Public Consultation on the draft Candidate EUCC Scheme

Back to all publications

Download

Publication date:May 26, 2021

This report presents the outcome of the public consultation on the first draft of the cybersecurity certification candidate EUCC scheme. The scheme was developed following the request from the European Commission in accordance with Article 48.2 of the Cybersecurity Act, by Ad Hoc Working Group (AHWG) ENISA created. The EUCC, once approved, would serve as a successor to the existing ICT products certification schemes operating under the SOG-IS MRA (Senior Officials Group Information Systems Security Mutual Recognition Agreement).

As result some major changes were implemented to the candidate EUCC Scheme, mostly related to the:

  • addition and clarification of definitions;
  • systematic cooperation with the ECCG for the development of guidance documents supporting the scheme;
  • clarification of activities related to the maintenance of certificates;
  • clarification of deadlines associated to the handling of non-conformities, non-compliances and vulnerabilities;
  • modification of the status of the new patch management process, now in annex and for trial use;
  • modification of the logo associated to the certificates, allowing to establish an additional specific logo for the scheme and to mention the evaluation level achieved in addition to the CSA level;
  • clarification of the peer assessment requirements and simplification of the associated annex;
  • update of annexes 7 and 9 based on their recent evolution within the SOG-IS, and the addition of one annex related to ST sanitization

Cybersecurity Certification: Candidate EUCC Scheme V1.1.1

Search related content with: Certification

Publication details

Related content

Public_Consultation_on_Specifications_for_EUICC_Certification.png

Public Consultation on Specifications for EUICC Certification under the EUCC scheme

ENISA has published specifications for the evaluation and certification of embedded Universal Integrated Circuit Cards (eUICCs) under the European Common Criteria-based cybersecurity certification scheme (EUCC).

Market of Cybersecurity Assessments

This Report aims at presenting the current state of play of cybersecurity assessments of ICT products and cloud services.

Cybersecurity Certification: Candidate EUCC Scheme V1.1.1

Following the request from the European Commission in accordance with Article 48.2 of the Cybersecurity Act, ENISA has set up an Ad Hoc Working Group to support the preparation of a candidate EU cybersecurity certification scheme as a successor to the exi

EUCS – Cloud Services Scheme

This publication is a draft version of the EUCS candidate scheme (European Cybersecurity Certification Scheme for Cloud Services), which looks into the certification of the cybersecurity of cloud services.

BROWSE ALL PUBLICATIONS

Cybersecurity Certification Conference 2024

2024 Apr 18

2023 Cybersecurity Certification Conference

2023 May 25

BROWSE ALL EVENTS

ENISA Cybersecurity Resilience and Market Conference: Joining forces for a cyber-secure and resilient digital single market

Press Release

The central theme of the conference was the expansion of synergies in the field to achieve the shared goal of safeguarding the digital single market and its economy through a robust EU Cybersecurity Regulatory Framework.

Call for Experts: Join the ENISA Ad Hoc Working Group on EU Digital Identity Wallets Cybersecurity Certification

Press Release

The European Union Agency for Cybersecurity (ENISA) launches a call for expression of interest to create an Ad Hoc Working Group on the certification of EU Digital Identity Wallets.

EU Digital Identity Wallet: A leap towards secure and trusted electronic identification through certification

Press Release

The European Union Agency for Cybersecurity (ENISA) and the European Commission announce the request to ENISA to support the certification of the EU Digital Identity Wallets (EUDI).

Share your feedback: ENISA public consultation bolsters EU5G Cybersecurity Certification

News Item

ENISA has released and is seeking feedback on the embedded Universal Integrated Circuit Card (eUICC) specifications to support certification of 5G, which is carried out under the European Common Criteria scheme (EUCC).

BROWSE ALL NEWS