As IoT systems rapidly proliferate, they are becoming an increasingly important target for cybercriminals, who can launch attacks against smart devices remotely. ETSI 303 645 is the first global cybersecurity standard for consumer IoT products, defining clear minimum requirements for manufacturers. For ViVeTech's partner, smart home provider Chameleon, obtaining this certification guarantees the highest possible level of cybersecurity.
IoT is appearing in more areas of our lives with new smart devices launching constantly, be it something new for work, in our vehicles and at home, and some can even be worn on our bodies (e.g. smartwatches). As these devices become more popular, they attract the attention of cybercriminals who can cause serious financial and other damages with a well-targeted attack.
Countries and operators continuously seek to reduce cyber risks to IoT systems through policies and legislation. In January this year, the European Union published a regulation to improve cybersecurity, protect personal data and combat fraud for wireless devices available on the EU market. The legislation came into force on the 1st of February 2022, but will only become legally binding on the 1st of August 2024, giving manufacturers a 30-month transition period for improvements.
The ETSI 303 645 standard was published back in 2020. ETSI, which created the certificate, is a non-profit organization with more than 950 member organizations worldwide from 64 countries and 5 continents. The members come from large and small private companies, research institutes, academic, governmental, and public organizations. ETSI is officially recognized by the European Union as a European Standards Organization (ESO).
ETSI EN 303 645 is a globally applicable standard that covers all consumer IoT devices while defining easy-to-manage uniform minimum security requirements. The standard is based on 13 high-level recommendations, of which 68 provisions, 33 mandatory requirements and 35 recommendations were formulated. In a short time, the certificate has become a reference point for the security of IoT devices all over the world. Based on the announcement of the Council of the European Union, ETSI EN 303 645 is an important step in the development of standards supporting the Cybersecurity Act.
For our partner, smart home provider Chameleon, the highest level of cybersecurity is key, as everyone wants to feel safe intheir own home. The ETSI EN 303 645 standard also sets high security and privacy standards for IoT devices and related services connected to the home network. We have provided professional assistance to Chameleon in obtaining this certification, which will give them a significant competitive advantage in the North American and European markets over other service providers who do not yet have certification from an independent body. Thus, customers are guaranteed that the service they choose meets the highest information security criteria.