GDPR

Mandatory cookies

Mandatory cookies enable the main website functions. Without the aforementioned cookies the website cannot function properly. These cookies can be turned off only by changing the browser settings.

Statistics cookies

Analytical cookies allow us to improve the website by collecting and providing information about its usage.

Newsletter subscription

projektai-lsd Lithuanian Standards Board
Portal for draft standards
Register

List of drafts

Extended search

till

Results

Showing:
ISO/IEC 18033-7:2022/DAmd 1 Public enquiry
Comment end date 2026-04-12
Information security — Encryption algorithms — Part 7: Tweakable block ciphers — Amendment 1
Read draft and comment View
ISO/IEC 29192-8:2022/DAmd 1 Public enquiry
Comment end date 2026-04-12
Information security — Lightweight cryptography — Part 8: Authenticated encryption — Amendment 1
Read draft and comment View
ISO/IEC 29192-4:2013/DAmd 2 Public enquiry
Comment end date 2026-04-12
Information technology — Security techniques — Lightweight cryptography — Part 4: Mechanisms using asymmetric techniques — Amendment 2
Read draft and comment View
prEN ISO/IEC 29134 Public enquiry
Comment end date 2026-04-12
Information technology - Security techniques - Guidelines for privacy impact assessment (ISO/IEC 29134:2023)

This document gives guidelines for: a process on privacy impact assessments, and a structure and content of a PIA report. It is applicable to all types and sizes of organizations, including public companies, private companies, government entities and not-for-profit organizations. This document is relevant to those involved in designing or implementing projects, including the parties operating data processing systems and services that process PII.

View
ISO/IEC DIS 28033-2 Public enquiry
Comment end date 2026-04-12
Information security — Fully homomorphic encryption — Part 2: Mechanisms for exact arithmetic on modular integers
Read draft and comment View
prEN 50764:2026 Public enquiry
Comment end date 2026-03-25
Cybersecurity requirements for platforms of smartcards and similar devices including secure elements

The products with digital elements in the scope of this document are the platforms of smartcards and similar devices including secure elements, which consist of a tamper-resistant MCU/MPU and optionally an application environment or operating system. Platforms are designed to store and process sensitive data, and to protect it against physical and logical attacks by attackers with significant resources and skills, at AVA_VAN.4 (moderate attack potential) or AVA_VAN.5 (high attack potential) levels. Although platforms do not delegate data processing to remote entities, these can be involved in operations such as software update, configuration or key provisioning. The platform ensures the authentication of the remote entities before receiving/sending sensitive information and ensures this information is protected during the exchange. Platforms are intended for final products including, but not limited to, electronic identity cards, removable UICCs, eUICC, payment cards, physical access cards, digital tachograph cards or wrist bands with integrated payment secure elements, trust anchors in connected digital products and critical IT systems. This document defines technical requirements for platforms, which meet the essential requirements defined in Regulation (EU) 2024/2847 to the extent described in Annex ZZ. It also defines the methods for assessing the technical requirements. The expression of the technical requirements and the assessment methods use the Common Criteria (CC) formalism defined in the EN ISO/IEC 15408 series and EN ISO/IEC 18045:2023 supplemented by the EUCC state-of-the-art documents for the technical domain smart cards and similar devices. This document covers platforms conformant with the Protection Profiles (PPs) PP0084, PP0117, PP0104 and PP TPM, and identifies the gaps of these specifications against the CRA essential requirements. In this document, PP0104 also refers to the PP0104-based PP-Configuration 0107. The evaluation of platforms against PP0084, PP0117, PP0104 or PP TPM plus the applicable additional technical requirements which cover their gaps allow to demonstrate conformance with the CRA essential requirements. The technical requirements and the mappings against PP0084, PP0117, PP0104 and PP TPM are defined in Clause 7 and Annex B, respectively. This document also covers platforms consisting of a hardware layer and either an application environment, e.g. Java Card platform, or firmware/software. Annex C contains an informative mapping of Java Card platforms towards PP0099. Platforms can have discrete, integrated or embedded form factors, and employ technologies such as integrated circuits, programmable macros or system-in-package or system-on-chip. These do not affect the requirements or the assessment methods. Unless specified, clauses apply to all platforms, from pure hardware to platforms consisting of hardware, firmware and/or software. Platforms are accompanied by guidance which contains all the requirements and recommendations for the secure integration of the platform into further intermediate or final products and the secure usage of the platform by the external entities. The guidance covers all the non-platform aspects which can impact the security of the platform assets. The applications stored and/or running on the platforms, which are an integral part of the final products, are outside the scope of this document. prEN 18330:2026 applies to products composed of a platform and a set of applications.

Read draft and comment View
prEN 50765:2026 Public enquiry
Comment end date 2026-03-25
Cybersecurity requirements for microprocessors and microcontrollers with security-related functionalities

This document specifies the security assessment requirements for platforms that include microprocessors and microcontrollers with security-related functionalities. These platforms aim to secure other products/networks/services beyond the microprocessors and microcontrollers themselves and are intended to provide assurance at a level AVA_VAN.1 as defined in [2], or without AVA_VAN claim.

Read draft and comment View
prEN 50766:2026 Public enquiry
Comment end date 2026-03-25
Cybersecurity requirements for tamper-resistant microprocessors and microcontrollers

This document specifies the technical requirements for general-purposes tamper-resistant microprocessors and microcontrollers intended for integration into products that rely on them as a foundational security component. The microprocessors and microcontrollers in scope are designed for deployment in environments where the security features of the product integrating the platform are of importance, and where the threat landscape includes attackers with low but non-negligeable attack potential, corresponding to AVA_VAN.2 to AVA_VAN.3 as defined in [13].

Read draft and comment View
prEN 18330 Public enquiry
Comment end date 2026-03-24
Cybersecurity requirements for smartcards or similar devices, including secure elements - Application layer

Smart Cards • Definition of a Smart Card that is in the scope of the Regulation (EU) 2024/2847, Annex 4, Category 41 o In reference to TC47X/WG3 work on Security MCU/MPU • Distinction between applicative part and general part of the architecture that is essential for composite evaluation • Expectation on applicative and composite evaluation in accordance with EUCC scheme Similar Devices • Definition of similar devices that are in- or out-of-scope of this standardisation category – for example: o Products in-scope that fully comply with architectural description of a compliant Smart Card but do come in different packaging (e.g. SIM-card form factors, key fobs, tokens, IoT embedded ID elements), etc. o Products out-of-scope that come packaged as a smart card but contain microcontrollers with security functions or tamper resistance appropriate for evaluation under other categories Secure Elements • Definition of a Secure Element that is on the scope of the Regulation (EU) 2024/2847, including description of possible architectures and required security capabilities, in alignment with TC47X • Distinction between applicative part and general part of the architecture that is essential for composite evaluation • Expectation on applicative and composite evaluation in accordance with EUCC scheme • Alignment of security capabilities of secure elements with microcontrollers and microprocessors with security functions and/or tamper resistance capabilities Related remote data processing • Technical criteria characterizing a remote data processing • Identification of remote data processing e.g. life cycle management, security update services…. • Standardized expectations on lifecycle management of Smart Cards and Secure Elements As part of the work, the group will cover at least the types of PwDE and their intended purposes in relation to use cases described in the list below. In addition, for some types of PwDE, expertise from external organizations which are recognized will be leveraged to ensure the project is relevant and in line with the reality of markets. Type of the Product with Digital Elements: 1. Secure element, Smart Cards and similar devices for critical use cases – high risk profile 2. Secure element, Smart Cards and similar devices for critical use cases – low risk profile 3. Remote data processing systems / services The list above is not finite, it represents initial state. The work of the group will first focus on delivering precise scope related to intended purpose and dependant use cases, in collaboration with other standardisation workgroups and industry representatives. Note on the use cases - Standard may cover specific aspects of particular use cases Note on risk profile - The mapping of compliance criteria with EUCC may be given - Standard may cover aspects of newer version of Common Criteria CC:2022, and other established schemes

Read draft and comment View
ISO/IEC DIS 28033-3 Public enquiry
Comment end date 2026-03-10
Information security — Fully homomorphic encryption — Part 3: Mechanisms for arithmetic on approximate numbers
Read draft and comment View
ISO/IEC DIS 29128-3 Public enquiry
Comment end date 2026-03-09
Information security, cybersecurity and privacy protection — Verification of cryptographic protocols — Part 3: Evaluation methods and activities for protocol implementation verification
Read draft and comment View

Quick filters

Organisation
CEN Europos standartizacijos komitetas (164) ETSI Europos telekomunikacijų standartų institutas (11) CENELEC Europos elektrotechnikos standartizacijos komitetas (98) LST Lietuvos standartizacijos departamentas (2) ISO Tarptautinė standartizacijos organizacija (12)
Technical Committee
TK 1 Electronics (6) TK 4 Information technology (1) TK 5 Electrical engineering (22) TK 8 Electromagnetic compatibility (2) TK 9 Furniture (2) TK 12 Motor - roads (5) TK 13 Agricultural engineering (3) TK 15 Cereals, cereal products, bread and animal feeding stuffs (2) TK 18 Telecommunications (11) TK 20 Toys, child use articles, sports and other recreational equipment (3) TK 21 Textiles and personal protective equipment (1) TK 28 Gas systems (2) TK 32 Health (20) TK 34 Metrology (1) TK 35 Safety of machinery (2) TK 36 Environmental protection (4) TK 39 Protection (2) TK 40 Petroleuml, petroleum products, lubricants and alternative fuels (2) TK 41 Welding (2) TK 43 Railway traffic (7) TK 45 Electric power (23) TK 49 Metallic materials (6) TK 50 Heating and Ventilation Systems (3) TK 51 Food analysis- Horizontal methods (6) TK 56 Metal liquid tanks and industrial pipelines. (1) TK 57 Fertilizers (12) TK 59 Geotechnics (2) TK 60 Windows and doors (1) TK 63 Gas cylinders and cryogenic vessels (5) TK 64 Ergonomics (1) TK 65 Tourism services (2) TK 66 Non-destructive testing (3) TK 68 Plastics (6) TK 70 Pulp, paper, board, adhesives (3) TK 76 Explosive atmospheres (2) TK 77 Lifts (2) TK 79 IT security techniques (7) TK 80 Road transport and traffic telematics (3) TK 82 Safety of trackless overground vehicles (1) TK 84 Chimneys and solid fuel burning appliances (1) TK 88 Building Information Modelling (BIM) (1) TK 89 Risk management (1) TK 91 Asset management and technical maintenance (1) TK 92 Public Procurement (3) TK 99 Health Informatics (2)
ICS
Vandenilio technologijos (3) Biologinės dirvožemio savybės (1) Kiti su dirvožemio kokybe susiję standartai (1) Additive manufacturing (1) Advanced ceramics (3) Aerospace electric equipment and systems (2) Agricultural machines and equipment in general (1) Alarm and warning systems (1) Alkaline secondary cells and batteries (4) Aluminium products (2) Anaesthetic, respiratory and reanimation equipment (4) Automatic controls for household use (2) Binders. Sealing materials (2) Biobased products (1) Bolts, screws, studs (1) Brazing and soldering (1) Cables (1) Cableway equipment (1) Cereals, pulses and derived products (3) Chemical analysis of metals (1) Chemical laboratories. Laboratory equipment (1) Components and accessories in general (1) Components for rotating machines (1) Construction of railways (1) Copper products (1) Corrosion of metals (1) Crash protection and restraint systems (5) Dental materials (5) Diagnostic equipment (1) Domestic safety (1) Earthworks. Excavations. Foundation construction. Underground works (2) Electric furnaces (2) Electric heaters (1) Electric tools (1) Electrical and electronic equipment (1) Electrical apparatus for explosive atmospheres (2) Electrical engineering in general (1) Electricity supply systems (1) Electroacoustics (2) Electronics (Vocabularies) (1) Equipment for petroleum and natural gas industries in general (3) Examination of water in general (1) Explosives. Pyrotechnics and fireworks (6) External sewage systems (1) Fertilizers (10) Fibre optic interconnecting devices (2) Fibres and cables (5) Finances. Banking. Monetary systems. Insurance (1) Fissile materials and nuclear fuel technology (1) Fluid systems and components for general use (Vocabularies) (1) Footwear (1) Fruits and derived products (2) Fuses and other overcurrent protection devices (7) Gas supply systems (1) Gases for industrial application (1) Geology. Meteorology. Hydrology (1) Geometrical Product Specification (GPS) (2) Glass in building (1) Heat pumps (1) Hoses and hose assemblies (1) Ignitability and burning behaviour of materials and products (1) Immunity (2) Indoor sports equipment (2) Information technology (IT) in general (3) Inland navigation vessels (1) Insulation systems (1) IT applications in building and construction industry (1) IT applications in health care technology (2) IT applications in trade (3) IT applications in transport (3) IT Security (11) Ladders (1) Laminated sheets (1) Lamps in general (1) Leather and furs (2) Leisure and tourism in general (1) Lifts. Escalators (1) Low voltage switchgear and controlgear (4) Maintenance services. Facilities management (1) Management systems (1) Materials and articles in contact with foodstuffs (2) Medical equipment in general (2) Medical microbiology (1) Non-destructive testing (3) Non-destructive testing of metals (1) Non-ferrous alloys in general (1) Nuclear power plants. Safety (1) On-board equipment and instruments (2) Other semiconductor devices (1) Other wood-based panels (1) Outdoor and water sports equipment (1) Paper and board (2) Petroleum products and natural gas handling equipment (1) Petroleum products in general (2) Pipeline components and pipelines in general (4) Plastics pipes (1) Pollution, pollution control and conservation (2) Power transmission and distribution lines (1) Power transmission and distribution networks in general (1) Pressure regulators (2) Printed circuits and boards (1) Public buildings (2) Pumps and motors (1) Railway engineering in general (1) Railway rolling stock in general (2) Reactor engineering (1) Rectifiers. Converters. Stabilized power supply (2) Recycling (1) Road construction (1) Rotating machinery in general (2) Safety of machinery (5) Semiconductor devices in general (3) Sensory analysis (2) Services for companies (1) Services for consumers (1) Small craft (2) Small kitchen appliances (1) Software (1) Solar energy engineering (2) Solid fuel heaters (1) Solid fuels (1) Steels (1) Sterilized packaging (4) Sterilizing equipment (1) Surface preparation (2) Surface treatment (1) Switches (1) Technical product documentation (1) Telecommunications in general (1) TELECOMMUNICATIONS. AUDIO AND VIDEO ENGINEERING (11) Telecontrol. Telemetering (7) Test conditions and procedures in general (1) Textile fibres in general (1) Trade. Commercial function. Marketing (1) Trailing stock (1) Transfusion, infusion and injection equipment (3) Ventilation and air-conditioning systems (1) Vessels and containers mounted on vehicles (1) Water heating equipment (1) Waxes, bituminous materials and other petroleum products (2) Welding, brazing and soldering in general (1) Woodworking machines (1)