EN 17640:2022

Fixed-time cybersecurity evaluation methodology for ICT products

Publication date:   Mar 16, 2023

General information

60.60 Standard published   Oct 19, 2022

CEN/CENELEC

CEN/CLC/JTC 13 Cybersecurity and Data Protection

European Norm

35.030   IT Security

Buying

  Published

PDF - €68.52

  English  



Buy

Scope

This document describes a cybersecurity evaluation methodology that can be implemented using pre-defined time and workload resources, for ICT products. It is intended to be applicable for all three assurance levels defined in the CSA (i.e. basic, substantial and high).
The methodology comprises different evaluation blocks including assessment activities that comply with the evaluation requirements of the CSA for the mentioned three assurance levels. Where appropriate, it can be applied both to third-party evaluation and self-assessment.

Life cycle

NOW

PUBLISHED
EN 17640:2022
60.60 Standard published
Oct 19, 2022

CORRIGENDA / AMENDMENTS

IN_DEVELOPMENT
EN 17640:2022/prA1