EU Cybersecurity Certification introduction for CABs
An introduction of the opportunities for Certifiers and Evaluators in the new European Cybersecurity Certification landscape. © ENISA - Creative Commons 4.0
Have you heard about the EU cyber security certification schemes? If you are a Conformity Assessment Body now is the time to know more about them. The European Union is preparing cybersecurity schemes to harmonize both the security requirements for ICT solutions and the way to assess them. These schemes allow mutual recognition of certificates across the European Union. So what's in for Conformity Assessment Bodies? These schemes create a European market for new and experienced Conformity Assessment Bodies also known as cabs. They will be able to offer cyber security certificates that are recognized across the European Union and related assessment tools and services. Currently three cyber security certification schemes are under development. The first in the pipeline is the EU Common Criteria scheme covering ICT products. It is based on the existing Common Criteria for information security evaluation and compared to previous rules it allows CABs to also certify at the substantial level of assurance. Certification schemes on Cloud services and on 5G networks are also upcoming. But how can CABs get ready? If you are a cab you can contact your relevant National Authority to become an accredited and notified body. Also you can keep encouraging vendors and developers to obtain existing certifications. In fact EU cyber security certification schemes will be aligned as much as possible with existing ones. ENISA will provide guidance to facilitate the transition. You can also join our efforts and participate in the development and implementation of current and future schemes. Stay updated via ENISA's website.
© ENISA - Creative Commons 4.0