Certification is of fundamental importance for IDS and one of its core components.
Certification in general provides a very high degree of transparency. This transparency is achieved by making the requirements for the auditee and the auditors and the complete certification process available for public.
The transparency is also key for the main goal of certification: Trust. Trust is the basis for a successful collaboration between partners, in business as well as in social life. Due to the importance of collaboration for the IDS, certification works as an enabler for business and use cases. Collaboration is the basis for the IDS itself and therefore, it is necessary to establish trust by certification between the partners in IDS. Certification is providing this trust by ensuring the security for everyone in a transparent way. Security is and will always be relative, but certification defines a standardized level for security related to technical and organizational aspects.
The IDS needs this trust through certification. Therefore, IDS Certification is tailormade for the specific IDS context. This IDS Certification is compatible with commonly used security standards like ISO 27001 and IEC 62443, so existing documentations and setups for the achieved certifications can be re-used in IDS. This minimizes the effort during IDS certifica-tion process for the organizations involved.
The IDS is a heterogeneous environment with different business models and IDS use cases. For this reason, the IDS Certification has a flexible setup and provides different levels of certification according to the intended use cases. In order to build such a customized IDS Certification, various stakeholders have been involved during the development. To sum it up, IDS Certification is customized for the special conditions in the IDS context and provides the basis for the IDS: Trust.