Protection profile

A protection profile is a general compilation of security requirements for a specific type of information technology products. They are used as part of the security certification of IT products according to ISO / IEC 15408 ("Common Criteria"). Manufacturers can explain the security functions of their products using a protection profile and use them as a guide during implementation. Test centers can check and certify the security level using the protection profile.

An example of the use of protection profiles in Germany are the security requirements for intelligent electricity meters , which are developed by the Federal Office for Information Security (BSI). They clearly specify the level of security that must be met by the communication unit ( smart meter gateway ) of an intelligent measuring system to ensure data protection , data security and interoperability .

Individual evidence

↑ BSI: Protection Profile Smart Meter Gateway (BSI-CC-PP-0073) , accessed on April 22, 2017

[1] BSI: Protection Profile Smart Meter Gateway (BSI-CC-PP-0073) , accessed on April 22, 2017