CRISP aims at facilitating a harmonised playing field for the European security industry by developing a robust methodology for security product certification. CRISP will enhance existing security evaluation and certification schemes by offering an innovative evaluation methodology that integrates the security, trust, efficiency and freedom infringement assessment dimensions. The proposed scheme will be based on a taxonomy encompassing a variety of security products and services across applications, will take into account the varying roles of a diverse stakeholder community including manufacturers, regulatory and certification bodies, data protection authorities and end users and engage with each group to gather insights to help avoid acceptance problems that challenge current schemes.
WP1 will create a taxonomy of security products and systems, concepts of operations, application areas, performance and set out criteria for comparing security products and systems. WP2 will provide an historical perspective on security standards and certification in Europe and analyse the state of the art in security standards, certification and accreditation at the Member State, regional and international level. WP3 will identify and determine the role of different stakeholders, gauge their views on the challenges affecting security certification and determine requirements for a harmonised EU-wide approach. WP4 will examine the core dimensions (such as security, trust, efficiency, freedom infringement) of security product certification and present the requirements for enhancing existing evaluation and certification schemes. WP5 will present a certification methodology, policy and procedures for security products, test-drive, evaluate and refine it. WP6 will present a roadmap for adopting of the proposed certification scheme. WP7 will focus on activities to enhance acceptance of the new certification measures. WP8 will focus on stakeholder engagement and dissemination.