GDPR

Mandatory cookies

Mandatory cookies enable the main website functions. Without the aforementioned cookies the website cannot function properly. These cookies can be turned off only by changing the browser settings.

Statistics cookies

Analytical cookies allow us to improve the website by collecting and providing information about its usage.

Newsletter subscription

projektai-lsd Lithuanian Standards Board
Portal for draft standards
Register

EN 17640:2022

Fixed-time cybersecurity evaluation methodology for ICT products

Draft New

Project stage codes

1. Decision on WI Proposal
2. Projektas
3. Viešoji apklausa
From 2021-07-27 till 2021-09-25
4. Closure of enquiry
5. Submission to Formal Vote

Organisation

CEN Europos standartizacijos komitetas

ICS

35.030 - IT Security

Technical Committee

TK 79 IT security techniques

ForeignTC'S

CEN/CLC/JTC 13

Number of comments

0

Scope

This document describes the cybersecurity evaluation methodology for ICT products. It is intended for use for all three assurance levels as defined in the Cybersecurity Act (i.e. basic, substantial and high). The methodology is comprised of different evaluation blocks including assessment activities that comply with the evaluation requirements of the CSA for the three levels. Where appropriate, it can be applied both to 3rd party evaluation and self-assessment. It is expected that this methodology may be used by different candidate schemes and verticals providing a common framework to evaluate ICT products.