EUCC Certification with CCLab

CCLab supports your EUCC certification journey with proven expertise and efficient processes.

RED Cybersecurity
Compliance Checklist

Download this practical compliancechecklist to audit your product portfolio against the mandatory REDCybersecurity requirements, score your current compliance status, and ensureongoing alignment with active EU market surveillance.

download now

book a free consult

CCguide Training Course

Subscribe to CCGuide! Learn how to write Developer Docs based on EUCC Common Criteria.

Let’s see the training course

book a free consult

Start your preparation for CRA

The CRA introduces mandatory, lifecycle-based cybersecurity requirements for all products with digital elements. We help you navigate this complexity with clear processes, hands-on support, and compliance-ready evaluation expertise.

explore our services

book a free consult

Companies who chose us

About CCLAB

CCLab Ltd. was founded in 2013 as an agile, ISO 17025 accredited cybersecurity laboratory primarily to work in Common Criteria evaluations and consultations.It has been accredited by OCSI, Certification Body of the Italian Scheme since 2015, by TrustCB, the Dutch CB since 2025, and by IECEE CB Scheme from 2024.
‍
CCLab has conducted many successful Common Criteria evaluation and consultation projects, and the number keeps increasing in size and quality continuously each year.
‍
In 2023 CClab has joined the QIMA group, a global Testing, Inspection and Certification player, operating in more than 100 countries from 60 offices and labs.

200+

successful projects

accreditations

months to finish an EAL 4+ evaluation

cybersecurity testing laboratories

140+

satisfied clients

Our Cybersecurity solutions

Navigate the complex landscape of cybersecurity certifications
with expert guidance

Common Criteria Evaluation

ISO 15408 Common Criteria Compliance and Certification up to EAL4+ or EAL5.

Common Criteria Consultancy

Professional support to prepare for a successful Common Criteria evaluation saves you cost and effort.

Consumer IoT (ETSI EN 303 645) Cybersecurity

Comply with ETSI EN 303 645 standards, providing guidelines and expertise for the security of consumer Internet of Things (IoT) devices.

Smart Metering Cybersecurity

Data security solutions for smart metering system components with independent verification by out certified laboratory.

Radio Equipment Directive Cybersecurity Compliance

Learn more about the Radio Equipment Directive (RED) specifying cybersecurity requirements for radio equipment sold within the EU.

UK PSTI compliance

How to get your connected device compliant with the upcoming cybersecurity regulation in the UK, the Product Security and Telecommunications Infrastructure (PSTI) Act.

Industrial Control System Security

Cybersecurity evaluation and certification of industrial automation and control system based on ISA/IEC 62443-4-1 and 62443-4-2 standards.

Cybersecurity Certification

Get your IoT, IIoT device certified after successful evaluation and testing based on ETSI 3030 645 or IEC 62443-4-1, 62443-4-2.

Learn everything you need to know about IEC 62443 certification for Industrial Automation and Control Systems (IACS). Get the complete 2026 roadmap, EU deadlines, certification process and practical study in one document.

IEC 62443 Industrial Control System Security Study 2026

download

Learn everything you need to know to quickly assess and achieve full IEC 62443 compliance for your industrial automation and control systems (IACS). Save time, reduce risks and avoid costly rework.

IEC 62443 Compliance Checklist

download

Download this practical compliance checklist to audit your product portfolio against the mandatory RED Cybersecurity requirements, score your current compliance status, and ensure ongoing alignment with active EU market surveillance.

RED Cybersecurity Compliance Checklist

download

Get an exclusive look inside the CRA Study 2026, our comprehensive guide to the new EU cybersecurity landscape.

CRA Study 2026

download

Learn everything you need to know for a successful Common Criteria certification project. Save costs and effort with your checklist.

Guide and Checklist for Common Criteria Evaluations - updated with EUCC Scheme

download

This downloadable infographics introduces the Common Criteria Evaluation process to you. Explore now for free.

Common Criteria Evaluation Process infographics

download

The EU Cyber Resilience Act (CRA) introduces a unified cybersecurity framework for products with digital elements that have direct or indirect, logical or physical data connection to a device or network, including everything from software or hardware products to free and open-source software that is monetized or integrated into commercial products.

EU Cyber Resilience Act (CRA) Infographics

download

Get your FREE A-Z supporting material for smart meter security standards. Learn more about the Swiss METAS data security evaluation projects of smart metering devices.

Checklist for Swiss Smart Metering Cybersecurity Evaluations

download

Download EUCC Study 2026 for the most important and up-to-date information about the new European Union Cybersecurity Certification Scheme

EUCC Study - The New European Union Cybersecurity Certification Scheme

download

This downloadable infographics introduces you to the Swiss Smart Metering data security pre-assessment process of METAS certification.

Swiss Smart Metering Data Security pre-evaluation process infographics

download

This CCGuide flyer will quickly introduce you to the benefits of CCGuide training course subscription for your team. You can be sure that you will be able to use the knowledge you have acquired here and easily pass the CC requirements.

Discover the power of CCGuide training course - FREE flyer

download

This downloadable infographics introduces you to Swiss Smart Metering data security evaluation process of METAS certification.

Swiss Smart Metering Data Security official evaluation process infographics

download

Read and learn more about Common Criteria Consultation and download our free material now.

Quick guide for Common Criteria consultation

download

Want to understand the MDR, IVDR regulation? Download our e-book on the latest requirements of medical cybersecurity

Medical Device Cybersecurity e-book

download

Your key to unlocking simplicity in ETSI 303 645 compliance

ETSI EN 303 645 Guide training course

download

The second stage of the medical device cybersecurity testing framework is risk assessment. This downloadable infographics introduces the risk analysis process to you.

Risk Analysis infographics for MDR cybersecurity

download

Download the PSTI Act Q&A flyer now

Full Q&A from Decoding UK PSTI Act Webinar

download

The first step in preparing for the EU MDR compliance is the gap analysis. This downloadable infographic guides you through the gap analysis process.

Gap Analysis Infographics for Medical Devices Regulation

download

Read and learn more about the Radio Equipment Directive (RED), download our free material now.

Guide for Radio Equipment Directive (RED)

download

Download our ETSI EN 303 635 infographics today and learn about the product certification process for this consumer IoT device cybersecurity standard.

ETSI EN 303 645 infographics for Consumer IoT devices

download

Download this comprehensive infographic guide, which deep dive into the key stages of the Radio Equipment Directive (RED). Gain clarity on technical requirements, risk assessment, and strategic decisions to ensure your products meet EU regulations.

RED Cybersecurity - Steps of Compliance Infographics

download

Unlock the full potential of your ESG software—ensure security, compliance, and a competitive edge with EUCC certification!

Protect Your ESG Software with EUCC Certification- FREE Flyer

download

Download this comprehensive infographic guide, which deep dive into the key stages of the Industrial Automation and Control Systems product development lifecycle, ensuring alignment with IEC 62443 standards.

Industrial Automation and Control System Infographics

download

Evaluation with
agility in mind

What does it mean?

Dedicated project leader, who understands the processes

No surprises at the end of the project,

Weekly/biweekly
status meetings

Emails are responded within one working day

Short iterations with immediate feedback

Understandable and solution-oriented observation reports

We intervene immediately in case of any minor problems

Track progress in monthly reports

Cybersecurity News

April 22, 2026

Securing Consumer IoT: The New Cybersecurity Rules Every Smart Device Must Follow

min reading time

The era of unregulated smart devices has officially come to an end. With the European Union having rolled out stringent regulations like the Cyber Resilience Act (CRA), manufacturers can no longer treat cybersecurity as an afterthought. Whether you are producing smart cameras, wearable health trackers, or connected home appliances, navigating this evolving regulatory landscape is critical. Fortunately, a globally recognized standard has emerged to cut through the complexity: ETSI EN 303 645. This guide breaks down exactly how this foundational standard acts as your security passport, ensuring your devices meet the rigorous compliance demands of today's market.

April 7, 2026

How to Meet IoT Cybersecurity Standards Using the ETSI EN 303 645 Guide

min reading time

This article provides a comprehensive guide to meeting consumer IoT security standards using the ETSI EN 303 645 framework. It explains why this standard has become the global baseline for compliance, serving as a critical foundation for regulations like the UK PSTI Act and the upcoming EU Cyber Resilience Act (CRA). The post breaks down the 13 essential security provisions, such as banning default passwords and securing software updates, and outlines a structured assessment path from scope definition to accredited testing. Learn how to treat security as a design constraint to avoid market delays, leverage gap analysis for early detection of vulnerabilities, and turn technical compliance into a trusted competitive edge for your smart devices.

March 20, 2026

CRA Gap Analysis: How Compliance Can Become a Competitive Advantage

min reading time

The Cyber Resilience Act (CRA) is a landmark EU regulation that establishes a horizontal framework for the cybersecurity of products with digital elements (hardware and software). This sweeping EU cybersecurity law represents a massive shift for the industry. Its goal is to ensure that products are placed on the market without known exploitable vulnerabilities and that manufacturers remain responsible for cybersecurity throughout the product's entire lifecycle. With all requirements of the CRA becoming fully applicable on December 11, 2027, the window for preparation is closing. Manufacturers who view this simply as a regulatory hurdle are missing a critical opportunity. By prioritizing CRA readiness now, you can transform a mandatory product compliance strategy into a distinct market differentiator.

All news

Meet us here

Join our captivating cybersecurity events to enhance your knowledge and engage with our team of experts.

CCLab at ICCC 2026: See You in Rome, Italy

On-site

No items found.

September 29, 2026

CCLab at ICCC 2026: See You in Rome, Italy

CCLab is proud to be part of the 25th International Common Criteria Conference.

LEARN MORE

all events

Testimonials

Kenneth Lasoski

Versa Networks

Evaluation team was extremely reasonable and flexible with resolution to findings and was helpful in finding agreeable solutions for CB comments. Consultation team was always responsive and helped shape the documentation for easier evaluation, and provided useful recommendations on satisfying SFR/SARs.

Thierry Bonda

Landis+Gyr

CCLab was well prepared, flexible during the whole evaluation process, and supported us with continuous communication and guidance. Many lessons were learnt during the project and CCLab has always been looking for solutions, supporting our developers the best way they could. The new Swiss evaluation methodology was a good and professional basis to work with, but both parties had to learn how to deal with it.

Jake Nelson

Corsec Security Inc.

The relationship between Corsec and CCLab has been instrumental in helping product vendors successfully complete the Common Criteria certification process. As a Common Criteria consultant to the product vendor, Corsec relies on CCLab’s responsiveness and expertise to quickly and thoroughly complete the testing component of the process. CCLab has been essential in managing multiple projects, their professionalism has helped ensure product vendor satisfaction and ultimate project success.

Alexander Testov

AO Kaspersky Lab.

"I would definitely recommend CCLab to anyone in need of Common Criteria certification. Our cooperation was comfortable, well organized and efficient. I am totally satisfied with the result."

Dayton Marcucci

HID Global

The CCLab team gave us full support to adapt to the changes during product development. Whatever the challenges faced they could keep the due dates and we were able to complete the process quickly and efficiently. The real agile lab helped our success. We are going to work with them again. I highly recommend them to anyone wanting to get its product certified.

Jaime Chica

NXP Semiconductors

It was a well-managed project which achieved success in an effortless manner.

Kalev Pihl

SK ID Solutions

We needed a lab that works quickly but with high work morale and quality of work. CCLab is exactly like that! It was good cooperation experience to work with them. The project was rather complex and our expectations maybe even too high, but the team was committed to the common goals and could keep the milestones; therefore we were able to deliver what was needed. I highly recommend CCLab team to anyone for their great team spirit, quality orientations, agility and reasonable pricing.

Israr Ahmed

Ascertia Ltd.

On behalf of Ascertia, accept my appreciation for the excellent job done by CCLab team over the past several months in achieving the Common Criteria Certificate for ADSS Server SAM solution. It was an enormous undertaking but went smoothly and efficiently! Thanks to your leadership and dedication combined with your staff's teamwork and energy, we achieved our target. You and your employees should take great pride in this accomplishment. We look forward to extend our work with you for our next certification milestone and hope will continue to get such excellent service.

Zsolt Rózsahegyi

I4P Informatics Ltd.

Thanks to the agile processes we've been able to add new features to the product during the evaluation that made it even more valuable to customers. CCLAB efficiently supported us throughout the whole change management process. The predictability, accurate scheduling, and supportive mindset helped us to finish the project in time.

Button Text