Navigation and service

BSI - Federal Office for Information Security (Link to homepage)

Recognition of bodies and certification of IT security service providers

Mit dem Button (Kreis aufgeteilt in drei Fläschen: Logo des BSI, Text anerkannte Prüfstelle und BSI-APS-Nummer) erhält die Stelle eine Bestätigung mit den Angaben der BSI-Registrriernummer und Gültigkeitsdauer.

According to the BSIG, the BSI has the task of carrying out certifications of information technology products or components as well as information technology systems. The tests for these certifications are carried out by testing bodies recognised by the BSI. In addition, the BSI can certify IT security service providers.

In order to fulfil these tasks, the BSI operates certification and recognition programmes, in each of which the rules (scopes, needs-based test criteria, requirements and evidence), the procedure and the management for carrying out certification or recognition are defined and described.

Recognition as an inspection body or certification as an IT security service provider is carried out upon application by an applicant (operator of a body). The basic prerequisite for recognition as a testing laboratory or certification as an IT security service provider is compliance with the requirements of DIN EN ISO/IEC 17025 in the currently valid version.

Recognition or certification is possible for different scopes. Each scope has specific requirements.

The procedure is described in the document "Procedural Description for the Recognition of Testing Bodies and Certification of IT Security Service Providers" and supplemented by the individual requirements documents for each scope. The individual requirements can be found in the respective scope under "Publications and Requirements Documents".Procedure of the recognition and certification process. Description in the text below.

Ablauf des Anerkennungs- und Zertifizierungsverfahrens. Beschreibung im nachfolgenden Text. Verfahrensablauf

The document "Dictionaries" contains the central breakdown of all references (master list of current documents) and a glossary.

The "Mark rules" contain the terms of use for all mark users on the respective marks for certification and recognition.

The procedure for the assessment of competence and certification of persons is described in the document "Procedural Description for the Assessment of Competence and Certification of Persons" and supplemented by the individual requirements documents for each area of application.

If you have any questions, please contact postfach-anerkennung@bsi.bund.de

More Information

Back to Certification and approval