ETSI releases first global standard for securing smartphones

News Wireless Global 25 NOV 2021
ETSI releases first global standard for securing smartphones

ETSI has released a new standard called Consumer Mobile Device Protection Profile, ETSI TS 103 732. The specification identifies key security and privacy risks for user data and provides appropriate protection. 

The new ETSI standard specifies security requirements for consumer mobile devices. It ensures the protection of key user data such as photos, videos, user location, emails, SMS, calls, passwords for web services, and fitness related data. 

The specification has a broad coverage of security features including cryptographic support, user data protection, identification and authentication, security management, privacy protection, resistance to physical attack, secure boot, and trusted communication channels. 

In addition, ETSI TS 103 732 defines the security assurance requirements based on Common Criteria and it is therefore also suitable for certification initiatives such as the European Cybersecurity Act. The standard was developed to support consumer mobile devices manufacturers to achieve security certification. It also offers a common methodology for evaluators to assess the security of consumer mobile devices. 

ETSI TS 103 732 is the first of a series of ETSI EN 303 645 derivative standards on consumer cyber-security that ETSI will deliver within the next twelve to eighteen months. 

Categories:

Mobile

Companies:

ETSI

Regions:

Global

Tags:

Security, Handsets, Standardisation

Related Articles

FRANCE 12 JAN 2024

French cyber security agency certifies ETSI's standard for securing smartphones

The European Telecommunications Standards Institute (ETSI), a not-for-profit alliance with over 900 members, announced that its standard for securing smartphones has been certified by the France's cyber security authority ANSSI. Commenting on the achievement, the organization described it as the first certification by a national agency for a comprehensive suite of specifications used to assess the security of smartphones.

GLOBAL 18 OKT 2023

U-blox obtains EU cybersecurity certification for LTE IoT modules

U-blox announced a new security milestone for its LTE cellular IoT modules. Its Lata-R6 LTE Cat 1 and Cat 4 module series have become the first in the market to be successfully tested to comply with the RED article 3.3 d/e/f requirements using ETSI standard EN 303 645.

GLOBAL 28 FEB 2023

Google doet mee aan GSMA-initiatief om veiligheidscertificaat voor smartphones te ontwikkelen

Google doet mee aan de onlangs gelanceerde GSMA-werkgroep om het eerste programma voor beveiligingscertificering voor smartphones te ontwikkelen. Het bedrijf deed de aankondiging op zijn beveiligingsblog voor het Mobile World Congress van 2023 in Barcelona. Het GSMA-beveiligingscertificeringsprogramma zal gebruikmaken van de Consumer Mobile Device Protection Profile (CMD PP)-specificatie die in 2021 door het European Telecommunications Standards Institute (ETSI) wordt vrijgegeven, aldus Google.

GLOBAL 27 FEB 2023

Google takes part in GSMA push to develop smartphone security certification scheme

Google will participate in the recently-launched GSMA working party to develop the first smartphone security certification programme. The company made the announcement on its security blog to coincide with the 2023 Mobile World Congress in Barcelona.

NETHERLANDS 11 JUL 2022

Netherlands telecom agency, security service cooperate on cybersecurity certification

The Netherlands' Telecom Agency (AT) and the national security service AIVD announced they will work more closely together on the certification of IT products and services for the government, critical sectors and businesses. The AT is already responsible for the the National Cybersecurity Certification Authority, which certifies safe IT products and services. 

GLOBAL 7 APR 2022

ETSI releases cyber security specification for home gateways

ETSI has released a new cyber security specification for Home Gateways, called ETSI TS 103 848 and developed by the Cyber Technical Committee. The specifications were adapted from the provisions of the standard to secure consumer IoT devices, EN 303 645, with the aim of securing physical devices between the in-home network and the public network, as well as the traffic between these networks.

EUROPE 22 MRT 2022

Location standard for emergency mobile calls becomes mandatory in Europe

The European Telecommunication Standards Institute (ETSI) confirmed that the Advanced Mobile Location (AML) standard for emergency communications became mandatory for all smartphones sold in Europe on 17 March. AML was standardised by the ETSI technical committee on emergency communications (EMTEL) back in December 2019 and is already helping emergency services dispatch required resources efficiently in Europe and worldwide, said the agency.

GLOBAL 17 FEB 2022

ETSI issues guide on setting up security vulnerability disclosure process

The European Telecommunications Standards Institute has developed a guide for companies and organisations to set up a system for reporting security vulnerabilities discovered in their products. The ETSI said the report can help groups of all sizes improve the process of disclosing vulnerabilities, leading to quicker fixes for security problems and avoiding damaging public disclosures.

GLOBAL 13 JAN 2022

ETSI unveils second release of Experiential Networked Intelligence specifications

ETSI has completed Release 2 of its Experiential Networked Intelligence (ENI) specifications with the ETSI GS ENI 005 system architecture. The new release and associated documents are meant to provide better insight into network operations, allowing more effective closed-loop decision and enabling a better lifecycle management. Through its use, operators will be able to leverage acquired data and apply artificial intelligence (AI) algorithms. They will in this way be able to respond more quickly to changing

GLOBAL 25 NOV 2021

ETSI lanceert eerste wereldwijde standaard voor het beveiligen van consumentensmartphones

ETSI heeft een nieuwe standaard uitgebracht, die beveiligingsvereisten voor mobiele consumentenapparaten specificeert. De specificatie krijgt de naam Consumer Mobile Device Protection Profile, ETSI TS 103 732. De specificatie identificeert de belangrijkste beveiligings- en privacyrisico's voor gebruikersgegevens en biedt passende bescherming.

GLOBAL 9 NOV 2021

ETSI starts work on NFV Release 5, targets completion in mid-2022

The European Telecommunications Standards Institute announced the start of work by its Industry Specification Group on the next standards for network functions virtualization. Technical work on release 5 started following an ISG meeting in September, and the group aims to complete the release by summer 2022. 

EUROPE 1 NOV 2021

EU approves new security, data protection requirements for wireless devices

The European Commission has approved new security requirements for wireless devices sold in the European Union. Assuming no objections from the European Parliament or Council, the update to the Radio Equipment Directive will come into force in two months, and manufacturers will then have 30 months to adapt their products. 

GLOBAL 27 OKT 2021

Cyber-criminality surges motivated by monetisation using ransomware, cryptojacking - Enisa

The EU cybersecurity agency Enisa has released its ninth threat landscape report, highlighting a surge in cyber-criminality motivated by monetisation using ransomware or cryptojacking. The annual report on the state of the cyber-security threat landscape covers the period April 2020 to July 2021. 

GLOBAL 12 OKT 2021

ETSI releases test specification to comply with consumer IoT security standard

ETSI has released the test specification for the existing ETSI EN 303 645, the consumer IoT security standard. This test specification, ETSI TS 103 701, describes how a conformity assessment is performed in a structured and comprehensive way. This will allow supplier organisations such as manufacturers, vendors or distributers to assess the compliance of their devices against ETSI EN 303 645 in self-assessments or via testing laboratories. User organisations can also apply the test specification for in-hous

EUROPE 4 OKT 2021

European Cybersecurity Month awareness campaign begins

The European Union Agency for Cybersecurity (ENISA) and over 300 partners in the Member States have launched the ninth edition of the European Cybersecurity Month for the entire month of October under the motto "Think Before U Click". Partners include local authorities, governments, universities, think tanks, NGOs and professional associations. 

Just In

19 DEC 16:42

SLT-Mobitel launches 5G network in Sri Lanka

19 DEC 16:19

Dialog Axiata launches 5G network, connects 1.5 million subscribers

19 DEC 15:56

UK govt to ban AI-enabled nudification apps to protect women, girls

19 DEC 15:42

3 UK launches last-minute Christmas sale

Commentary

13:56

Video market set for slower growth ahead

11:38

Netflix buys Warner Bros to deepen content catalogue

11:11

KPN's mixed performance in Q3 raises questions for strategy day

15:26

Stock markets breaking records but what happened to Odido's IPO plans?

Background

01:04

The week in telecom: Wi-Fi bolt-ons take off to boost broadband growth, video market works on consolidation

01:39

The week in telecom: Netflix wins bidding for Warner Bros, Apple poaches new execs, Samsung debuts trifold

13:51

Proximus vs. Telenet: Proximus performs better in Q3 while Telenet uses up cash

14:16

Proximus Domestic still struggling with low margins

Complete profile

Before downloading the whitepaper, we would like to ask you to complete your profile with company and position. After confirming you will receive the white paper.