Find an Industry-Leading PSA Certified Test Lab to Carry Out Your Evaluation
The PSA Certified test labs provide world-class evaluation of IoT chips, software and devices in line with the PSA Certified requirements. You can find labs worldwide. A single certification body, TrustCB, oversees the program to provide consistency.
In addition to the PSA JSA member labs listed below SESIP labs licensed by TrustCB can also do evaluations based on available PSA Certified SESIP Profiles found on the resources page of this website.
For clarity on the program and certification process, please enquire with the Certification Body, TrustCB.
How Much Does a PSA Certified Security Evaluation Cost?
Each of the PSA Certified evaluation labs set their own pricing and so it’s recommended to contact a few of the evaluation labs to get a variety of quotes and select the lab that is the best fit for your company.
Evaluation Labs
Applus+ Laboratories
Applus+ Laboratories provides testing, certification and development engineering services to improve competitiveness of its clients’ products and encourage innovation. Applus+ Laboratories has a network of multidisciplinary laboratories in Europe, Asia and North America.
In the area of security, we work with ITC product vendors and their end-users to build trust and provide cybersecurity assurances at component, device and system level.
Our expertise allows us to perform state-of-the-art pentesting technics on hardware, software and communications for a wide range of solutions, such as smart cards and eSE, software and mobile apps, network devices, or applications to the automotive and ASD industries.
Contact details
CAICT
Founded in 1957, the China Academy of Information and Communications Technology (hereinafter referred to as “CAICT”) is a scientific research institute directly under the Ministry of Industry and Information Technology (MIIT) of China. While sticking to the positioning of “a specialized think-tank for the government, and an innovation and development platform for the industry” and cherishing the cultural philosophy of “boosting prosperity with virtues and expertise” for years, CAICT provides strong support for the industry’s major strategies, plans, policies, standards, testing and certification, thus proving itself an important facilitator in the leapfrog development and innovation of China’s information and communications industry.
In recent years, with a view to adapting to the new eco-social backdrop and requirements and under the new national strategy of building China into a “strong cyber and manufacturing power”, CAICT has strengthened its efforts in making innovations to achieve wider and deeper research landscape while reinforcing its advantages in telecommunication and Internet. In-depth study and foresighted planning have been conducted in the fields of 4G/5G, industrial Internet, smart manufacturing, mobile Internet, Internet of Things (IoT), Internet of Vehicles (IoV), cloud computing, big data, blockchain, artificial intelligence, future network, virtual reality/augmented reality (VR/AR), intelligent hardware, and cyber and information security. CAICT has played an important role in research on strategies and policies related to the integration between industrialization and ICT and IT application, technological innovation, industrial development, and security assurance, which have strongly supported the strategy and policy making, such as Internet+, China Manufacturing 2025 and Broadband China, as well as the implementation of key tasks concerning various sectors.
近年来,适应经济社会发展的新形势新要求,围绕国家“网络强国”和“制造强国”新战略,中国信通院着力加强研究创新,在强化电信业和互联网研究优势的同时,不断扩展研究领域、提升研究深度,在4G/5G、工业互联网、智能制造、移动互联网、物联网、车联网、未来网络、云计算、大数据、人工智能、未来网络、虚拟现实/增强现实(VR/AR)、智能硬件、网络与信息安全等方面进行了深入研究与前瞻布局,在国家信息通信及信息化与工业化融合领域的战略和政策研究、技术创新、产业发展、安全保障等方面发挥了重要作用,有力支撑了互联网+、制造强国、宽带中国等重大战略与政策出台和各领域重要任务的实施。
中国信息通信研究院(以下简称“中国信通院”)始建于1957年,是工业和信息化部直属科研事业单位。多年来,中国信息通信研究院(以下简称“中国信通院”)始建于1957年,是工业和信息化部直属科研事业单位。多年来,中国信通院始终秉持“国家高端专业智库 产业创新发展平台”的发展定位和“厚德实学 兴业致远”的核心文化价值理念,在行业发展的重大战略、规划、政策、标准和测试认证等方面发挥了有力支撑作用,为我国通信业跨越式发展和信息技术产业创新壮大起到了重要推动作用。
DEKRA
Established in 1925, DEKRA stands for safety on the road, at work, and at home. Offering an extensive range of services, DEKRA has a diverse portfolio that includes expert services delivered by independent professionals across all continents, with more than 48,000 employees.
DEKRA is a global leader in cybersecurity testing and certification services. Our cutting-edge laboratories are specialized in product testing, providing expertise in certifying products to both international and private standards such as ETSI EN 303 645, Common Criteria, UN R155 & UN R156, MASA/CASA, ISO 19790, ISO 15408, eIDAS, CBTL IEC 62443, and more. Furthermore, DEKRA actively engages in and provides support to the advancement of international consortiums, standards, and regulations in the field of cybersecurity.
Contact details
ECSEC Laboratory
ECSEC Laboratory Inc. has been a security expert since the dawn of IT security in Japan, and has been evaluating smart cards, IC/LSI, HSM, multi-function printers, database systems, etc.
In recent years, we have been using these technologies and experiences to provide our own vulnerability analysis and assessment, security consulting, training, etc. to the automotive security and IoT fields.
In the future, we will continue to improve our services in order to respond to changes in technology and new demands from developers, aiming to realize a safer, more secure and more comfortable IT society.
For more information about our evaluation services, please visit our website or contact us.
株式会社 ECSEC Laboratoryは、日本のITセキュリティの黎明期よりセキュリティのエキスパートとして、スマートカード、IC・LSI、HSM、マルチファンクションプリンター、データベースシステム等の評価を行ってきました。
近年は、このような技術・経験を活用した弊社独自の脆弱性分析・評価、セキュリティコンサルティング、トレーニング等を自動車セキュリティ、IoT分野等へも行っています。
今後は技術の変化や開発者の新たなご要望にお応えすべく研鑽を積み、より安心・安全で快適なIT社会の実現を目指します。
評価サービスの詳細については、当社のWebサイトにアクセスするか、当社にお問い合わせください。
The Institute for Information Industry
The Institute for Information Industry (III) was established on July 24, 1979 as a nonprofit organization jointly founded by the private and public sectors, with a mission to promote the effective application of information technology and improve overall Taiwan competitiveness; foster an environment for information industry development and strengthen its competitiveness. In order to lead the development of Taiwan’s digital economy, III has recently positioned itself as a “Digital Transformation Enabler,” integrating its think tank, professional training, research and development and promotional capabilities. III develops solutions and application services to fit industry needs and drive the digital transformation of both the government and industry.
Riscure
Founded in 2001, Riscure is the global software and hardware security evaluation vendor, specializing in Chip, Embedded and Mobile devices. Riscure is also the leading manufacturer of Side Channel Analysis and Fault Injection test equipment.
Riscure provides Services, Tools, and Training to help customers around the world to enhance protection of their solutions and speed up the process of secure development and certification. To learn more about Riscure security evaluation and developer solution services for IoT and Semiconductor industry, please visit our website or get in touch with us.
Contact details
SERMA Security Laboratory
SERMA Safety & Security is the single point of contact for the security and operational safety of products and IoT, industrial, embedded or information systems. The company benefits from an expertise developed over 20 years in these trades. The offer of a combination of expertise, evaluation and advice is adapted to the needs of the designers and users of these different systems.
The Security laboratory evaluates more than 200 complex security products annually, ranging from the electronic chip to the complete hardware / software system. The laboratory is accredited by many organizations to carry out these evaluations against many international standards, public or private (Common Criteria, EMVCO, SESIP, PSA Certified, GlobalPlatform, PCI PTS, FIPS140-2,…)
SGS Brightsight
SGS Brightsight is the number one independent security lab in the world. With over 35 years of experience evaluating IT products against a variety of security requirements, SGS Brightsight is the preferred business and advisory partner for certification and security evaluations of Smartcards, ICs, HSMs, System on Chip, Payment terminals, Smartmeters, Mobile Payment, IoT, Automotive and Biometric solutions. With offices in the Netherlands, France, Spain, Austria and China, SGS Brightsight helps customers reaching their business goals with state-of-the-art technical capability and up-to-date certification knowledge in different regions and applications.
Thales ITSEF
With more than 20 years of experience in the security evaluation domain, Thales ITSEF supports its customers’ high level of demand in terms of technical expertise, flexibility and time to market objectives.
Licensed by the French cyber security agency (ANSSI) for CSPN and common criteria evaluations of hardware and embedded software up to EAL7, Thales ITSEF has a long-standing experience in the evaluation of FPGAs, MCUs and SoCs, from the hardware to the software stacks. Now, as member of ARM PSA certified program, Thales continues growing the portfolio of services it can offer to support its partners.
Please visit our website or get in touch with us for more details.
UL
With a focus on today’s realities and tomorrow’s needs, UL provides the trusted and critical security expertise that is required in an interconnected and cashless world. Governments and organizations rely on UL as a trusted partner.
Our security and identity management expertise enable businesses to implement innovations that guarantee regulatory compliance, maintain customer trust and increase market access. As the leading safety and security authority, UL works with governments, industry associations, and businesses to rethink security. Globally, over 10,000 organizations rely on UL. Our marks appear on more than 22 billion products around the world.
How Can My Company Become a PSA Certified Evaluation Lab?
If you’re a security evaluation lab and you’re looking to offer PSA Certified evaluations, you will need to contact TrustCB to understand the selection criteria and process.