SSF 1120-1 edition 1 – IoT Connected devices – requirements and testing

Product information

Target demographic: Manufacturer, dealer, claimer, consumers, installers. 

SSF 1120-1 is for consumer products for personal home use, but can also form the basis for use within companies. This document has been adapted from the provisions set out in ETSI EN 303 645. The requirements in this document can form the basis for insurance.

A product that complies with SSF 1120 also complies with the ‘shall’ requirements in ETSI EN 303 645. The objective is for this to harmonize the security requirements from various European bodies. SSF 1120 also provides support for the practical application of selected sections of GDPR.

The document has been drafted to create a framework, whose target group is both producers and consumers of IoT devices. This document describes the requirements that are placed on producers. Appendix A describes Penetration Tests. Appendix B describes the link between the requirements in this standard and the provisions in ETSI EN 303 645.

This document describes several information processes in the lifecycle of an IoT device. The information processes are divided as follows in the chapters: Development, Installation, Account Management, Maintenance, Operation and Data Protection.

SSF 1120-1 edition 1 – IoT Connected devices – requirements and testing

Language: English

Dated May 2021

Digital versions of our norms and standards are only available for those with a Swedish organization number.

Access to our digital norms and standards may take up to 2 business days.

Our digital versions of norms and standards can only be purchased if you have a valid Swedish organization number and phone number.