On April 15, 2020, in line with its mandate to support and promote the European Union’s (“EU”) policy on cybersecurity certifications, the EU Agency for Cybersecurity (“ENISA”) released the study “Advancing Software Security in the EU – The Role of the EU Cybersecurity Certification Framework” (the “Study”).1 In the Study, ENISA stresses that with the increasing dependency of everyday products, services and processes on software, more attention must be paid to security in both software development and maintenance. The Study also says that this security need is not being filled by existing standards and certification schemes and that EU cybersecurity certifications schemes could play a role in this regard.

Continue reading.