CN/中国 
US/USA 
KR/Korea 
DE/Germany 
ES/Spain
VN/Việtnam
Cyber security testing: The key to a new era of digital security!
With the accelerated implementation of mandatory cybersecurity regulations in major global economies - such as the European Union, the United States, Canada, and the United Kingdom - testing and certification have become the primary requirement for market access. To build the cornerstone of digital trust, enterprises must use certification as a shield to break through compliance barriers and transform it into a competitive advantage for capturing international markets.
.jpeg)
Interpretation of Global Important Cybersecurity Regulations:
● RED Article 3.3(d)(e)(f):Strengthen the network security of IoT devices
In 2021, the European Union revised the Radio Equipment Directive (RED) to include network security as a core compliance requirement, which follows two core concepts: first, the security preset design concept, that is, risk prevention and control; The second is the concept of hierarchical control, which is to formulate clauses 3.3 (d), (e), and (f) based on equipment risks.
Technical standard: The EN 18031 series of standards is the technical specification and implementation benchmark for the network security requirements of the RED directive, divided into three parts (EN 18031-1/2/3), corresponding to different security levels (network damage prevention/privacy protection/fraud prevention) of Article 3.3 of RED. It was included in the EU's official list of coordinated standards on January 30, 2025.
Mandatory Enforcement: The cybersecurity provisions under RED Article 3.3(d), (e), and (f) will take effect starting August 1, 2025.
● (EU) 2019/882: Improving Accessibility of ICT Products
The European Union enacted the European Accessibility Act (EAA), (EU) 2019/882, in 2019. Its goal is to enhance the accessibility of products and services through unified standards, ensuring they meet the needs of individuals with disabilities.
Technical Standard: EN 301 549 is the core technical standard for implementing the EAA. It specifies accessibility requirements for hardware (e.g., smartphones, self-service terminals), software (e.g., operating systems, applications), and online services (e.g., e-commerce platforms).
Mandatory Enforcement: The EAA will be enforced starting June 28, 2025. For details on exemptions or transitional clauses, consult BACL business experts.
Major Global Cyber Security Regulatory Requirements:
.jpg)
BACL Cybersecurity Testing and Certification Services:
▶ General Standard(CC)
It is ISO/IEC 15408, which is an internationally recognized high-level standard for cybersecurity certification that aims to ensure the security performance of information systems, products and services reaches an internationally recognized level. BACL has more than 10 years of experience as an authorized agency for CC assessment.
▶ IoT Cybersecurity(loT)
● EN 18031/EN 301 549
● ETSI/EN 303 645
● IECEE CB Issue certificate qualification
● PSTI The UK Cybersecurity Act qualification
● NIST The US cyber security assessment qualification
● ISO 27001/27701/GDPR
BACL Cyber security testing process:
