Mobile Devices Compliance to the CRA through EUCC using ETSI CMD PP (TS 103 732 series) (S11c)
ETSI TC Cyber is developing the new version of the CMD PP taking into account the new threats and the EU Cyber Resilience Act. The mobile device is today classified as non-important product but it includes several “important” products such as the mobile OS, boot Manager, browser, eSE and/or eUICC. These components are potentially EUCC certified. This talk will present the mapping of the security requirements of the PP CMD to the essential requirements of the CRA and how the compliance to the CRA of a mobile device may be demonstrated through the EUCC certification against the CMD PP.