On request, the Federal Office for Information Security (German abbreviation: BSI) can authorise Conformity Assessment Bodies (CABs) active in the scope of Regulation (EU) 2019/881 (Cybersecurity Act – CSA) [CSA] and the § 9 Act on the Federal Office for Information Security (German abbreviation: BSIG) [BSIG] to engage in activity in this field if the preconditions of the benchmark European cybersecurity certification scheme as per Art. 54 CSA [CSA] and § 9 BSIG [BSIG] are fulfilled. The CSA [CSA] defines CABs as per point 18 of Art. 2 according to point 13 of Art. 2 of Regulation (EC) No. 765/2008 as bodies which carry out conformity assessment activities, including calibration, audits, certification and inspections.
