In general Netnod believes the trust in certification is too high. A certification is not better than the criteria the certification is based upon, and the criteria is in turn based on knowledge and agreements on necessary requirements. Because of this, if one should talk about certification one has to start from the beginning, with collection of information, dissemination of the information and creation of agreements on what the requirements are to be set on products and services.
When these criteria exist, then one can look at the certification process itself. Should the certification be done by third parties or do we talk about a self certification? Should the certification be about the process by which the products are developed or should the products themselves be certified?
These issues already exist in the regulation, so there is not much we can do in Sweden except continuing to raise awareness about these issues. And of course do the best we can given the words adopted in the EU.
For the full response, in Swedish
Netnod provides critical infrastructure support ranging from interconnection services and Internet Exchanges to time services, DNS services and root server operations. With a worldwide reputation for its services and the expertise of its staff, Netnod ensures a stable and secure Internet for the Nordics and beyond. Established in 1996 as a neutral and independent Internet infrastructure organisation, Netnod is fully owned by the non-profit foundation TU-stiftelsen (Stiftelsen för Telematikens utveckling). More information is available at: www.netnod.se