Consumer Products | Testing and Certification
Have your smart consumer products compliant and certified against international regulations (RED 3.3, CRA) or standards like ETSI EN 303 645 with Bureau Veritas Cybersecurity's IoT cybersecurity services.
> IoT | Testing and Certification > Consumer Products
Cybersecurity for Smart Consumer Products
As the Internet of Things (IoT) - think devices like your smart fridge or Alexa - keeps growing, it's bringing new chances to do cool things, but also new problems.
In this changing world, it's really important to think about security threats right from the start when designing these devices. With so many "smart" devices that connect easily and make our lives better, it's critical to keep these IoT devices safe. They are like doors between the big wide Internet and our personal networks at home, which makes them a tempting target for bad guys who want to sneak in and steal valuable stuff.
At Bureau Veritas Cybersecurity, we understand how important cybersecurity is in the IoT world. We keep up with the latest news and changes in standards, rules, and certifications. Our team of experts believes that we can make IoT security better by following widely accepted standards and goals.
To help IoT makers protect their products and networks, we have a complete list of recommended IoT security tests and certification services. When you work with Bureau Veritas Cybersecurity, you get the best solutions that not only follow the rules but also provide strong protection against new threats.
Together, we can build a secure and strong IoT system that makes users feel safe and sets new records for cybersecurity in our fast-moving digital age. Come join us in this mission, and let's make the future of IoT secure together.
Also read: From mattresses to artificial hearts: why IoT security is crucial
Please check out the services below to get an overview of the formal security certifications that Bureau Veritas Cybersecurity can offer for your IoT product.
Certification of Consumer Products
Certification allows to put official recognition on the results of an assessment for your product. Bureau Veritas Cybersecurity can support you with certification services for your IoT product based on the following schemes. Note: the certification services mentioned are offered by another entity in the Bureau Veritas Group, leading to a one-stop-shop solution for our customers.
Certification service |
|
ETSI EN 303 645 |
Bureau Veritas Cybersecurity is a recognized partner for offering IoT certification in line with ETSI EN 303 645. ETSI EN 303 645 certification will be the basis for upcoming EU level certification for consumer devices |
RED 3.3 |
RED 3.3 (Radio Equipment Directive) security compliance is mandatory since August 2025. Bureau Veritas Cybersecurity is your partner for the necessary testing, evaluation and certification parts related to RED 3.3. |
Cyber Resilience Act (CRA) |
The CRA compliance will start being mandatory in 2026, covering all internet connected products. Start your compliance and certification journey soon with Bureau Veritas Cybersecurity. |
Payment devices testing and certification |
Founded in 2001 and headquartered in the Gyeonggi-do province, South Korea, Bureau Veritas ICTK provides smart payment security testing and certification against EMVCo (a global standard and facilitator for interoperability and acceptance of secure payment transactions) and Visa requirements. The company serves international high-tech manufacturers, brands and financial service leaders. Learn more here. |
BSI Security Mark |
The German Federal Office for Information Security (BSI) offers an IT security mark for products in the Internet of Things (IoT). With this confirmation, manufacturers can advertise the cybersecurity of their products. The requirements according to ETSI EN 303 645 and a conformity test according to ETSI TS 103 701 serve as a basis |
CTIA cybersecurity certification |
The Cellular Telecommunications Industry Association’s (CTIA) IoT cyber security certification is part of the CTIA Authorised Test Laboratory program, which helps manufacturers to design their devices for security from inception. Leading wireless operators, technology companies, security experts and test labs collaborated to develop the program’s test requirements and plans. The program builds upon IoT security recommendations from the National Telecommunications and Information Administration (NTIA) and the National Institute of Standards and Technology (NIST). |
IoXT security certification |
Bureau Veritas is authorized by the ioXt Alliance as one of the exclusive labs to offer third-party testing to verify the compliance of IoT devices based on the IoXt certification scheme. |
US Trust Mark |
The Cyber Trust Mark is a new voluntary labeling program that is obtained by demonstrating the cybersecurity of your IoT products. By earning this seal of approval, you can demonstrate to your customers that your devices meet rigorous security standards and can be trusted to protect their personal data and connected home. Bureau Veritas Cybersecurity can help you along the journey. |
Common Criteria and EU CC |
Common Criteria is an internationally recognized security assessment and certification methodology. Common Criteria certificates are mutually recognized across continents, including most of EU, USA, Asia, Australia, UK, etc. Bureau Veritas Cybersecurity can support with formal Common Criteria evaluations, including the new EU CC scheme. |
BSPA |
The BSPA scheme provides an effective, time bound (25 person days) way of assessing and certifying the security of your products. The scheme operates as a light version of Common Criteria. Moreover, the BSPA scheme grants the necessary recognition to allow a manufacturer to collaborate with Dutch governmental institutions for placing its products. |
Testing of IoT products
If you are looking only for a testing service for your IoT product, Bureau Veritas Cybersecurity is your partner! We offer services such as:
- Training in product cybersecurity basics
- Time boxed penetration testing for products
- Gap analysis in line with RED, CRA or ETSI 303 645
- Support and consultancy for addressing the security gaps in your products
- Hand-on training or CTF services for raising the security awareness
Our team of security experts has a vast experience with the domain of IoT security, demonstrated through our active presence in the field of regulations and security events.
Refer also to our proprietary IoT Hacker Playhouse.
How we support you
Bureau Veritas Cybersecurity helps large and medium sized organizations all over the world raise their cyber resilience. We know the importance of cybersecurity for smart consumer products. Our testing and certification services raise the cyber resilience of IoT consumer products.
Bureau Veritas Cybersecurity is part of the Bureau Veritas Group, a listed company and world leader in testing, inspection and certification services.
Download our practical guide for RED 3.3 cybersecurity compliance
Obtain more insights into the most common questions related to RED 3.3 compliance.
Watch our Expert Q&A on RED 3.3
From August 1, 2025, all radio-enabled products sold in the European market must comply with the cybersecurity requirements of Article 3.3 of the Radio Equipment Directive (RED). Yet many manufacturers still have critical questions about how to prepare.
- Is self-certification enough, or do I need a Notified Body?
- Is my product in scope?
- How much time should we budget for certification?
Downloads
Articles
More information about Testing & Certification of Consumer Products
Please fill out the form below and we will contact you within one business day.
Why choose Bureau Veritas Cybersecurity
Bureau Veritas Cybersecurity is your expert partner in cybersecurity. We help organizations identify risks, strengthen defenses and comply with cybersecurity standards and regulations. Our services cover people, processes and technology, ranging from awareness training and social engineering to security advice, compliance and penetration testing.
We operate across IT, OT and IoT environments, supporting both digital systems and connected products. With over 300 cybersecurity professionals worldwide, we combine deep technical expertise with a global presence. Bureau Veritas Cybersecurity is part of the Bureau Veritas Group, a global leader in testing, inspection and certification.