a081ef2e7b8
record_format Article
spelling doaj-2356577d64f047ffa0fa9a081ef2e7b82021-03-30T14:56:25ZengIEEEIEEE Access2169-35362021-01-019242882430410.1109/ACCESS.2021.30564919344589Proposal and Validation of a Standard Protection Profile for Homologation of Commercial Videoconferencing EquipmentAriane C. B. Florentino0https://orcid.org/0000-0002-7699-1280Sanderson Cesar Macado Barbalho1https://orcid.org/0000-0003-1664-4866Raphael Carlos Santos Machado2https://orcid.org/0000-0003-3339-9735Department of Production Engineering, Post-Graduation Program in Mechatronic Systems, University of Brasilia, Brasilia, BrazilDepartment of Production Engineering, Post-Graduation Program in Mechatronic Systems, University of Brasilia, Brasilia, BrazilDepartment of Information Systems, Federal Fluminense University, Niterói, BrazilIn the present work, we propose and validate a Common Criteria Standard Protection Profile (sPP) for videoconferencing equipment. The research presents the definition and analysis of the homologation system used to validate the standard protection profile, focusing on its application focused in a large Brazilian financial company. We address the main points to consider in the acquisition and current use of this product: reasonable information security assumptions, technical standards, recommendations, and international best cybersecurity practices. As a result, we have developed a Standard Protection Profile identifying the information security risks involved and the minimum parameters required in those systems acquired and used for Government environments. This paper also presents all tests performed to validate the proposed sPP. As the application is critical, involving sensitive data, our results can also foster less risky conditions in the myriad situations caused by the COVID pandemic.https://ieeexplore.ieee.org/document/9344589/Bankingcommon criteriacyber defensehomologationmechatronic productsecurity
collection DOAJ
language English
format Article
sources DOAJ
author Ariane C. B. Florentino
Sanderson Cesar Macado Barbalho
Raphael Carlos Santos Machado
spellingShingle Ariane C. B. Florentino
Sanderson Cesar Macado Barbalho
Raphael Carlos Santos Machado
Proposal and Validation of a Standard Protection Profile for Homologation of Commercial Videoconferencing Equipment
IEEE Access
Banking
common criteria
cyber defense
homologation
mechatronic product
security
author_facet Ariane C. B. Florentino
Sanderson Cesar Macado Barbalho
Raphael Carlos Santos Machado
author_sort Ariane C. B. Florentino
title Proposal and Validation of a Standard Protection Profile for Homologation of Commercial Videoconferencing Equipment
title_short Proposal and Validation of a Standard Protection Profile for Homologation of Commercial Videoconferencing Equipment
title_full Proposal and Validation of a Standard Protection Profile for Homologation of Commercial Videoconferencing Equipment
title_fullStr Proposal and Validation of a Standard Protection Profile for Homologation of Commercial Videoconferencing Equipment
title_full_unstemmed Proposal and Validation of a Standard Protection Profile for Homologation of Commercial Videoconferencing Equipment
title_sort proposal and validation of a standard protection profile for homologation of commercial videoconferencing equipment
publisher IEEE
series IEEE Access
issn 2169-3536
publishDate 2021-01-01
description In the present work, we propose and validate a Common Criteria Standard Protection Profile (sPP) for videoconferencing equipment. The research presents the definition and analysis of the homologation system used to validate the standard protection profile, focusing on its application focused in a large Brazilian financial company. We address the main points to consider in the acquisition and current use of this product: reasonable information security assumptions, technical standards, recommendations, and international best cybersecurity practices. As a result, we have developed a Standard Protection Profile identifying the information security risks involved and the minimum parameters required in those systems acquired and used for Government environments. This paper also presents all tests performed to validate the proposed sPP. As the application is critical, involving sensitive data, our results can also foster less risky conditions in the myriad situations caused by the COVID pandemic.
topic Banking
common criteria
cyber defense
homologation
mechatronic product
security
url https://ieeexplore.ieee.org/document/9344589/
work_keys_str_mv AT arianecbflorentino proposalandvalidationofastandardprotectionprofileforhomologationofcommercialvideoconferencingequipment
AT sandersoncesarmacadobarbalho proposalandvalidationofastandardprotectionprofileforhomologationofcommercialvideoconferencingequipment
AT raphaelcarlossantosmachado proposalandvalidationofastandardprotectionprofileforhomologationofcommercialvideoconferencingequipment
_version_ 1724180306665144320

Similar Items