EU Radio Equipment Directive to Enforce Cybersecurity Requirements

New EN 18031-1 update impacts all wireless devices, ranging from smartphones to connected industrial equipment.

Beginning August 1, 2025, manufacturers of all devices containing radio technologies must comply with new cybersecurity requirements under the EU’s Radio Equipment Directive (RED) 2014/53/EU. This Delegated Regulation (EU) 2022/30 update mandates compliance with EN 18031-1, a harmonized standard that addresses cybersecurity, data protection, and privacy for wireless devices. The directive encompasses consumer products, such as phones, smart home devices, wearables, and remote-controlled devices, as well as connected industrial, medical, and connected vehicle equipment. The directive does not apply to 5G network equipment used by providers of public electronic communications networks and publicly available electronic communications services.

The RED establishes essential requirements for safety, electromagnetic compatibility, and the efficient use of the radio spectrum. The new 2022/30 amendment expands the scope to include specific obligations to protect network communication, prevent fraud, and safeguard personal data. EN 18031-1 outlines how manufacturers can implement state-of-the-art safeguards, including secure boot processes, software integrity checks, encryption of communications, and restricted access to data ports. Manufacturers marketing products in the EU after August 2025 must provide technical documentation proving RED compliance, including test reports, risk assessments, and design descriptions. These measures must be enforced not only through software, but also through robust hardware and interconnects.

As a result, manufacturers must now consider hardware-level design choices and cybersecurity compliance strategy for all connected products. Interconnects and physical interfaces play a crucial role in meeting these standards. Shielded and tamper-resistant connectors can help prevent unauthorized physical access to internal systems. For instance, sealed or recessed ports reduce exposure to potential attacks during maintenance or operation. Connectors with built-in encryption or secure element interfaces can also help enforce authentication at the hardware level.

Additionally, manufacturers can specify data-only or power-only connectors, reducing vulnerability by limiting the function of ports. Using coded or proprietary pinouts, as well as locking mechanisms, adds a physical layer of access control. Within IoT and industrial applications, ruggedized connectors with EMI shielding also help meet RED’s EMC and cybersecurity requirements. Several connector companies have released products to assist product designers with EN 18031‑1 compliance.

Würth Elektronik’s Cordelia-I module was developed in collaboration with British cybersecurity company Crypto Quantique to ensure the highest security standards. With a compact size (19 × 27.5 × 4 mm, it is designed to operate over a temperature range of -40 °C to +85 °C, and consumes less than 10 μA in standby mode.

Würth Elektronik’s Cordelia‑I Wi‑Fi module is specifically designed for secure IoT and edge computing applications, including Industry 4.0, Smart City and Smart Home, eMobility, smart agricultural, and medical devices. It independently manages secure cloud connections, thus reducing the workload on the host MCU. MQTT over TLS is used as the primary protocol for connecting to the cloud. The module features a secure Root of Trust (a fundamental security concept in information technology) that is unique and tamper-proof. All cryptographic keys are securely generated and stored within the module. The Cordelia-I module complies with the IEEE 802.11 b/g/n Wi-Fi standard and operates in the 2.4 GHz band. In Transparent Mode, it provides a secure UART-to-Cloud bridge. The transmission power goes up to +18 dBm (peak), while the receiver sensitivity is -92 dBm.

Amphenol Pcd, TE Connectivity, and Fischer Connectors (stocked by Kensington Electronics) offer ruggedized hardware components that address the physical security clauses of EN 18031‑1 with features such as sealing, locking, and EMI protection. From an engineering standpoint, incorporating hardware-based security such as Trusted Platform Modules (TPMs), secure microcontrollers, or tamper-evident housings is another way to comply with EN 18031-1.

As security concerns become more urgent, future legislation is likely to expand beyond the EU.   Designers of connected products will have a new range of hardware solutions to help make equipment more resilient against evolving cyber threats.

Like this article? Check out our other Security and Smart Devices, our Industrial Market Page, and our 2025 Article Archives. 

Subscribe to our weekly e-newsletters, follow us on LinkedIn, Twitter, and Facebook, and check out our eBook archives for more applicable, expert-informed connectivity content.