Thales EUCC certification - Mobile Communications Solutions

  • SIM
  • eSIM, iSIM
  • Secure element
  • Type Product presentation

You’ll find enclosed the list of Thales EUCC certified products

You’ll find enclosed the list of Thales EUCC certified products:

Product

Cybersecurity support policy

--

EUVD database maintained by ENISA:  https://euvd.enisa.europa.eu/

To declare vulnerabilities, please send email to Thales PSIRT: https://www.thalesgroup.com/en/product-security-incident-response

Important information and links

  • All administrators who interact with the product must be trusted actors trained and aware of the sensitivity of the assets they manage. Especially, administrators must enforce security policies to ensure the confidentiality and integrity of all cryptographic keys under their responsibility.
     
  • Administrators in charge of content management must enforce the product issuer’s policy related to the loading, installation, update and deletion of applications.
     
  • The communication between the product and authorized equipment (e.g. servers, terminals) must remain secure. It is the responsibility of the related actors to use the Secure Channel Protocols which are implemented in the product for that purpose.
     
  • Some use cases or applications enforce end-user authentication by means of Personal Identification Number (PIN). PIN values shall be robust, i.e. not easy to guess (values such as “0000” or “1234” must be avoided). The end-user must also keep PIN values secret, i.e. not disclose them to anybody, neither intentionally (sharing) nor involuntarily (careless typing).
     
  • Thales customers are invited to contact their Thales representative to get further secure usage recommendations and guidelines
EU vulnerability database by ENISA Report a vulnerability to Thales

Contact us for more information about our solutions