The IASME IoT Cyber scheme certifies internet connected devices against the new UK legislation at the Baseline level. The scheme also allows manufacturers to take the next step to certify against the leading global technical standard in IoT security, ETSI EN 303 645 standard at the Assurance level.
Compliant products receive a certification badge which can be displayed on product packaging and marketing to allow purchasers to verify the security of the device.
- The IoT Cyber Baseline scheme is aligned with The Product Security and Telecommunications Infrastructure Act 2022 and covers the top three requirements of the ETSI EN 303 645 standard.
- The IoT Cyber Assurance scheme is aligned with UK law and covers all of the provisions in the ETSI standard. It is also mapped to the IoTSF Security Compliance Framework. Certification guards against the exploitation of common IoT cyber security vulnerabilities such as weak passwords, legacy software and insecure communications.
Two levels of assurance
The scheme is available as Level 1 which consists of a verified-assessment, reviewed by an independent expert.
For greater assurance, the scheme is also available as Level 2 which includes an audit via third-party testing and independent certification.
IASME is working in partnership with the official police security initiative, Secured By Design. Secured by Design (SBD) operates an accreditation scheme on behalf of the UK Police Service to show that products or services have met recognised security standards.
Secure by Design recently launched the Secure Connected Device accreditation for manufacturers of innovative connected security products such as alarm systems and video products. They have picked the IASME scheme as one of the ways for manufacturers to confirm their products have the highest level of cyber security.