BSPA | Assessment for BIO compliance

Use our Baseline Security Product Assessment (BSPA) Service to demonstrate compliance of your products against the Dutch BIO Framework (Baseline Informatiebeveiliging Overheid).

> IoT | Testing & Certification > BSPA

BSPA Certification Scheme for BIO compliance

The Baseline Security Product Assessment (BSPA) is a certification scheme developed by the Nationaal Bureau voor Verbindingsbeveiliging (NBV) that is part of the Dutch intelligence and Security Service (AIVD). It is specifically designed to demonstrate compliance against BIO.

The goal of BSPA is to provide a framework in which products can be tested in a limited timeframe against limited cost. This certifications scheme is suitable for hardware and software components that are used in the sensitive, but unclassified domain.

The scope of BSPA includes:

PRODUCT CATEGORY	EXAMPLES
Network security	VPN, link encryption, Wi-Fi access point, etc.
Network filtering, detection and response	IDS, firewall, SSL proxy, etc.
Secure messaging	Secure mail, secure chat-app, secure voice-call-app etc.
Media and file security	Full disk encryption, container encryption, file encryption, data erasure, etc.
Identity and access management	Password manager, key management and distribution, two-factor authentication, access control and federation, etc.
Secure OS execution environment	Secure-OS, secure-hypervisor, micro-kernel, separation kernel, etc.
Hardware and embedded software	HW-based encryption, HW-based secure-boot, USB device, keyboard (KVM-) switch, smart-meter, tamper resistant device, etc.
Smart cards and similar devices	Secure ICs, JavaCards, transportation/access cards, etc.

Downloads

BSPA Assessment for BIO Compliance

Overview of BSPA and our services. Fact Sheet

Download

More Information

Would you like to learn more about our BSPA Service? Please fill out the form below, and we will contact you within one business day.

First Name

Last Name

Company / Organization

Phone Number

Country

How can we help you?

I give permission to process my data as described in the Privacy Policy and agree to the Terms and Conditions.

I consent to let Bureau Veritas Cybersecurity use this data to provide me with additional information from their services, events or topics that may be of interest to me

Why choose Bureau Veritas Cybersecurity

Bureau Veritas Cybersecurity is your expert partner in cybersecurity. We help organizations identify risks, strengthen defenses and comply with cybersecurity standards and regulations. Our services cover people, processes and technology, ranging from awareness training and social engineering to security advice, compliance and penetration testing.

We operate across IT, OT and IoT environments, supporting both digital systems and connected products. With over 300 cybersecurity professionals worldwide, we combine deep technical expertise with a global presence. Bureau Veritas Cybersecurity is part of the Bureau Veritas Group, a global leader in testing, inspection and certification.