Commission Implementing Regulation (EU) 2016/799
of 18 March 2016
implementing Regulation (EU) No 165/2014 of the European Parliament and of the Council laying down the requirements for the construction, testing, installation, operation and repair of tachographs and their components
ANNEX I C
Requirements for construction, testing, installation, and inspection
Appendix 10
SECURITY REQUIREMENTS
This appendix specifies the IT security requirements for the smart tachograph system components (second-generation tachograph).
SEC_001The following components of the smart tachograph system shall be security certified according to the Common Criteria scheme:
vehicle unit
tachograph card,
motion sensor,
external GNSS facility.
SEC_002The minimum IT security requirements to be met by each component needing to be security certified shall be defined in a component Protection Profile, according to the Common Criteria scheme.
SEC_003The European Commission shall make sure that four Protection Profiles compliant with this Annex are sponsored, developed, approved by the governmental IT security certification bodies organised within the Joint Interpretation Working Group (JIWG) which is supporting the mutual recognition of certificates under the umbrella of the European SOGIS-MRA (Agreement on Mutual Recognition of Information Technology Security Evaluation Certificates) and registered:
Protection Profile for vehicle unit,
Protection Profile for tachograph card,
Protection Profile for motion sensor,
Protection Profile for external GNSS facility.
The Protection Profile for vehicle unit shall address the cases when the VU is designed to be used or not with an external GNSS facility. In the former case, the security requirements of the external GNSS facility are provided in the dedicated Protection Profile.
SEC_004 Component manufacturers shall refine and complete the appropriate component Protection Profile as necessary, without amending or deleting existing threats, objectives, procedural means and security enforcing functions specifications, in order to build a Security Target against which they shall seek the security certification of the component.
SEC_005Strict conformance of such specific Security Target with the corresponding Protection Profile must be stated during the evaluation process.
SEC_006The assurance level for each Protection Profile shall be EAL4 augmented by the assurance components ATE_DPT.2 and AVA_VAN.5.