BRUSSELS – December 11, 2018 – Following the final agreement on the EU Cybersecurity Act Regulation by the EU Institutions, BSA | The Software Alliance, the leading advocate for the global software industry, expresses concern on how the EU certification scheme of ICT products would be initiated and framed within this future legislation.

“Flexibility and adaptability are central needs to effectively tackle an ever-changing cyber threat landscape. When it comes to the cybersecurity certification of ICT products and services, the future framework must rely on existing experience and insights from different stakeholders, including industry. Creating a strong Stakeholder Certification Group, requiring alignment with existing international standards and keeping the certification process completely voluntary are key elements that are unfortunately not fully taken into account by the legislators” said Thomas Boué, Director General, Policy — EMEA.