Access the consolidated version of the CSA with the amendment. Commission Implementing Regulation (EU) 2024/482 of 31 January 2024. The Commission's Brand Book provides guidance for the design of cybersecurity certification mark and labels, in line with the EUCC Commission Implementing Regulation (EU) 2024/482. EUCC Brand Book.

By developing cybersecurity certification at EU level, the goal is to harmonise the recognition of the level of cybersecurity of ICT solutions across the Union, allowing vendors and service providers to reach more customers.

2024年2月7日 · Commission Implementing Regulation (EU) 2024/482 of 31 January 2024 laying down rules for the application of Regulation (EU) 2019/881 of the European Parliament and of the Council as regards the adoption of the European Common Criteria-based cybersecurity certification scheme (EUCC) C/2024/560.

With EUCC, the EU commonly agreed on assessment process to certify ICT products such as technological components, hardware and software. The scheme is based on Common Criteria, an international standard (ISO/IEC 15408) broadly used internationally.

2020年7月2日 · ENISA has published specifications for the evaluation and certification of embedded Universal Integrated Circuit Cards (eUICCs) under the European Common Criteria-based cybersecurity certification scheme (EUCC).

The EUCC is a framework for assessing and certifying the cybersecurity of information and communication technology (ICT) products and protection profiles. The scheme aims to ensure that ICT products meet stringent security standards through a structured process, aiming to enhance cybersecurity, achieve consistency across the European Union (EU ...

Strive to attain a 'substantial' or 'high' level of assurance for the EU Cybersecurity Act (CSA) components encompassed by EUCC. To meet EUCC compliance, Security Targets (STs) must include the following CC requirements, regardless of their assurance level or associated dependencies: At least one AVA_VAN component. At least one ATE_IND component.

2023年10月20日 · 该欧盟委员会执行法规草案引入了基于欧洲通用标准的认证计划（EUCC）作为CSA认证框架中的首个计划。 欧洲网络安全认证框架旨在通过欧洲网络安全认证计划提高信息和通信技术产品、信息和通信技术服务以及信息和通信技术流程的可信度，因为认证已经证明，该计划的网络安全要求已得到满足。 该框架还旨在避免各成员国网络安全认证计划重叠，降低在数字单一市场中运营的企业的成本，并通过证书（包括标志和标签）向客户提供透明、可比的保证声明 …

The EUCC scheme covers a wide range of security requirements, by offering two of the security assurance levels defined in the CSA: Substantial and High. These CSA assurance levels are directly correlated to the AVA_VAN level that a product will be assessed at, and are not to be confused with the Evaluation Assurance Level (EAL).

EUCC 是根据欧盟委员会实施法案条例(EU) 2024/482建立的基于通用标准的新体系。 所有信息与通信技术(ICT)产品都可以使用新认证计划的规则进行认证。 Applus+ Laboratories 在通用标准和网络安全评估方面拥有超过20年的经验,可作为ICT产品供应商和制造商的评估实验室 (ITSEF)*,证明其产品符合 EUCC计划的 '实质性'或 '高'保证级别。 这不仅有利于产品进入欧盟内部市场,还能增强消费者对ICT产品安全性的信心。 信任: EUCC认证是一种质量和安全证书,可以增强用户和客户 …