CEPS Project

Study on the need of Cybersecurity Requirements for ICT Products


The study aims at assisting the Commission in drafting a possible policy intervention to address the current need for cybersecurity for ICT products. Based on the evaluation findings and other sources, the study will identify key problems and objectives and draft classification of relevant ICT products, essential requirements and conformity assessment activities. CEPS’ role is to evaluate the set of policy options (Voluntary Measures; Horizontal Legislation; Sector-Specific Legislation; Mixed Approach) based on the gap analysis of existing EU legislation, the identified categories of ICT products and corresponding risk profiles and cybersecurity requirements.

Carolina Polito

Associate Research Assistant