Závěrečná práce: Bc. Tadeáš Kachyňa, učo 553638: Adding support for European Cybersecurity Certifications in sec-certs
Diplomová práce
Adding support for European Cybersecurity Certifications in sec-certs
Anotace
Tato práce se zaměřuje na integraci nového Evropského systému certifikace kybernetické bezpečnosti do nástroje sec-certs. Tento systém spadá pod Evropský rámec pro certifikaci kybernetické bezpečnosti, zřízený Evropským aktem o kybernetické bezpečnosti, a staví na dosavadních postupech a dohodách. Jeho záměrem je zavést jednotný, vysoce bezpečný standard pro produkty IKT v celé Evropské unii, a eliminovat …více
Abstract
This thesis focuses on integrating the new European Cybersecurity Certification Scheme on Common Criteria into sec-certs. Adopted under the European Cybersecurity Certification Framework established by the European Cybersecurity Act, the new scheme builds on existing frameworks and agreements to create a unified, high-level cybersecurity standard for ICT products across the European Union. This approach …více
Zadání práce
The sec-certs project (sec-certs.org) aims to be the comprehensive platform to explore the security certification ecosystem (specifically, Common Criteria and FIPS 140 schemes). It aggregates and annotates certification data, enabling unified search, vulnerability investigation, trend analyses, side-by-side comparisons, notifications and other features.
This thesis aims to extend the sec-certs project with support for processing European Cybersecurity Certifications (EUCC) from back-end scraping and data storage to the web-based user interface. To meet the thesis requirements, the student should undertake the following tasks:
- Analyze the context of EUCC and the sec-certs project.
- Analyze the differences between EUCC and Common Criteria certification schemes.
- Based on the analysis, propose an approach for integrating and managing EUCC metadata within sec-certs.
- Implement the necessary back-end changes to automatically scrape, parse and store all available EUCC certificate data in sec-certs.
- Design and implement an appropriate front-end (website) interface to present the EUCC metadata.
- Propose a pull request to integrate the new code directly into the upstream pipeline of sec-certs, ideally targeting a successful merge and deployment prior to the thesis defense.
- All code produced should be publicly available in the thesis archive and the project's upstream repository under the MIT licence.
The thesis is part of a long-term research project in cooperation between the Centre for Research on Cryptography and Security (CRoCS) at FI MUNI and Red Hat.
20. 5. 2026 20:25, RNDr. Martin Ukrop, Ph.D., učo 374297
Práce na příbuzné téma
Seznam prací, které mají shodná klíčová slova.
-
Improving text and certification metadata extraction in sec-certs
Bc. Jakub Borský, učo 536361 -
Analysis and search for problematic certificates in Common Criteria
Bc. Lyubov Laurenyuk -
Evaluating LLM configurations for optimal chat performance in sec-certs
Bc. Yuliia Teslia -
Gaining insights in the security certifications ecosystem using sec-certs
Mgr. Vladimír Peňáz -
Enhancing Common Criteria Certificate Analysis with Semantic Segment Search
Mgr. Dominik Macko -
Analytics and dashboarding support for sec-cert.org project
Ing. David Valecký -
Metadata overlay for seccerts.org with security analysis tools
Ing. Erik Moravec -
Real-world deployment of cryptographic functions: On misuse detection and certification effectiveness
RNDr. Adam Janovský, Ph.D., učo 410390




