Global Market Access: Nemko Group AS Testing Services

ETSI 303 645 Cybersecurity Standard for IoT Product Certification

Written by Nemko | August 1, 2024
                                                                                                                                                                                       

The standard ETSI 303 645:2020 (Cyber Security for Consumer Internet of Things) was last year included under the category CYBR in the IECEE/CB Scheme, i.e. to allow for international certification of consumer IoT products.
This may have significant impact on the certifications of cyber in the CB scheme since the standard covers the majority of product types which are otherwise certified for electrical safety within the scheme.

Nemko started early the process of having its IECEE scope extended to include cyber security. After both the testing laboratory (CBTL) and certification body (NCB) in Oslo having successfully passed assessment by an IECEE expert team, Nemko can now offer international CB Test Certificates showing compliance with the standard ETSI 303 645 for consumer IoT products.
This is the first globally applicable cybersecurity standard for securing IoT devices and is referred in several governmental regulations, (such as the Delegated Acts of the European Radio Equipment Directive (RED) Article 3.3 d, e and f).
The standard is suitable for a wide range of consumer type products including IoT gateways, monitors, door locks, televisions and speakers, and household appliances. Certain organizations, such as within healthcare, are also vulnerable to IoT-focused cyberattacks which may affect human safety.

Proof of conformity with ETSI 303 645 can help manufacturers to meet regulatory requirements as well as providing customers with assurance and confidence to purchase.

For further information, please contact Skule.Moe@nemko.com

(Article is based on the information shared by Skule Moe and edited by T.Sollie)