Work Programme - Work Item Detailed Report

	Work Item Reference	ETSI Doc. Number	STF	Technical Body in Charge	Standard Not Ready For Download
	DEN/CYBER-EUS-007	EN 304 618	701	CYBER EUSR
	Current Status (Click to View Full Schedule)	Latest Version	Cover Date	Standstill	Creation Date
	Stable draft (2026-03-30)	0.1.1 Draft	2025-04-09	View Standstill Information	2025-03-04
	Rapporteur	Technical Officer		Harmonised Standard
	Daniel Thompson-Yvetot	Laure Pourcin		Yes

Title	CYBER; CRA; Cybersecurity requirements for password managers CRA password managers Topic # 18 full
Scope and Field of Application	This document will provide security requirements and assessment criteria covering all elements defined in CRA Annex I Part 1 and Part 2 for password managers for ICT common use, as mentioned in CRA Annex III Class I important products. This work item intends to produce an EN as candidate for harmonisation, under the standardisation request in support of the implementation of the CRA (M/606). NOTE: The rapporteur of this Work Item is using ETSI Forge to edit the draft standard using markdown. Link to the repository in GitLab: https://forge.etsi.org/rep/cyber/stan4cr2/en-304-618
Supporting Organizations	ZTE Corporation, Huawei Technologies France, NCSC, Open Source Initiative

Keywords

Projects

Clusters

Frequencies

Mandates

Directives

CRA
Cybersecurity

Security

M/606

2024/2847

Official Journal

Remarks

2026-03-30 A new draft is uploaded - V 0.1.1 with status: Stable draft - with comment: WIP needs Annex R and Assessment transfer

2025-12-23 pourcinl A new draft is uploaded - V 0.1.0 with status: Stable draft

2025-11-27 thompsonyvet Draft contributed - V 0.0.5 contributed for Information in CYBEREUSR(25)26e006 as Stable draft

2025-11-27 A new draft is uploaded - V 0.0.5 with status: Stable draft

2025-11-10 pourcinl A new draft is uploaded - V 0.0.3 with status: Stable draft - with comment: Submitted on 29 Sept 2025.

2025-09-09 thompsonyvet Draft contributed - V 0.0.2 contributed for Information in CYBEREUSR(25)23019 as Early draft

2025-09-09 A new draft is uploaded - V 0.0.2 with status: Early draft

2025-08-12 butlerm Draft contributed - V 0.0.1 contributed for Decision in CYBEREUSR(25)PW003 as Early draft

2025-08-12 A new draft is uploaded - V 0.0.1 with status: Early draft

2025-04-08 Laure Pourcin Work item adopted CYBER, see contribution CYBER(25)000008

2025-04-04 pourcinl WI proposed to WG CYBER EUSR, see contribution CYBER(25)000008

2025-04-04 Laure Pourcin WI accepted by WG CYBER EUSR, see contribution CYBEREUSR(25)9_008r3

2025-04-04 pourcinl WI proposed to WG CYBER EUSR, see contribution CYBEREUSR(25)9_008r3

2025-03-18 pourcinl WI proposed to WG CYBER EUSR, see contribution CYBEREUSR(25)9_008r2

2025-03-13 pourcinl WI proposed to WG CYBER EUSR, see contribution CYBEREUSR(25)9_008r1

2025-03-04 pourcinl WI proposed to WG CYBER EUSR, see contribution CYBEREUSR(25)9_008

Specific aspects
	User/consumer aspects
	Security/Privacy aspects