"/>

PAe - The CCN has published the catalogue of products of ict security (CPSTIC)
accesskey _ mod _ content

The NCC has published the catalogue of products of ict security (CPSTIC)

11 january 2018

CCN-CERT logo

The NCC has published the catalogue of products of ict security (CPSTIC), in order to present the list of products of reference CALLED “ CONSPICUOUS ” RELIGIOUS SYMBOLS, which aims to provide a minimum level of confidence to the user to purchase such products. Complementing the Catalogue, has published the method of classification of a catalogue of ICT Security.

The CCN-CERT (Opens in new window) just released the Catalogue of the Security information and communication technology, CPSTIC (Opens in new window) (or Guide CCN-STIC 105)

It included in it products approved national's information handling classified and Qualified Security Products of Ict.

For the inclusion of a product in this guide, the NCC will take into account a series of criteria such as, the classification of information that can handle (Limited Broadcast, confidential, Reserved, secret), the characteristics of product safety, the category of information that can be used as defined in the national security (high, medium, basic), the attestations issued, the environment in which to use, etc. Based on this information, it will identify evidence or assessments that exceed the ICT security product.

The guide adopts six categories:

  1. Access Control
  2. Security in the Exploitation
  3. Monitoring of the Security Council
  4. Protection of communications
  5. Protection of Information and Information
  6. Protection of equipment and services

Aparte de ellas, se incluyen otras 33 'familias', como sistemas operativos, herramientas anti-spam, tarjetas inteligentes, dispositivos biométricos o sistemas Honeypot.

The Guide CCN-STIC 140

Complementing the catalogue, has been published Guide CCN-STIC 140 Taxonomy of reference for ICT products of The Security Council (Opens in new window) as a method of classification of a catalogue of ICT Security, CPSTIC, recommended by the Ncc.

The NCC has published this guide in order to establish a classification of products related to various categories and families as a basis for Qualified Products included in the catalogue of ICT security products (CPSTIC). Thus, the category indicate the type of product according to the security measures to provide (for example, access control, protection of communications, etc.); while the family shall specify the type of product according to its core function (e.g., firewall, router, proxy, tools of deleted safe, etc.).

The CPSTIC gives a listing of outputs reference CALLED “ CONSPICUOUS ” RELIGIOUS SYMBOLS, supervised by the Centre National Cryptologic, NCC, which aims to provide a minimum level of confidence to the end user to purchase such products. This catalogue includes products approved national's information handling classified and Qualified Security Products of Ict.

Original source of news (Guide CCN-STIC 105) (Opens in new window)

Original source of news (Guide CCN-STIC 140) (Opens in new window)

  • Security