IoT Security—Road toward Compliance with Regulations (I12c)
Since IoT Devices at the low end of the range may have security features constrained by cost, available processing power and performance, size, type of power source, Cybersecurity Certification Schemes must consider the trade-off between such constraints, the risks and the cost of certification. In addition, certifications must be granted and maintained in a proper and cost-efficient way to guarantee the level of assurance and the certificate in the operational phase.
During this presentation, Roland will address the IoT security certification’s challenges, demonstrates how the ETSI EN 303 645 could help manufacturers reaching a security assurance level required by the industry and how it could be implemented in a proper and cost-efficient way. Finally, we will see how all this fits in the scope of the IT SIG 2.0 German regulation, RED directive, Cybersecurity Act and EU Cybersecurity Certification Scheme Framework.