India Takes Charge of Global IT Security Board
India to chair Common Criteria Development Board for two-year term till 2028
- India assumes chairmanship of CCDB from April 2026 to 2028
- Leadership role confirmed during Tokyo meeting of CCRA
- India to help shape global IT security evaluation standards
- MeitY and STQC represent India in international certification system
GG News Bureau
New Delhi, 14th May: India has assumed the chairmanship of the Common Criteria Development Board for a two-year term from April 2026 to April 2028, marking a major milestone in the country’s growing role in global cybersecurity and IT security standards.
The leadership role was confirmed during the first quarter meeting of the Common Criteria Recognition Arrangement held in Tokyo, Japan, from April 14 to 16.
The Common Criteria Recognition Arrangement is an international framework that enables mutual recognition of IT security certificates issued by member countries, eliminating the need for repeated certification across borders and facilitating global trade in secure IT products.
The CCDB functions as the technical core of the CCRA and is responsible for managing international work related to the Common Criteria and the Common Methodology for Information Technology Security Evaluation standards used for assessing secure IT products worldwide.
India has been an active member of the CCRA since September 2013 as a Certificate Authorizing Nation. The country participates through the Ministry of Electronics and Information Technology and the STQC Directorate, which acts as the official certification authority for IT security evaluations in India.
Officials said India’s appointment as chair reflects its growing technical competence and commitment to advancing global IT security standards and evaluation methodologies.
The CCRA currently comprises 20 certificate-authorizing nations and 18 certificate-consuming nations. Member countries mutually recognise IT security certificates issued under the Common Criteria framework.
The government said the new role would place India at the forefront of shaping future global IT security certification standards and help ensure that emerging technologies relevant to India are adequately represented in international frameworks.
The two-year term is also expected to strengthen India’s position in the global cybersecurity ecosystem and enhance its influence in critical technology and digital security discussions.
