EMC China Lab

UK PSTI Statement of Compliance

Views :
Update time : 2024-10-28

Product Security and Telecommunications Infrastructure Act (PSTI), UK

The UK Government passed the Product Security and Telecommunications Infrastructure Act 2022 (referred to as the "PSTI" Act), which will come into effect on April 29, 2024. This legislation mandates all companies involved in the consumer IoT supply chain to comply with minimum security requirements. These security standards are based on the UK’s Code of Practice for Consumer IoT Security / ETSI EN 303 645 standards, alongside guidelines from the National Cyber Security Centre, the UK's authority on cybersecurity threats. Manufacturers, importers, and distributors of related products must adhere to the PSTI Act’s security protocols, with non-compliance potentially resulting in fines of up to £10 million or 4% of global turnover.

 UK PSTI Statement of Compliance(图1)

Importance of IoT Security for Devices

- Recent global cybersecurity incidents have highlighted serious IoT security threats across industries.

- Many countries are now implementing mandatory IoT security regulations.

- Real-world scenarios reveal multiple security challenges.

- Cybersecurity regulations establish standardized security protocols for connected devices.

 

UK PSTI Act Overview

Required Measures:

 

- No Universal Default Passwords: Devices must not use universal, default passwords.

- Mandatory Reporting of Security Issues: Security vulnerabilities must be reported promptly.

- Pre-Sale Security Information: Manufacturers must inform consumers of the product’s security update support period on their websites before purchase.

 

Applicable Devices:

 

- Smart home/voice assistant devices

- Smartphones

- Connected cameras (IP and CCTV); wearables

- IoT hubs and gateways linking multiple devices

- Home automation devices, smart doorbells, and alarm systems

 

Additional Compliance Frameworks:

- RED-DA and UK PSTI: These frameworks address connection standards and security for wireless devices.

- ETSI EN 303 645: A network security standard for wireless devices, covering most RED-DA (RED Articles 3.3) requirements and fully aligned with UK PSTI law.

- CEN/CENELEC Standards Harmonization: Efforts are underway to develop harmonized standards relevant to the RED-DA.

- Connectivity Requirements: All connected devices, regardless of wireless support, are regulated under these frameworks.

- Legal Reference Framework: The UK PSTI Act references the ETSI EN 303 645 framework.


Email:hello@jjrlab.com


Leave Your Message


Write your message here and send it to us


Related News
Read More >>
What is Amazon GPSR Certification? What is Amazon GPSR Certification?
10 .30.2024
GPSR, effective Dec 13, 2024, requires EU labeling for safe products. JJR Laboratory offers low-cost...
Introduction to UN38.3 Battery Testing Introduction to UN38.3 Battery Testing
10 .30.2024
UN38.3 Certification ensures lithium batteries pass safety tests for transport, including altitude a...
Handheld Label Printer ICASA Certification in Sout Handheld Label Printer ICASA Certification in Sout
10 .30.2024
Handheld label printers with Bluetooth require ICASA certification in South Africa, involving compli...
Safety Testing of Food Contact Materials Safety Testing of Food Contact Materials
10 .30.2024
Testing for food contact materials is crucial for safety. Compliance with EU directives and national...
What is Germany WEEE Registration? What is Germany WEEE Registration?
10 .30.2024
Germany‘s WEEE registration requires recycling of certain electronic waste. Non-compliance risks rem...
What is the EU WEEE Directive 2012/19/EU? What is the EU WEEE Directive 2012/19/EU?
10 .30.2024
The WEEE Directive categorizes electrical products into six types, ensuring proper recycling and reg...
Low Voltage Electrical Equipment CE Certification Low Voltage Electrical Equipment CE Certification
10 .29.2024
CE Certification for Low Voltage Equipment: Enables EU market access by meeting Directive 2014/35/EU...
CE Testing Laboratory CE Testing Laboratory
10 .29.2024
China JJR is an expert in CE certification testing. As an ISO/IEC 17025 accredited CE marking testin...

Leave Your Message