Závěrečná práce: Bc. Vladimír Peňáz: Gaining insights in the security certifications ecosystem using sec-certs
Diplomová práce
Gaining insights in the security certifications ecosystem using sec-certs
Anotace
Oblast bezpečnostních certifikací, jako jsou Common Criteria (CC) a FIPS 140, hraje klíčovou roli při zajišťování důvěry a souladu v globálním ekosystému kybernetické bezpečnosti. Přestože jsou tyto certifikace zásadní, systematická křížová analýza certifikačních dat je stále omezená. Tato práce využívá projekt sec-certs (jednotnou open-source platformu agregující a anotující certifikační data CC a …více
Abstract
The landscape of security certifications such as Common Criteria (CC) and FIPS 140 plays a pivotal role in ensuring trust and compliance within the global cybersecurity ecosystem. However, despite their importance, systematic cross-analysis of certification data remains limited. This thesis leverages the sec-certs project—a unified, open-source platform aggregating and annotating CC and FIPS 140 certification …více
Zadání práce
The sec-certs project (sec-certs.org) aims to be the one-stop shop to explore the security certification ecosystems of Common Criteria and FIPS 140. We aggregate and annotate certification data, enabling unified search, vulnerability investigation, trend analyses, side-by-side comparisons, notifications and other features.
This thesis aims to conduct a multi-faceted investigation into the existing sec-certs dataset to gain new insights and support existing gut feeling with objective data. For a successful thesis, the student will perform the following work:
- Familiarize themselves with data structures currently available in the sec-certs dataset for both Common Criteria and FIPS 140.
- Perform multi-faceted analysis of two business use cases.
- Use case 1: Use of OpenSSL in certified products (its prevalence with respect to time, vendors, products and the prevalence of its alternatives in both CC and FIPS 140).
- Use case 2: Linux-based FIPS-validated products (their prevalence with respect to time, vendors, products and architectures with a specific focus of comparing the certified products of Red Hat to other vendors).
- On a general level, assess the reliability and completeness of the data available in sec-certs.
- Optionally, add support for new data points as needed and file or fix any found sec-certs bugs.
The thesis is a part of a long-term research project in cooperation of the Centre for Research on Cryptography and Security (CRoCS) at FI MUNI and Red Hat.
17. 12. 2025 23:28, RNDr. Martin Ukrop, Ph.D., učo 374297
Konzultant
ext CERIT FI MU
Práce na příbuzné téma
Seznam prací, které mají shodná klíčová slova.
-
Analysis and search for problematic certificates in Common Criteria
Bc. Lyubov Laurenyuk -
Improving text and certification metadata extraction in sec-certs
Bc. Jakub Borský, učo 536361 -
Adding support for European Cybersecurity Certifications in sec-certs
Ing. Tadeáš Kachyňa, učo 553638 -
Refining the process of writing theses with Red Hat Czech
Mgr. Kristián Kottfer -
Evaluating LLM configurations for optimal chat performance in sec-certs
Bc. Yuliia Teslia -
Improving user experience in the sec-certs web tool
Ing. Martin Hofbauer -
Enhancing Common Criteria Certificate Analysis with Semantic Segment Search
Mgr. Dominik Macko -
Analytics and dashboarding support for sec-cert.org project
Ing. David Valecký




