EN 18031 series standard testing and evaluation services

Starting from August 1, 2025, the EU Cybersecurity Standard (EN 18031-1/2/3) will soon be enforced. The implementation of this standard series will have a profound impact on the global wireless equipment industry, especially on related products planned for export to the EU market.

1、 Widely involved scope

The EN 18031 standard series covers a wide range, covering almost all radio equipment connected to the Internet.

1. EN 18031-1: Electronic devices directly or indirectly connected to the internet

For example: projectors, Bluetooth earphones, Wi Fi routers, mobile phones, tablets, etc.

2. EN 18031-2: Devices for collecting and recording privacy data

For example: wearable devices, child monitoring devices, child care radios, toy radios, smart sensors, etc.

3. EN 18031-3: Devices related to payment scenarios and virtual currencies

Such as POS machines, hardware wallets ATM、 Virtual currency terminals, etc

Exemption scope:

1. Medical devices and equipment not covered by MDR regulations.

2. Not applicable to Regulation (EU) 2018/1139 and Regulation (EU) 2019/2144.

3. Equipment related to aviation or road traffic within the scope of Directive (EU) 2019/520 is not applicable.

From smart speakers and smart door locks in smart home scenarios, to wireless sensors and remote monitoring devices in the industrial Internet field, to mobile payment terminals and digital currency trading platforms in the financial technology field, all fall within the standard control coverage of RED DA instructions. This extensive and comprehensive regulatory coverage model systematically ensures the integrity and effectiveness of the network security protection system, effectively eliminating potential security regulatory blind spots.

2、 Scientific evaluation system

The standard series has established a scientific evaluation system that combines general evaluation and differentiated evaluation, comprehensively and deeply evaluating various key assets such as security assets, network assets, privacy assets, and financial assets. Through diversified evaluation methods such as "conceptual assessment," "functional integrity assessment," and "functional adequacy assessment," we comprehensively verify whether the equipment meets strict network security requirements from design concepts, functional implementation to actual performance.

The following are the common evaluation items in the EN18031 standard series:

Security mechanism project for general evaluation of serial numbers

ACM Access Control Mechanism

2 AUM authentication mechanism

3 SUM security update mechanism

4 SSM secure storage mechanism

5 SCM Security Communication Mechanism

6 CCK Trusted Encryption Key

7 GEC Equipment General Capability

8 CRY Cryptography

3、 What key services do we provide for EN 18031?

We provide gap analysis and cybersecurity compliance services to our clients, helping them meet the standards of EN 18031

GAP analysis

Analyze product specifications that comply with EN 18031 standard.

Analyze evidence that meets the requirements of EN 18031.

Determine the applicable network security requirements according to EN 18031.

Identify gaps in compliance.