ETSI has released TS 103 732, a new technical specification that establishes comprehensive security requirements for consumer smartphones and tablets to protect sensitive user data such as photos, location, and passwords. The standard covers critical features including cryptographic support, secure boot, trusted communication channels, and resistance to physical attacks, while aligning with Common Criteria assurance levels for certification under the European Cybersecurity Act. This document provides a unified methodology for manufacturers to achieve security certification and for evaluators to assess device security, serving as the first in a series of derivative standards based on the EN 303 645 IoT framework.
Keywords: ETSI TS 103 732, smartphone security, Common Criteria, user data protection, secure boot