ISO/IEC 19790
ISO/IEC 19790

Cybersecurity Certification Scheme for Cryptographic Modules

HomepageBusiness CustomersAll ServicesDigital & Product SolutionsCybersecurity ServicesICT CybersecurityISO/IEC 19790

ISO/IEC 19790 Certification Scheme

In today’s digital landscape, cybersecure information and communications technology (ICT) relies on strong cryptographic mechanisms and protocols. Ensuring the accuracy and security of these essential cryptographic layers is essential for the reliability of any ICT product.
This private ISO/IEC 19790 Cybersecurity Certification Scheme, fully based on international standards, provides a framework for certifying cryptographic modules. It offers greater transparency to end users and stakeholders on the security capabilities of these modules.

What Does This Scheme Cover?

  • Assures consumers, users and all interested parties of cryptographic and security mechanisms, as well as in the overall security of cryptographic modules tailored for varied uses and risk scenarios.
  • Allow manufacturers to demonstrate to the market that their cryptographic modules comply with ISO/IEC 19790 requirements, certified by an independent third party.
The scheme covers the following security levels defined in the ISO/IEC 19790 standard for any type of cryptographic module:
Level 1
Baseline security for controlled environments. 
Benefits of the ISO/IEC 19790 Cybersecurity Certification
Market Recognition

Certified cryptographic modules reflect global security standards, increasing appeal to consumers and businesses.

Security Assurance

Certification verifies that security mechanisms in the module are properly implemented and regularly tested, reducing risks in sensitive environments.

FIPS 140-3 Fast-Track

This certification provides a foundational framework that simplifies your path to FIPS 140-3, making it easier to submit the necessary documentation and demonstrate compliance with FIPS 140-3 standards.

Learn more about DEKRA's FIPS 140-3 certification services.

Scheme Entities

How is the Certification Process?

  • Who can Apply?
    Any manufacturer of cryptographic modules can apply to certify their products according to the rules and scope of this certification scheme.
  • How to Apply?
    To request certification, manufacturers can contact us through our contact form to show interest. The manufacturer will receive the scheme's rules and and for providing information of the cryptographic module/s as well as information on the cryptographic algorithms implemented within it.
This Cybersecurity Certification Scheme is carried out by DEKRA's certification body, which is ISO/IEC 17065 compliant, and the certification process is represented by the following steps and transitions:
If the resolution is positive, the certificate is issued and valid for five years. It will be publicly available in DEKRA's Certificates Directory.
Related Services

Common Criteria ISO/IEC 15408

Common Criteria is a Certification Framework to evaluate and certify cybersecurity requirements in IT products.
Details

Cloud Application Security Assessment

Ensure your data security with CASA, preventing threats and increasing consumer trust.
Details

FIPS 140-3 Certification

At DEKRA, we guide our customers through the FIPS 140-3 certification process, performing validation testing and providing timely and professional support.
Details

EUCC Scheme

EUCC services, based on Common Criteria (ISO/IEC 15408), ensure ICT products meet EU cybersecurity requirements.
Details

eIDAS 2.0

We help trust service providers and organizations comply with eIDAS 2.0 Regulation through expert audit services that strengthen digital identity security.
Details

LINCE-Certification

Qualify your ICT products with LINCE certification for inclusion in the Spanish CPSTIC product catalogue and comply with national IT security requirements.
Details

Cybersecurity Testing & Certification

Cybersecurity Evaluations and Certifications for a Safe, Secure and Reliable Future.
Details
Contact
Share page :