Connect with us

Hi, what are you looking for?

Editor's Pick

SESIP Paves the Way for IoT Manufacturers to Meet New European Cybersecurity Rules

GlobalPlatform’s SESIP methodology (EN 17927) offers a streamlined, cost-effective security framework for connected devices and components to conform to the EU’s new Cyber Resilience Act.

GlobalPlatform is calling for manufacturers of connected devices and components to adopt its “Security Evaluation Standard for IoT Platforms” (SESIP) methodology to demonstrate conformance with the European Union’s new Cyber Resilience Act (CRA), which comes into force this month.

The CRA aims to strengthen and harmonize cybersecurity across the EU by creating a new legal framework for all products that connect to the internet.

The enactment of the CRA puts into place mandatory cybersecurity rules that span the entire lifecycle of a digital product sold in the EU. The CRA was published in the Official Journal of the European Union last month and becomes law on December 11, 2024. Product manufacturers will have 36 months to fully comply with the legislation. The Act will eventually require all relevant products to comply with the rules in order to obtain the CE marking, a mandatory market requirement for issuing products in Europe.

As an internationally recognized standard for IoT security evaluation, SESIP is key to meeting the requirements mandated by the CRA. It provides manufacturers with a proven methodology for conducting security evaluations of software and hardware components across their products and supply chains. SESIP is recognized as a standard by CENELEC, the European Standardization Organization, as EN 17927. It also aligns with many other legislation and vertical certification schemes around the world, including the Cyber Trust Mark in the US.

The methodology is being used to certify components, platforms, and modules from a range of companies and is supported by a growing ecosystem of security providers, certification bodies (CBs), security laboratories, and other stakeholders. GlobalPlatform continues to support the growth and governance of the SESIP ecosystem. SGS Brightsight has recently been accredited as a SESIP CB following approval from the Spanish national accreditation body (ENAC), becoming the second SESIP CB after TrustCB.

Gil Bernabeu, CTO of GlobalPlatform, said:

“Industry support for SESIP is building at this critical juncture for IoT manufacturers operating in Europe.”

“The Cyber Resilience Act is vital to protecting consumers and businesses by embedding security features into the heart of the connected devices we use every day, providing a cybersecurity framework that spans the design, development, and maintenance of digital products.”

“However, this landmark legislation presents a range of compliance challenges for manufacturers of connected devices and the components used in these products,” continued Bernabeu. “SESIP simplifies conformity with the new regulations by providing a unified framework for comprehensive security evaluation, reducing cost, risk, and time to market. We look forward to expanding the SESIP ecosystem to help multiple industry sectors meet the requirements of the new European regulations. It will also enable international manufacturers to reuse their security evaluation investments to demonstrate conformance to non-European regulations.”

The SESIP methodology is already mapped to other standards and regulations such as ETSI, (EN 303645 / TS 103732), ISO/IEC (62443-4-2), RED (EN 18031), UNECE WP.29 (ISO/SAE 21434) and NIST (NIST 8259 / NIST 8425). It is also being used by schemes such as PSA Certified, and standardization bodies including the Car Connectivity Consortium and the Wireless Power Consortium. In addition to Europe, SESIP is being adopted around the world in key markets such as China, where an agreement was recently reached between GlobalPlatform and China’s National Financial Technology Certification Center (NFTC).

GlobalPlatform has a number of initiatives in place to help accelerate SESIP adoption. A training program has been launched and available for any interested party. It has also launched the SESIP Adopters community to give non-members the ability to keep up to date with relevant technical documents and showcase certified SESIP products.

More information on SESIP

The post SESIP Paves the Way for IoT Manufacturers to Meet New European Cybersecurity Rules appeared first on IoT Business News.

Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Enter Your Information Below To Receive Latest News, And Articles.

    Your information is secure and your privacy is protected. By opting in you agree to receive emails from us. Remember that you can opt-out any time, we hate spam too!

    You May Also Like

    Stock

    A rogue employee was responsible for hiding $151 million in delivery expenses over the course of nearly three years, Macy’s said Wednesday. In a...

    Editor's Pick

    As we approach 2025, the electronics and software design landscape is poised for a series of significant shifts. The expert engineering team at ByteSnap...

    Latest News

    As Pam Bondi prepares for confirmation as attorney general, she is working with a top lawyer from President-elect Donald Trump’s first term: Chad Mizelle,...

    Stock

    Startup basketball league Unrivaled announced on Monday it’s closed a Series A funding round, raising an additional $28 million before its inaugural season. “Our players...

    Disclaimer: Financetimereport.com, its managers, its employees, and assigns (collectively “The Company”) do not make any guarantee or warranty about what is advertised above. Information provided by this website is for research purposes only and should not be considered as personalized financial advice. The Company is not affiliated with, nor does it receive compensation from, any specific security. The Company is not registered or licensed by any governing body in any jurisdiction to give investing advice or provide investment recommendation. Any investments recommended here should be taken into consideration only after consulting with your investment advisor and after reviewing the prospectus or financial statements of the company.


    Copyright © 2024 Financetimereport.com