IoT devices are increasingly becoming part of consumers daily basis, devices like fitness watches, home automation devices, smart hubs, robot vacuum cleaners, dishwashers and dozens of other devices we use every day. Therefore, knowing that an IoT device meets certain cybersecurity standards is a relief for both the manufacturer and the consumer.
Because of this need, the ETSI EN 303 645 standard was developed. It was released in 2019, involving all stakeholders of the consumer IoT cybersecurity landscape and was developed with industry, academics, testing institutes and international government bodies. This standard has become a reference for securing IoT devices all over the world and is already used by several cybersecurity regulations.
How to carry out an evaluation under ETSI EN 303 645 standard?
The standard ETSI EN 303 645 is evaluated following the guidelines of ETSI TS 103 701,which describes how a conformity assessment is performed in a structured and comprehensive way. This will allow supplier organizations such as manufacturers, vendors or distributers to assess the compliance of their devices against ETSI EN 303 645. The technical specification that offers ETSI TS 103 701 helps to harmonize evaluation methodologies and support manufacturers, suppliers and implementers for their internal security processes.
Which actors are part in the evaluation process?
The evaluation process is not simple and can take several months of effort to be completed. For this reason, we recommend using a reputable laboratory.
There are three main actors involved in this process:
Flowchart of the Certification Process for ETSI EN 303 645In this section we will highlight the most important stages in the certification process. With this graphic, the steps to be followed will become clearer.
Source: ETSI TS 103 701
Important documentation required in the process.
There are some documents required to be carried out by the client or the consulting firm and some others by the lab.
How can we help you achieving ETSI EN 303 645?
We strive to smooth the process and make it as simple as possible, minimizing the workload for our clients. Our highlights:
If you want more info do not hesitate to contact us and visit our ETSI EN 303 645 webpage.