RED compliant cybersecurity requirement catalogue for wireless product testing
In October 2021 new RED requirements were published on the EU's official website. The update activates article 3(3)(d), (e) and (f) of the EU Radio Equipment Directive RED 2014/53/EU, which is intended to increase the level of cybersecurity, personal data protection and privacy for certain categories of radio equipment.
The transition phase will expire in August 2024, although it is not yet clear when a harmonized standard can be issued. Manufacturers who wait for the harmonized standard will have only a transition period of approximately 10-12 month before the new cybersecurity requirements become mandatory.
To be prepared for the changes, TÜV Rheinland developed a RED compliant cybersecurity requirement catalogue according to different regulations and best practices (CEN/CENELEC; ETSI 303 645, NIST IR 8425). It covers three main areas:
1. Network Resilience
• Authentication
• Secure Interfaces
• Communication Security
• Software update Security
• Input & Output validation
2. Personal data protection and privacy
• Personal data storage
• Analysis of personal data
• Transmission of personal data
• Erasure of personal data
• User notification
• Internal activity logs
3. Payment data protection
• Storage of payment data
• Analysis of payment data
• Transmission of payment data
• Transmission of payment data
• Erasure of payment data
• User notification
• Internal activity logs
Get in personal contact to request your individual quote! Our experts are also at your disposal to give information about the requirements, the effective timeline and informe you how to prepare for the changes.
Find end-to-end Solutions for your IoT
As the Internet of Things market grows, so do attacks on even the best cybersecurity defense systems. The costs can be extremely high, in terms of lost revenue, damage to brand reputation, downtime, theft of intellectual property, and possible ransomware payments. That’s why it is extremely important to have a comprehensive cybersecurity solution in place.
TÜV Rheinland provides cybersecurity and protection offerings for IoT, which are compliant with all legal and technical requirements.
Among others we offer:
- Managed Security Services for your IT Safety
- Penetration Test
- Cyber Security in Industrial Automation
- Technical Inspection Audits and Certification for Management and Automation Technology
Of course we know, that your needs and challenges might be specific and depending on various aspects like branch, product or target market. Our own expertise, combined with those of our market leading partners, provide tailored and future-proof solutions. We deliver end-to-end services spanning strategic consulting to practical implementation. Get in touch with our experts for your individual quote.
Oversee our Comprehensive Cybersecurity Solutions
Manufacturing or selling products with any interfaces means facing the challenges of computing, storage, networking and cloud technologies. Cyber-attacks, in particular, can be sensitively targeted for business disruption or manipulation. That makes cybersecurity a top priority not only for Wireless & IoT products. We offer an extremely wide range of cybersecurity services for both the private and public sectors. Learn more on our website!
Related Services
Learn more about how you can benefit from our services!
Our experts are happy to assist you with any further questions, specific needs and requests.