RED DA (EN 18031) Certification Compliance: What You Need to Know · Developer Portal

[giscus[bot]]

RED DA (EN 18031) Certification Compliance: What You Need to Know · Developer Portal

This guide helps manufacturers of wireless-enabled products based on Espressif modules understand the RED DA (EN 18031) cybersecurity requirements, identify their product’s category, and determine the right path to certification before launching in the EU market.

https://developer.espressif.com/blog/2025/04/esp32-red-da-en18031-compliance-guide/

[AxelLin]

Hi,

Last time I contacted the sales support, the response was:
These documents are under development. We suggest that you contact us again around mid-June.

I'm wondering if your support is ready now because Aug 1st is approaching soon.
Can you make the Pre-filled compliance documentation templates and Technical guidance public download?

[sbtech13]

Hi AxelLin,

The technical document templates are ready but not yet shared in public domain. Support team should be able to share it under NDA now. Please do contact them again.

[KleftogiannisSp]

Hello,

I found this guide which is what I am looking for as guidance to certify a product we are developing using esp32-C3. May I ask, do you have prior experience of having an esp32-C3 product certified according to new RED? How dificult you thing could such task be?

[mahavirj]

Hello @KleftogiannisSp,

Yes, we can assist in the RED-DA certification for ESP32-C3 based product. Please reach out to our support channels for more information on the baseline templates and guidance.

We plan to do a followup (Part2) post on this topic in next few days, providing more information.

[g-380]

Hello,
Regarding SUM :

The feature : github.com/espressif/esp-idf/commit/3a7c1a2e745085f6054062c186d9447b11cab262 available on C5/C6 is a must have to enable SAFE OTA updates, e.g bootloader component can be safely updated with no risk...
Does espressif plan to make new HW release (stage 0 rom-code) to integrate this feature on S3 platform ?
Thanks

[mahavirj]

Hello @g-380,

The requirement for SUM is more towards authenticated (coming from trusted source) updates. Moreover, its not a common practice to have OTA updates for bootloader in ESP-IDF, generally the image is fixed and decided during manufacturing time.

Regarding the provision for recovery bootloader in S3, we do not have any roadmap yet. But, this feature shall be available in C5 and future targets.