What we test
By certifying against the IASME IoT Cyber Schemes, your organisation is showing firstly,
that your device is compliant with UK and European Law and secondly, that you are taking
appropriate measures to mitigate potential cyber security risks to enhance the protection of your customer data.
IASME IoT Cyber Assurance Scheme:
- Certifies against all 13 ETSI EN 303 654 standards,
- Protects against common vulnerabilities such as weak passwords, legacy software, and insecure communications.
It is worth noting that IoT Assurance Level 2 has been identified by Secured by Design, which is a Police Crime Prevention Initiative, as one of the ways that manufacturers can ensure their products have the highest level of cyber security.
If you want to know more about what your organisation needs, feel free to contact us here
at Secarma on 0161 513 0960 and speak to our Business Development Team who will be happy to support your security needs.
Certification under the IASME IoT scheme lasts for 12 months and there are two IASME Internet of Things Schemes that you as an organisation can certify against – IoT Cyber Baseline and IoT Cyber Assurance.
Within each scheme, there are two levels: level 1 and level 2.
Level 1 consists of a self-assessment which is completed by your organisation as
the applicant, and is then reviewed by one of our qualified assessors here at Secarma as
a certification body,
Level 2 includes a technical audit of the device by an appointed assessor, including
an interview and full review of supporting documentation.
Please Note: Level 1 is a mandatory prerequisite prior to applying for the level 2 certification.
IASME IoT Cyber Baseline Scheme:
- Certifies against the top 3 ETSI EN 303 654 standards,
- Can be used by manufacturers to improve the security of their internet connected
The top 3 standards of ETSI EN 303 654 are:
- Ensure no default passwords are used,
- Implement a vulnerability disclosure policy,
- Ensure software is supported and maintained with security updates when available