Nemko Achieves CB Certifications for Cybersecurity: A Game-Changer in IoT Security

In June Nemko got the status a Test Laboratory and Certification Body for the IoT cybersecurity standard, ETSI EN 303 645 Nemko has long experience with this standard and this means that Nemko now also can issue internationally recognized cybersecurity certificates!

The CB certification scheme has more than one hundred thousand electrical products certified ever year. Most of these are consumer products and many are being connected to networks, as they are becoming “smart”. 
Now, electrical products have always had to be safe, but being “smart” and connected also raises the issue of security. Cyber security.

Cybersecurity has been in the CB scope since 2018 but has not been a great success in terms of numbers, with an average of about fifty certificates annually. The reason may be that whilst the products typically certified in the CB scheme are consumer products, the cybersecurity standards chosen are intended for industrial products, which is a minimal product group within CB certification.

In 2023 however, a new standard was put into the CB certification scope, specifically covering cybersecurity of Consumer IoT products, the ETSI EN 303 645. This was done after an initiative from Nemko, seeing the need for a more targeted coverage of cybersecurity as both the number of connected products increases and also the number of malicious acts is increasing.

Nemko is already testing cybersecurity of products according to the ETSI EN 303 645 standard. In EU, cybersecurity will become mandatory under the Radio Equipment Directive (RED), and Nemko is also already a Notified Body for RED cybersecurity. For compliance to RED, the standard EN 18031 is the one which will be harmonized.

As such, Nemko is today capable of providing a wide range of services for EU and internationally. In addition, Nemko is also performing Common Criteria certification as well as adjacent services like vulnerability scan and penetration testing.