Skip to main content

Test Page - Request 26/04/2024

Developing Certification Schemes

The EU Agency for cybersecurity (ENISA) develops draft certification schemes, upon request of the European Commission or the EU Member States. To do so, the Agency is supported by a group of experts ('Ad-Hoc Working Group') and collaborates closely with the European Commission, EU countries, and relevant stakeholders.

Involving the ecosystem

In order to build Cybersecurity Certification Schemes, ENISA relies on the ecosystem such as the Ad Hoc Working Groups (AHWGs) but also on expertise, comments and consultative views provided by the ecosystem. The Cybersecurity Act defined the main entities to support ENISA in its task.

To be effective, a draft scheme has to become a piece of EU legislation called an 'Implementing Act' [Link].

This Act has to be endorsed by all Member States. Once this Act is adopted, Member States have time to prepare the operation of the scheme before issuing certificates.

Process of Developing a Scheme
Process of Developing a Scheme

 

CSA

ImageCSA
CSA