Skip to main content
Logo
  • Implementing regulation

Accreditation of ITSEFs for EUCC

This version has been adopted with the EUCC amendment of Dec 2024 and is applicable for accreditations that are newly issued or reviewed after 8 July 2025.

Details

Publication date
9 January 2025
Author
European Union Agency for Cybersecurity
Type of Document
  • State-of-the-art Documents
Certification Scheme
Certification Stakeholder
  • CAB
ICT Solution
  • Hardware, Software and Components

Description

This state-of-the-art document as defined under Article 2 point 14 of Regulation (EU) 2024/482 is a legal supporting document under Implementing Regulation (EU) 2024/482 on establishing the Common Criteria-based cybersecurity certification scheme (EUCC). It provides requirements related to the accreditation of ITSEFs, as defined in the scheme, that shall establish they are technically competent for their related tasks according to the Common Criteria in conjunction with the Common Evaluation Methodology. 

This technical competence shall be assessed through the accreditation of the ITSEFs by a National Accreditation Body (NAB) as per ISO/IEC 17025, the standard selected for the accreditation of ITSEFs by the EUCC scheme. 

As ISO/IEC 17025 applies to a very general and wide range of testing activities, this document provides necessary interpretations of the standard and of EUCC specific requirements for ITSEFs whose conformity is to be assessed during their accreditation. 

This document shall be used by National Accreditation Bodies to support their compliance assessments.

EUCC State-of-the-Art

Files

  • 9 JANUARY 2025
EUCC SotA ITSEFs accreditation v.1.6c
English
(519.11 KB - PDF)
Download