Until the 31th of December 2023 TÜV Rheinland Nederland B.V., as Certification Body, certifies the security of IT products and systems in accordance with the procedures specified in the NSCIB scheme documentation and the evaluation standards, criteria and methodology listed in here. TÜV Rheinland Nederland B.V. will take into account, amongst other evidences, the evaluation technical reports issued by the ITSEF, licensed as laid out in part 3 of the NSCIB scheme documentation.

The security certification of a product means the recognition of the fulfilment of the security properties specified in its Security Target. The security certification of a product does not however mean or imply fitness for purpose under any particular scenario or environment of usage. To determine the applicability of certification results under the product's intended environment, the user should carefully read the Security Target.

Once a certificate has been granted, it is valid until it expires or is revoked; the latter of which happens with changes on the conditions or factors affecting the certificate such as technological advances, appearance of new vulnerabilities, non-fulfilment of the conditions to use the certificate, changes in the product, or explicit denial of the certificate requester. To ensure that current certificates are up to date the Certification Body performs routine inspections, audits and analysis on the certified products, their intended environment and the usage of the certificates themselves.

Situation regarding NSCIB and eIDAS in 2023 and 2024

From the 1st of January 2024 TUV Rheinland Nederland B.V. terminates its certification activities within the field of NSCIB and eIDAS.  During 2023 new applications for certification will not be accepted anymore and will be taken over by TrustCB. From the 1st of January 2024 information regarding our issued certificates for NSCIB and eIDAS can be found on the website of TrustCB. A link to that page will be added here as soon as that page is live.


Certification scheme
TÜV Rheinland Nederland B.V. is responsible for implementing and managing the Netherlands Scheme for Certification in the Area of IT Security (NSCIB).
Certification body
TÜV Rheinland Nederland B.V. is a certification body accredited  by the Dutch Accreditation Council (RvA) registered under C078 for the Common Criteria.
Certified products
TÜV Rheinland Nederland B.V. is responsible for issuing all certificates and will publish all certificates issued under the Netherlands scheme in accordance with the conditions of the CCRA and SOG-IS MRA for international recognition.
Evaluation Facilities
TÜV Rheinland Nederland B.V. is responsible for licensing evaluation facilities for Common Criteria in accordance with the Netherlands scheme.
To become a licensed evaluation facility an application may be sent to TÜV Rheinland Nederland B.V.