Business Wire

SESIP Paves the Way for IoT Manufacturers to Meet New European Cybersecurity Rules

12.12.2024 09:00:00 CET | Business Wire | Press release

Share

GlobalPlatform’s SESIP methodology (EN 17927) offers a streamlined, cost-effective security framework for connected devices and components to conform to the EU’s new Cyber Resilience Act

GlobalPlatform is calling for manufacturers of connected devices and components to adopt its “Security Evaluation Standard for IoT Platforms” (SESIP) methodology to demonstrate conformance with the European Union’s new Cyber Resilience Act (CRA), which comes into force this month. The CRA aims to strengthen and harmonize cybersecurity across the EU by creating a new legal framework for all products that connect to the internet.

This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20241211681976/en/

null

(Graphic: Business Wire)

The enactment of the CRA puts into place mandatory cybersecurity rules that span the entire lifecycle of a digital product sold in the EU. The CRA was published in the Official Journal of the European Union last month and becomes law on December 11, 2024. Product manufacturers will have 36 months to fully comply with the legislation. The Act will eventually require all relevant products to comply with the rules in order to obtain the CE marking, a mandatory market requirement for issuing products in Europe.

As an internationally recognized standard for IoT security evaluation, SESIP is key to meeting the requirements mandated by the CRA. It provides manufacturers with a proven methodology for conducting security evaluations of software and hardware components across their products and supply chains. SESIP is recognized as a standard by CENELEC, the European Standardization Organization, as EN 17927. It also aligns with many other legislation and vertical certification schemes around the world, including the Cyber Trust Mark in the US.

The methodology is being used to certify components, platforms, and modules from a range of companies and is supported by a growing ecosystem of security providers, certification bodies (CBs), security laboratories, and other stakeholders. GlobalPlatform continues to support the growth and governance of the SESIP ecosystem. SGS Brightsight has recently been accredited as a SESIP CB following approval from the Spanish national accreditation body (ENAC), becoming the second SESIP CB after TrustCB.

“Industry support for SESIP is building at this critical juncture for IoT manufacturers operating in Europe,” said Gil Bernabeu, CTO of GlobalPlatform. “The Cyber Resilience Act is vital to protecting consumers and businesses by embedding security features into the heart of the connected devices we use every day, providing a cybersecurity framework that spans the design, development, and maintenance of digital products.

“However, this landmark legislation presents a range of compliance challenges for manufacturers of connected devices and the components used in these products,” continued Bernabeu. “SESIP simplifies conformity with the new regulations by providing a unified framework for comprehensive security evaluation, reducing cost, risk, and time to market. We look forward to expanding the SESIP ecosystem to help multiple industry sectors meet the requirements of the new European regulations. It will also enable international manufacturers to reuse their security evaluation investments to demonstrate conformance to non-European regulations.”

The SESIP methodology is already mapped to other standards and regulations such as ETSI, (EN 303645 / TS 103732), ISO/IEC (62443-4-2), RED (EN 18031), UNECE WP.29 (ISO/SAE 21434) and NIST (NIST 8259 / NIST 8425). It is also being used by schemes such as PSA Certified, and standardization bodies including the Car Connectivity Consortium and the Wireless Power Consortium. In addition to Europe, SESIP is being adopted around the world in key markets such as China, where an agreement was recently reached between GlobalPlatform and China’s National Financial Technology Certification Center (NFTC).

GlobalPlatform has a number of initiatives in place to help accelerate SESIP adoption. A training program has been launched and available for any interested party. It has also launched the SESIP Adopters community to give non-members the ability to keep up to date with relevant technical documents and showcase certified SESIP products.

For more information on SESIP please visit: https://globalplatform.org/sesip/

About GlobalPlatform

GlobalPlatform is a technical standards organization that enables the efficient launch and management of innovative, secure-by-design digital services and devices, which deliver end-to-end security, privacy, simplicity, and convenience to users. It achieves this by providing standardized technologies and certifications that empower technology and service providers to develop, certify, deploy, and manage digital services and devices in line with their business, security, regulatory and data protection needs. GlobalPlatform technologies are used in billions of smart cards, smartphones, wearables and other connected and IoT devices.

GlobalPlatform standardized technologies and certifications are developed through effective industry-driven collaboration, led by multiple diverse member companies working in partnership with industry and regulatory bodies and other interested parties from around the world.

globalplatform.org | Twitter / X | LinkedIn | YouTube | GitHub | WeChat

View source version on businesswire.com: https://www.businesswire.com/news/home/20241211681976/en/

null

Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

HTEC and Embotech Partner to Scale Deployment of Autonomous Driving Solutions for Industrial Logistics7.7.2026 12:39:00 CEST | Press release

HTEC, a global technology and AI engineering company headquartered in Silicon Valley, and Embotech, a global leader in safety-certified Level 4 autonomous driving solutions for industrial logistics, today announced a strategic partnership to scale deployment of Embotech's autonomous driving solutions across vehicle platforms, customer programmes and industrial sites. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260707870943/en/ HTEC, a global technology and AI engineering company headquartered in Silicon Valley, and Embotech, a global leader in safety-certified Level 4 autonomous driving solutions for industrial logistics, today announced a strategic partnership to scale deployment of Embotech's autonomous driving solutions across vehicle platforms, customer programmes and industrial sites. The partnership comes as Embotech’s proven autonomous driving solutions are being adopted across a growing number of vehicle platforms

Compass Pathways Announces Six-Month Data from Second Phase 3 Trial Confirming Rapid and Durable Profile7.7.2026 12:30:00 CEST | Press release

New 6-month data supports COMP360’s potential to establish a new standard of care in TRDData from positive COMP006 Phase 3 trial demonstrates durable benefit through at least 6 months further validating COMP360’s differentiated profile in highly chronic TRDAcross two highly statistically significant positive Phase 3 trials, COMP360 is the first classic psychedelic¹ to consistently demonstrate rapid onset, significant durability and reproducibility of effect in TRD, one of psychiatry’s most difficult conditions in which to demonstrate efficacyCOMP360 continues to demonstrate a generally well-tolerated and safe profile with no new safety findingsRolling NDA submission and initial review underway and final submission expected to be completed in Q4Commercial launch-readiness on track for end of 2026, with launch expected in first half of 2027Compass continues to progress late-stage PTSD program, where millions of patients are urgently in need of new, effective optionsCompass to host a webi

Private Department of Sheikh Mohammed bin Khalid Al Nahyan Invests in MidOcean Energy and Forms Strategic Partnership with EIG7.7.2026 12:16:00 CEST | Press release

The Private Department of Sheikh Mohammed bin Khalid Al Nahyan (the “Private Department”) has today committed to invest $1.13bn in MidOcean Energy (“MidOcean” or the “Company”), a liquefied natural gas (LNG) company formed and managed by EIG. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260707259928/en/ In parallel with the investment, the Private Department and EIG have established a strategic partnership focused on capital aggregation, investment origination, and the development of institutional investment opportunities across the United Arab Emirates and selected regional markets. The Investment in MidOcean represents the Private Department’s entry into the global LNG sector and marks the launch of a broader strategic relationship with EIG, a global energy and infrastructure investment firm. Through this partnership, the parties intend to collaborate on future investment opportunities across the energy and related infra

Infobip Research Reveals Businesses Scaling AI-Powered Defenses to Counter Surge in Automated Fraud7.7.2026 11:55:00 CEST | Press release

Fraudsters are leveraging AI to automate and personalize attacks, but enterprises are fighting back New research from global AI-first cloud communications platform Infobip reveals a growing surge in AI-powered fraud and enterprise defenses. Analyzing billions of interactions globally, Infobip’s 2026 Fraud & Security Report highlights a year of dramatic contrasts. There have been record volumes of blocked fraudulent traffic alongside the rapid scaling of intelligent, AI-powered defenses. The report reveals that while fraudsters are using AI to scale and personalize harmful messaging, leading to a 77% increase in detected threats, businesses are responding in kind. Adoption of AI-powered fraud detection grew by 71% year-on-year, while pattern-based detection increased by 105%, underscoring a shift toward adaptive security. The report demonstrates the impact of AI-first security. Leading UK-based clothing brand NEXT is leveraging Infobip Signals, an AI and machine learning-powered solutio

Santander Financial Crime Transformation Leader Joins ThetaRay to Drive Enterprise AI Adoption7.7.2026 10:00:00 CEST | Press release

As Chief Strategic Customers Officer, former Group VP Luis Pinedo will scale ThetaRay’s AI compliance infrastructure across global banks, payment providers and financial institutions. ThetaRay, a leader in AI infrastructure for financial crime compliance, today announced the appointment of Luis Pinedo as Chief Strategic Customers Officer. Previously Pinedo was Group VP of Compliance at Santander Bank, where during his 16-year tenure, he led global Financial Crime Compliance (FCC) transformation initiatives across operating models, processes, and technology platforms. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260707359150/en/ Luis Pinedo joins ThetaRay as Chief Strategic Customers Officer. In his new role, Pinedo will bring key perspectives from tier-one banking operational challenges to ThetaRay’s product development and design. He will lead strategic customer engagement as well as product strategy across ThetaRay’s ent

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom
World GlobeA line styled icon from Orion Icon Library.HiddenA line styled icon from Orion Icon Library.Eye