EUCC Certification with CCLab

CCLab supports your EUCC certification journey with proven expertise and efficient processes.

RED Cybersecurity - Steps of Compliance Infographics

Download this infographic guide for a clear overview of the RED’s key stages, covering technical requirements, risk assessment, and strategic decisions for EU compliance.

download now

book a free consult

CCguide Training Course

Subscribe to CCGuide! Learn how to write Developer Docs based on EUCC Common Criteria.

Let’s see the training course

book a free consult

Start your preparation for CRA

The CRA introduces mandatory, lifecycle-based cybersecurity requirements for all products with digital elements. We help you navigate this complexity with clear processes, hands-on support, and compliance-ready evaluation expertise.

explore our services

book a free consult

Companies who chose us

About CCLAB

CCLab Ltd. was founded in 2013 as an agile, ISO 17025 accredited cybersecurity laboratory primarily to work in Common Criteria evaluations and consultations.It has been accredited by OCSI, Certification Body of the Italian Scheme since 2015, by TrustCB, the Dutch CB since 2025, and by IECEE CB Scheme from 2024.
‍
CCLab has conducted many successful Common Criteria evaluation and consultation projects, and the number keeps increasing in size and quality continuously each year.
‍
In 2023 CClab has joined the QIMA group, a global Testing, Inspection and Certification player, operating in more than 100 countries from 60 offices and labs.

80+

successful evaluations

accreditations

months to finish an EAL 4+ evaluation

cybersecurity testing laboratories

50+

satisfied clients

Our Cybersecurity solutions

Navigate the complex landscape of cybersecurity certifications
with expert guidance

Common Criteria Evaluation

ISO 15408 Common Criteria Compliance and Certification up to EAL4+ or EAL5.

Common Criteria Consultancy

Professional support to prepare for a successful Common Criteria evaluation saves you cost and effort.

Consumer IoT (ETSI EN 303 645) Cybersecurity

Comply with ETSI EN 303 645 standards, providing guidelines and expertise for the security of consumer Internet of Things (IoT) devices.

Smart Metering Cybersecurity

Data security solutions for smart metering system components with independent verification by out certified laboratory.

Radio Equipment Directive Cybersecurity Compliance

Learn more about the Radio Equipment Directive (RED) specifying cybersecurity requirements for radio equipment sold within the EU.

UK PSTI compliance

How to get your connected device compliant with the upcoming cybersecurity regulation in the UK, the Product Security and Telecommunications Infrastructure (PSTI) Act.

Industrial Control System Security

Cybersecurity evaluation and certification of industrial automation and control system based on ISA/IEC 62443-4-1 and 62443-4-2 standards.

Cybersecurity Certification

Get your IoT, IIoT device certified after successful evaluation and testing based on ETSI 3030 645 or IEC 62443-4-1, 62443-4-2.

Download this comprehensive infographic guide, which deep dive into the key stages of the Industrial Automation and Control Systems product development lifecycle, ensuring alignment with IEC 62443 standards.

Industrial Automation and Control System Infographics

download

Unlock the full potential of your ESG software—ensure security, compliance, and a competitive edge with EUCC certification!

Protect Your ESG Software with EUCC Certification- FREE Flyer

download

Download this comprehensive infographic guide, which deep dive into the key stages of the Radio Equipment Directive (RED). Gain clarity on technical requirements, risk assessment, and strategic decisions to ensure your products meet EU regulations.

RED Cybersecurity - Steps of Compliance Infographics

download

The EU Cyber Resilience Act (CRA) introduces a unified cybersecurity framework for products with digital elements that have direct or indirect, logical or physical data connection to a device or network, including everything from software or hardware products to free and open-source software that is monetized or integrated into commercial products.

EU Cyber Resilience Act (CRA) Infographics

download

Download EUCC Study 2024 for the most important and up-to-date information about the new European Union Cybersecurity Certification Scheme

EUCC Study - The New European Union Cybersecurity Certification Scheme

download

This CCGuide flyer will quickly introduce you to the benefits of CCGuide training course subscription for your team. You can be sure that you will be able to use the knowledge you have acquired here and easily pass the CC requirements.

Discover the power of CCGuide training course - FREE flyer

download

Read and learn more about Common Criteria Consultation and download our free material now.

Quick guide for Common Criteria consultation

download

Your key to unlocking simplicity in ETSI 303 645 compliance

ETSI EN 303 645 Guide training course

download

Download the PSTI Act Q&A flyer now

Full Q&A from Decoding UK PSTI Act Webinar

download

Read and learn more about the Radio Equipment Directive (RED), download our free material now.

Guide for Radio Equipment Directive (RED)

download

Learn everything you need to know for a successful Common Criteria certification project. Save costs and effort with your checklist.

Guide and Checklist for Common Criteria Evaluations - updated with EUCC Scheme

download

This downloadable infographics introduces the Common Criteria Evaluation process to you. Explore now for free.

Common Criteria Evaluation Process infographics

download

Get your FREE A-Z supporting material for smart meter security standards. Learn more about the Swiss METAS data security evaluation projects of smart metering devices.

Checklist for Swiss Smart Metering Cybersecurity Evaluations

download

This downloadable infographics introduces you to the Swiss Smart Metering data security pre-assessment process of METAS certification.

Swiss Smart Metering Data Security pre-evaluation process infographics

download

This downloadable infographics introduces you to Swiss Smart Metering data security evaluation process of METAS certification.

Swiss Smart Metering Data Security official evaluation process infographics

download

Want to understand the MDR, IVDR regulation? Download our e-book on the latest requirements of medical cybersecurity

Medical Device Cybersecurity e-book

download

The second stage of the medical device cybersecurity testing framework is risk assessment. This downloadable infographics introduces the risk analysis process to you.

Risk Analysis infographics for MDR cybersecurity

download

The first step in preparing for the EU MDR compliance is the gap analysis. This downloadable infographic guides you through the gap analysis process.

Gap Analysis Infographics for Medical Devices Regulation

download

Download our ETSI EN 303 635 infographics today and learn about the product certification process for this consumer IoT device cybersecurity standard.

ETSI EN 303 645 infographics for Consumer IoT devices

download

Evaluation with
agility in mind

What does it mean?

Dedicated project leader, who understands the processes

No surprises at the end of the project,

Weekly/biweekly
status meetings

Emails are responded within one working day

Short iterations with immediate feedback

Understandable and solution-oriented observation reports

We intervene immediately in case of any minor problems

Track progress in monthly reports

Cybersecurity News

February 18, 2026

How to Meet IoT Cybersecurity Standards Using the ETSI EN 303 645 Guide

min reading time

This article provides a comprehensive guide to meeting consumer IoT security standards using the ETSI EN 303 645 framework. It explains why this standard has become the global baseline for compliance, serving as a critical foundation for regulations like the UK PSTI Act and the upcoming EU Cyber Resilience Act (CRA). The post breaks down the 13 essential security provisions, such as banning default passwords and securing software updates, and outlines a structured assessment path from scope definition to accredited testing. Learn how to treat security as a design constraint to avoid market delays, leverage gap analysis for early detection of vulnerabilities, and turn technical compliance into a trusted competitive edge for your smart devices.

February 16, 2026

Implementing EUCC: What High-Assurance Certification Requires Beyond Traditional Common Criteria Approaches

min reading time

This is a comprehensive overview of the transition to EUCC (European Common Criteria-based cybersecurity certification scheme). It effectively highlights the shift from the old, fragmented SOG-IS approach to a unified, risk-based framework under the Cybersecurity Act.

February 12, 2026

Understanding EUCC Assurance Levels: What “Substantial” and “High” Really Mean for ICT Security

min reading time

This article provides a strategic guide to the new EUCC assurance levels, explaining what "Substantial" and "High" certifications actually mean for your market access. It demystifies the critical shift from simple EAL numbers to risk-based vulnerability analysis (AVA_VAN), detailing exactly which products require advanced penetration testing versus basic surveys. You will learn how to map your device to the correct assurance category, navigate the new mandatory lifecycle and patching requirements, and avoid the costly trap of over-engineering your compliance strategy.

All news

Meet us here

Join our captivating cybersecurity events to enhance your knowledge and engage with our team of experts.

CCLab at ICCC 2025: See You in Songdo, Korea

On-site

No items found.

October 21, 2025

CCLab at ICCC 2025: See You in Songdo, Korea

CCLab is excited to be part of the 24th International Common Criteria Conference taking place from 21st to 23rd of October 2025 at the Central Park Hotel in Songdo, Korea.

LEARN MORE

EN 18031 Kiberbiztonsági szabványok, szakmai képzés

On-site

No items found.

July 7, 2025

EN 18031 Kiberbiztonsági szabványok, szakmai képzés

Internetkapcsolattal rendelkező rádióberendezésekkel vagy vezeték nélküli IoT eszközökkel dolgozik, és szeretné megtudni, hogyan felelhet meg a RED irányelv és a kiberbiztonsági harmonizált szabványok követelményeinek?

LEARN MORE

all events

Testimonials

Kenneth Lasoski

Versa Networks

Evaluation team was extremely reasonable and flexible with resolution to findings and was helpful in finding agreeable solutions for CB comments. Consultation team was always responsive and helped shape the documentation for easier evaluation, and provided useful recommendations on satisfying SFR/SARs.

Thierry Bonda

Landis+Gyr

CCLab was well prepared, flexible during the whole evaluation process, and supported us with continuous communication and guidance. Many lessons were learnt during the project and CCLab has always been looking for solutions, supporting our developers the best way they could. The new Swiss evaluation methodology was a good and professional basis to work with, but both parties had to learn how to deal with it.

Jake Nelson

Corsec Security Inc.

The relationship between Corsec and CCLab has been instrumental in helping product vendors successfully complete the Common Criteria certification process. As a Common Criteria consultant to the product vendor, Corsec relies on CCLab’s responsiveness and expertise to quickly and thoroughly complete the testing component of the process. CCLab has been essential in managing multiple projects, their professionalism has helped ensure product vendor satisfaction and ultimate project success.

Alexander Testov

AO Kaspersky Lab.

"I would definitely recommend CCLab to anyone in need of Common Criteria certification. Our cooperation was comfortable, well organized and efficient. I am totally satisfied with the result."

Dayton Marcucci

HID Global

The CCLab team gave us full support to adapt to the changes during product development. Whatever the challenges faced they could keep the due dates and we were able to complete the process quickly and efficiently. The real agile lab helped our success. We are going to work with them again. I highly recommend them to anyone wanting to get its product certified.

Jaime Chica

NXP Semiconductors

It was a well-managed project which achieved success in an effortless manner.

Kalev Pihl

SK ID Solutions

We needed a lab that works quickly but with high work morale and quality of work. CCLab is exactly like that! It was good cooperation experience to work with them. The project was rather complex and our expectations maybe even too high, but the team was committed to the common goals and could keep the milestones; therefore we were able to deliver what was needed. I highly recommend CCLab team to anyone for their great team spirit, quality orientations, agility and reasonable pricing.

Israr Ahmed

Ascertia Ltd.

On behalf of Ascertia, accept my appreciation for the excellent job done by CCLab team over the past several months in achieving the Common Criteria Certificate for ADSS Server SAM solution. It was an enormous undertaking but went smoothly and efficiently! Thanks to your leadership and dedication combined with your staff's teamwork and energy, we achieved our target. You and your employees should take great pride in this accomplishment. We look forward to extend our work with you for our next certification milestone and hope will continue to get such excellent service.

Zsolt Rózsahegyi

I4P Informatics Ltd.

Thanks to the agile processes we've been able to add new features to the product during the evaluation that made it even more valuable to customers. CCLAB efficiently supported us throughout the whole change management process. The predictability, accurate scheduling, and supportive mindset helped us to finish the project in time.

Button Text