Beta

Source: OJ L 2024/2847, 20.11.2024

EN

Annex III Important products with digital elements

  1. Class I

    1. Identity management systems and privileged access management software means the part of an electronic information system which consists of computer code; and hardware means a physical electronic information system, or parts thereof capable of processing, storing or transmitting digital data;, including authentication and access control readers, including biometric readers

    2. Standalone and embedded browsers

    3. Password managers

    4. Software means the part of an electronic information system which consists of computer code; that searches for, removes, or quarantines malicious software means the part of an electronic information system which consists of computer code;

    5. Products with digital elements means a software or hardware product and its remote data processing solutions, including software or hardware components being placed on the market separately; with the function of virtual private network (VPN)

    6. Network management systems

    7. Security information and event management (SIEM) systems

    8. Boot managers

    9. Public key infrastructure and digital certificate issuance software means the part of an electronic information system which consists of computer code;

    10. Physical and virtual network interfaces

    11. Operating systems

    12. Routers, modems intended for the connection to the internet, and switches

    13. Microprocessors with security-related functionalities

    14. Microcontrollers with security-related functionalities

    15. Application specific integrated circuits (ASIC) and field-programmable gate arrays (FPGA) with security-related functionalities

    16. Smart home general purpose virtual assistants

    17. Smart home products with security functionalities, including smart door locks, security cameras, baby monitoring systems and alarm systems

    18. Internet connected toys covered by Directive 2009/48/EC of the European Parliament and of the Council(1)Directive 2009/48/EC of the European Parliament and of the Council of 18 June 2009 on the safety of toys (OJ L 170, 30.6.2009, p. 1).

    19. Personal wearable products to be worn or placed on a human body that have a health monitoring (such as tracking) purpose and to which Regulation (EU) 2017/745 or (EU) No 2017/746 do not apply, or personal wearable products that are intended for the use by and for children

  2. Class II

    1. Hypervisors and container runtime systems that support virtualised execution of operating systems and similar environments

    2. Firewalls, intrusion detection and prevention systems

    3. Tamper-resistant microprocessors

    4. Tamper-resistant microcontrollers

We're continuously improving our platform to serve you better.

Your feedback matters! Let us know how we can improve.

Contact us:

dora@springflod.se

Found a bug?

Springflod is a Swedish boutique consultancy firm specialising in cyber security within the financial services sector.

We offer professional services concerning information security governance, risk and compliance.

Crafted with ❤️ by Springflod