The Spanish association for Standardization (A) has published the norm UNE 320001 Evaluation methodology LYNX to cybersecurity ICT products, thus becoming the first standard english for the assessment of cyber-ICT products based on the methodology LYNX. UNE helps to achieve success in the digital processing companies in Spain, through the standards.
UNE 320001 sets basic requirements and defines the frame of reference in the area of cyber security assessment of ICT products. LYNX is the first and most recognized certification of cybersecurity in Spain for levels of income and low-security, which demonstrates the maturity of the industry in Spain. It was developed three years ago by the CCN (Centre National Cryptographic) in order to assess ICT products of medium and low security at an affordable price by the developer. Now, becomes a standard UNE.
A standard certification LYNX allows, in addition to improving the safety of the product being evaluated and be carried out within a time and effort have been invaded, resulting in which they are accessible to all kinds of developers. It also enables access to assistive technologies catalogue CPSTIC Security, used as a model of cybersecurity in spain for ICT products, recommended by the Ncc. For a certificate under the methodology LYNX you need an an accredited laboratory.
Before the existence of lynx, cyber security certificates under which could be evaluated ICT products were the ones described in the international level, for example, Common Criteria. This type of standards aimed at high levels of security, require an effort, time and cost inasumibles are many companies, especially smes. For this reason born Lynx, a methodology of the so-called light "" which allows the expansion of the concept of cyber security certification at the national level.
This rule has been developed in the technical committee for CTN320 for a, with the participation and consensus of all parties involved. Thanks to the creation of a working group that was in charge of drawing up different versions after the various comments that have arisen, with the common interest of the industry.