JISEC — Japan's Common Criteria Scheme

JISEC, the Japan Information Technology Security Evaluation and Certification Scheme, is Japan’s national Common Criteria scheme. It is operated by the Information-technology Promotion Agency (IPA) and is a CCRA authorizing member with a distinctive emphasis on printing and imaging equipment.

Key facts

• Authorizing body: Information-technology Promotion Agency (IPA)
• Country / region: Japan
• Year established: 2001 (Japan became CCRA authorizing participant in 2003)
• Product types: multifunction devices and printers, hard-copy devices, network products, application software, smart cards
• CCRA status: Certificate Authorizing Member
• Canonical portal: https://www.ipa.go.jp/en/security/jisec/index.html

Overview

JISEC is the principal issuer of CC certificates for multifunction devices and hard-copy products globally, reflecting Japan’s manufacturing strengths in office imaging. Beyond that segment, JISEC evaluates network products, smart card operating systems, and a range of application software for domestic and international markets.

How evaluations work under this scheme

IPA accredits Japanese evaluation facilities as JISEC ITSEFs. A vendor contracts with an ITSEF, which produces the Evaluation Technical Report. IPA reviews the ETR, issues the Certification Report, and publishes the certificate on the JISEC list. JISEC evaluations can be PP-conformant — for example, the Hardcopy Device cPP is a common anchor for MFP certifications — or EAL-driven within CCRA-recognized bounds.

Notable product categories

• Multifunction devices and hard-copy equipment
• Network security products
• Smart card operating systems and secure elements
• Application software and middleware
• Mobile and embedded security products

Relationship to CC baseline

JISEC follows ISO/IEC 15408 and the CEM, using the same SFR and SAR framework as other CCRA schemes. Japan participates in Technical Communities, particularly those relevant to its certified product base, and keeps JISEC’s evaluation methodology aligned with CCRA norms.

Where to find official records

• JISEC certified product list: https://www.ipa.go.jp/en/security/jisec/certified_products/index.html
• CCRA portal listings for Japan: https://www.commoncriteriaportal.org/products/
• NenkinTracker aggregates JISEC certificates alongside records from other schemes.

See also: Certification Schemes Overview, EAL Levels, Glossary.