• DE
  • Main Menue

Accredited Test Lab for IT-Conformity and Certified IT Security Provider

secunet operates an independent test lab which is accredited by the German Federal Office for Information Security (BSI) for conducting technical conformity audits. The lab is designed in accordance with the internationally valid requirements for test labs and meets the requirements determined in DIN EN ISO/IEC 17025 and ISO 27001 based on IT baseline security. Additionally, the BSI certified secunet as an IT Security Partner for Federal Authorities, thus confirming secunet’s trustworthiness and expertise needed in order to support authorities in setting up and implementing as well as auditing security concepts according to IT baseline security.

secunet’s test lab performs formal checking procedures in various fields; among them, testing conformity with the respective technical guidelines for electronic ID documents, biometric components and De-Mail.

Through secunet, companies, public and Federal authorities receive valuable support in high-quality, functional and security-relevant proving of the suitability of their products or systems; additionally, they are supported in successful completion of admission-procedures. Thanks to the independent infrastructure of our lab and our highly skilled staff, our clients receive reliable test-results acknowledged by public authorities. secunet’s experts will support them all the way throughout the entire certification process, if requested.

secunet’s customers benefit from fast and efficient product rollout and the confirmation of the effectivity of their processes.

Conformity testing of electronic passports and electronic identity documents (eIDs)

Checking security and conformity is of the highest importance, particularly for electronic ID documents such as the electronic passport (ePass). In the testing-field of ePass/eID, secunet offers manufacturers of chips, chip-systems and passports as well as public authorities to check personalised documents and their components, for example inlays. This is based on BSI TR-03105. In this framework, secunet conducts the tests of the logical layers of electronic passports (layer 6 and 7). In close cooperation with an accredited partner-lab, we also offer our clients to conduct conformity-tests for the physical layers according to Part II of Guideline TR-03105 (RF-communication).


Holistic Solutions for eIDs


Conformity testing for biometric components

The quality of the biometric features captured – namely the face image and the fingerprints – as well as the data format this feature is stored in the electronic passport are specified in detail by the ICAO and technical guidelines. This way, smooth global interoperability of the ePass is ensured.

The field of biometric testing addresses providers and integrators of components used to capture, process and transmit biometric data. secunet tests the software applied in the scope of the application-procedures in the authorities issuing passports and those used in the verification of identity documents according to their conformity with TR-Biometrie (TR-03121). With the test-report issued by secunet, our clients receive proof of conformity of their products and can apply for BSI-certification on this basis. 

Conformity testing for eID clients / eID server

For the usage of electronic identity documents (eIDs) in online business processes a specific software on the eID holder's computer and/or mobile system connects the document itself and the online services that are authorised to have access to it. BSI TR-03124 specifies numerous technical details that are to be implemented in the so-called eID client software for Online-Authentication between an eService and national eID cards, e.g. the German eID card or the German electronic residence permit. On the side of the service provider an eID server according to BSI TR-03130 is used.

Our service in the field of conformity of eID clients or eID servers addresses providers of such software. Ultimately, secunet's test-report confirms their products to run correctly, securely and interoperable with all the other respective components within the eID infrastructure and is therefore a decisive element for the BSI-certification process.

Conformity testing for De-Mail

De-Mail providers are only entitled to offer their services after successful accreditation and admission by the BSI. In the field of De-Mail testing, secunet offers providers of the PO box and mailing service De-Mail the testing of their service regarding interoperability and functionality according to the technical guideline TR-01201 De-Mail.

secunet’s test-report acknowledges that the provider adheres to specific organisational and technical means, for example to prevent unauthorised internal or external access to information; it also acknowledges interoperability, i.e. technically seamless interaction with the services of other De-Mail providers.


Information Security Revision (IS-Revision) is part of every successful information security management. Only through regular testing of established security mechanisms and the information security process can statements be made about their effective implementation, up-to-dateness, completeness and appropriateness – and with that, about the current state of information security. IS-Revision thus is a tool for determining, achieving and maintaining an appropriate security-level in an institution.

Our tests aim at improving information security, at preventing false developments, and at optimising the profitability of security mechanisms and processes.


Get directly into contact with our specialist division.

Contact form


Factsheet secunet Evaluation Laboratory

BSI Recognition Part 1

BSI Recognition Part 2

BSI Certificate: IS-Revision and -Consulting, Penetrationtesting

BSI Certificate: eID Server

secunet GlobalTester

Conformity test tool for eIDs and terminals



Testing of chip solutions for electronic passports


Austria trusts in the evaluation competence of secunet


secunet evaluates Czech e-passports according to BSI’s TR-03105 Part 3