How to get the EN 18031-1:2024 Test Report?

On January 12, 2022, the Official Journal of the European Union published Delegated RegULation 2022/30/EU, which mandates compliance with the requirements of RED Articles 3.3(d), (e), and (f). This regulation requires wireless devices in the EU market to meet network security, personal data privacy, and fraud protection requirements, aiming to ensure higher levels of network security and enhance consumer confidence in such devices. The regulation will be enforced starting from August 1, 2025, giving device manufacturers a 42-month transition period. In 2024, the EU released the en 18031 standard, applicable to RED network security requirements.

Which Products Need to Be Tested According to en 18031-1:2024?

The scope of network security requirements applies to both directly connected wireless devices and indirectly connected wireless devices. Wireless communication methods include, but are not limited to, common technologies such as Wi-Fi, Bluetooth, ZigBee, 4G/5G, LoRa, and others. This means that almost all wireless devices with network connectivity need to comply with network security requirements. Devices such as smartphones, smartwatches, and industrial wireless communication equipment all fall within the regulatory scope.

Interpretation of Key Network Security Requirements

1. Article 3.3(d) Network Security Protection: The design and operation of wireless devices should ensure that they do not damage network infrastructure or its functional integrity. At the same time, unauthorized use of network resources must be strictly restricted to avoid significant degradation or interruption of service quality.

2. Article 3.3(e) Personal Data and Privacy Protection: In this age where data is an asset, the protection of personal data and privacy is crucial. Wireless devices should integrate advanced data encryption and access control mechanisms to provide comprehensive personal data protection solutions for users and subscribers. This ensures that users' personal data and privacy are fully protected and prevents security incidents such as data bREACHes.

3. Article 3.3(f) Financial Fraud Prevention: To ensure the security of users' financial assets, wireless devices must be equipped with robust security features to effectively identify and prevent potential fraudulent activities. Whether in mobile payments or other financial transactions, the devices will serve as an important line of defense against fraud.

Analysis of RED: 2014/53/EU Harmonized Standards

1. EN18031-1:2024 Standard corresponds to Article 3.3(d) network security requirements and applies to wireless devices connected to the internet. It focuses on the fundamental network security requirements of wireless devices, including a comprehensive assessment of security assets and risks, network assets and risks, and key evaluation items such as resilience mechanisms, network monitoring mechanisms, and authentication mechanisms, providing the basic protection for the network security of devices.

2. EN18031-2:2024 Standard corresponds to Article 3.3(e) network security requirements and applies to wireless devices that handle data privacy, traffic, or location information, including devices for child care, child monitoring, and wearable wireless devices. This standard mainly focuses on data processing security for wireless devices, especially for data privacy and risk assessment of the devices mentioned above, as well as evaluation items such as access control mechanisms, logging mechanisms, deletion mechanisms, and user notification mechanisms to fully protect user data privacy and security.

3. EN18031-3:2024 Standard corresponds to Article 3.3(f) network security requirements and applies to wireless devices that handle virtual currency or financial value transfer. It focuses on the network security of wireless devices connected to the internet that handle virtual currencies or monetary values, especially for the evaluation of security assets and risks, financial assets and risks, event tracking mechanisms, and software trustworthiness for such devices, effectively ensuring the security of devices involved in financial transactions.

JJR Lab Provides EN 18031-1:2024 Testing Services

Below is our testing process:

1. Send the product manual to our lab

2. Obtain a testing quote

3. Sign the contract

4. Make payment and send samples

5. After successful testing, we issue an electronic report for customer confirmation

6. Once confirmed, we issue the paper report.