PHOTO - (From Left) Dag Ströman, Chairman of Common Criteria Management Committee, YB Minister Datuk Seri Dr Maximus Johnity Ongkili and CyberSecurity Malaysia CEO, Lt Col Prof Dato' Husin Jazri
Malaysia is the first country in ASEAN and developing countries to be recognised as 'Common Criteria Recognition Arrangement (CCRA) Authorising Participant member.' The new ICT security status was announced during the 12th International Common Criteria Conference [12thICCC] in Malaysia.
Malaysia joins a group of just 15 countries worldwide, said the Common Criteria Management Committee's chairman, Dag Ströman, speaking on 27 September 2011.
Ströman said government agency CyberSecurity Malaysia, through its Malaysian Common Criteria Evaluation and Certification (MyCC) Scheme, is now able to issue Common Criteria (ISO15408) certificates on ICT products, which are immediately recognised by all Common Criteria Recognition Arrangement (CCRA) member countries, consisting of 26 countries worldwide.
"We are truly proud and honoured that Malaysia, through CyberSecurity Malaysia, has achieved the International Common Criteria Committee's recognition as a Certificate Authorising Participant member, the first in ASEAN and developing countries to attain such status and to join an elite group of only 15 countries worldwide," said Malaysia's Science, Technology & Innovation (MOSTI) minister, Datuk Seri Dr Maximus Johnity Ongkili.
"With this recognition, Malaysia has proven its capabilities to the world in the field of information security," said Dr Maximus. "This would further bolster Malaysia's competitiveness in quality assurance of information security based on the Common Criteria standard and build end-user confidence towards Malaysian information security solutions."
He said that a Common Criteria evaluation provided an independent review and analysis of a product's security against a defined set of assurance requirements. "The independent security evaluation serves to determine the level of security and assurance of various ICT products including software, firmware and hardware as claim by the vendors."
The three-day conference, hosted by CyberSecurity Malaysia, was officiated by the MOSTI minister. 12thICCC is a major event by the global ICT security industry, which facilitates knowledge sharing among the region's top technology security experts from various established certification bodies and evaluation laboratories.
Malaysian ICT security services market growth
Dr. Maximus said Malaysia's ICT security services market was estimated to grow further to more than RM400 million [US$127 million] by the year 2014. "With the new Common Criteria member status, Malaysia's ICT industry is set to grow even aggressively. He also urged captains of the industry to participate in the newly formed Global Cyber Security Alliance (GCSA) to drive cyber security as a new source of economic growth for Malaysia and to reinforce the capability and capacity of cyber security around the world."
Sign up for CIO Asia eNewsletters.