Security Certification & Assessments
Cofinity-X operates within the Catena-X ecosystem and provides products and services supporting secure, interoperable, and trusted data exchange across automotive and manufacturing value chains. As an operational platform and service provider within this ecosystem, Cofinity-X maintains a comprehensive security and compliance program aligned with both general cybersecurity best practices and Catena-X specific requirements.
While Catena-X defines common ecosystem standards, interoperability requirements, and conformity frameworks for trusted dataspace participation, Cofinity-X additionally subjects its organization, operational processes, and platform services to independent external assessments and industry-recognized security evaluations..
TISAX® Assessment
The ENX Association supports with TISAX (Trusted Information Security Assessment Exchange) on behalf of VDA the common acceptance of Information Security Assessments in the automotive industry. The TISAX Assessments are conducted by audit providers that demonstrate their qualification at regular intervals. TISAX and TISAX results are not intended for general public.
For Cofinity-X confidentiality, availability and integrity of information have great value. We have taken extensive measures on protection of sensitive and confidential information. Therefore, we follow the question catalogue of information security of the German Association of the Automotive Industry (VDA ISA). The Assessment was conducted by an audit provider, in this case the TISAX audit provider DEKRA. The result is exclusively retrievable over the ENX portal.
CyberVadis Assessment
CyberVadis is a globally recognized cybersecurity assessment platform that evaluates organizations across a broad set of governance, operational, and resilience-related security domains. The assessment methodology is aligned with established industry standards and frameworks and focuses on the effectiveness and maturity of implemented cybersecurity controls.
Cofinity-X successfully completed an independent CyberVadis cybersecurity assessment and achieved a Gold Rating with a score of 920/1000, demonstrating a mature and continuously evolving cybersecurity program.
The assessment is evidence-based and validated by cybersecurity analysts, providing customers and partners with an independent view of our cybersecurity maturity and operational security posture.
Catena-X Conformity Assessments
Cofinity-X products and services successfully passed Catena-X conformity assessments for multiple ecosystem roles and capabilities within the Catena-X ecosystem.
The Catena-X conformity framework validates that certified solutions comply with defined interoperability, operational, semantic, and security requirements necessary for trusted participation in the Catena-X dataspace. The assessments cover the implementation and operation of ecosystem-relevant services, interfaces, APIs, onboarding capabilities, identity and trust mechanisms, and secure data exchange components.
Cofinity-X certifications include areas such as:
- Core dataspace and onboarding services
- Enablement and connector capabilities
- Traceability and business application services
- Identity, trust, and credential-related services
- Business partner and discovery services
- Secure data exchange and interoperability components
These conformity assessments confirm that the respective solutions align with Catena-X ecosystem requirements and can participate as certified services within the federated automotive dataspace environment.