Singapore Introduces Home Cyber Security Labelling

Uploaded on 2020-04-20 in FREE TO VIEW, BUSINESS-Services-Law, BUSINESS-Services-IT & Telecoms

Singapore is one of the first countries to require labels to be applied on Wi-Fi routers, smart home hubs and other Internet of Things (IoT) consumer devices in a bid to educate users and strengthen domestic cyber security.

This label will be applied to Wi-Fi routers and smart home hubs, for starters, as part of Singapore's new Safer Cyberspace Masterplan designed to protect consumers and small firms. The labelling scheme will be extended to more IoT connected devices to help users, who are often unaware of security risks.

Known as the Cybersecurity Labelling Scheme, the labels will provide an indication of whether the devices have passed certain assessments and tests, such as whether they have unique default passwords, or if they are less vulnerable to cybersecurity threats, for example. Introduced by the Singapore Cyber Security Agency (CSA) , the scheme will first be applied to Wi-Fi routers and smart home hubs, and will be aligned to global security standards for consumer Internet of Things products.

Singapore's labelling scheme will follow the European Union's standard for IoT devices, which spells out the minimum standards for manufacturers, including having no default passwords and ensuring that there are regular software updates over the air without user supervision.

The immediate question, is how effective the scheme will be. With thousands of IoT product types in the market, it could be challenging to test them quickly to be ready for the market.

If it takes months to test a router, for example, its entrance in the Singapore market would be delayed. With fast-moving technologies, some products may even be outdated by the time they arrive on shelves. This may not be as simple as a “type approval” type of labelling, like a smartphone that is usually okay to use here if it follows international standards. That’s because of the sheer number of IoT product types out there.

Manufacturers will willingly submit to testing to enter the large European market, so it’s easier for Singapore to emulate things, instead of forcing them to test every single device again here. While the Singapore government is being proactive in asking for labels on smart devices, it really is down to consumers to make smart buying decisions. That means weighing the pros and cons carefully instead of going for the shiniest new gadget promising yet more convenience in their digital lives.

Consumers in Singapore are used to seeing energy labels on home appliances which, with their blue ticks, indicate how energy-efficient those devices are. Similar labels will soon be applied to Wi-Fi routers and smart home hubs, which will serve to tell buyers which ones have better cybersecurity provisions than others.

Straits Times:       TechGoondu:       Today Online:

You Might Also Read: 

Finland Has A Cyber Security Standard For IoT:

IoT – Pandemics, Opportunities And Massive Data Risks:

 

 

 

 

« Teens Abandon TV and Take News On-Line
AI, Machine Learning & Deep Learning… Whats The Difference? »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

CERT-FR

CERT-FR

CERT-FR is the French national government computer security incident response team.

Verint Systems

Verint Systems

Verint is a leader in CX automation. The world’s most iconic brands rely on our open platform and team of AI-powered bots to create tangible AI business outcomes, now.

Sepio Cyber

Sepio Cyber

Sepio is the leading asset risk management platform that operates on asset existence rather than activity.

Viasat

Viasat

Viasat is a provider of high-speed satellite broadband services and secure networking systems covering military and commercial markets.

Clavis Information Security

Clavis Information Security

Clavis is an Information Security company offering a complete portfolio of solutions from Pentesting and Security Assessments to Managed Security Services and Training.

S4x Events

S4x Events

S4x are the most advanced and largest ICS cyber security events in the world.

QuoIntelligence

QuoIntelligence

QuoIntelligence experts can help your team understand the evolving cyber threats and provide simple yet comprehensive recommendations so you can focus on what matters.

Netlinkz

Netlinkz

Netlinkz has developed the Virtual Secure Network (VSN) overlay technology platform, a breakthrough in connectivity security, speed, and simplicity.

Gem Security

Gem Security

Gem is on a mission to help security operations evolve into the cloud era, and stop cloud threats before they become incidents.

HashiCorp

HashiCorp

At HashiCorp, we believe infrastructure enables innovation, and we are helping organizations to operate that infrastructure in the cloud.

Canadian Cyber Threat Exchange (CCTX)

Canadian Cyber Threat Exchange (CCTX)

The CCTX is Canada’s not-for-profit, private-sector cyber threat sharing hub and collaboration centre.

Sri Lanka CERT

Sri Lanka CERT

Sri Lanka CERT is the National Centre for Cyber Security, which has the national responsibility of protecting the nation’s cyberspace from cyber threats.

Sensity

Sensity

Sensity is a company that offers an AI-driven solution to detect and verify deepfakes and other forms of identity fraud.

PowerDMARC

PowerDMARC

PowerDMARC is a domain security and email authentication SaaS platform that helps organizations protect their domain name, brand, and emails against unauthorized use.

UFS Technology

UFS Technology

UFS, the bank technology outfitter for community banks, provides purpose-built, bank-exclusive technology services and solutions including cybersecurity.

EVVO LABS

EVVO LABS

EVVO Labs empower your business with the latest IT capabilities to get you ahead of your competitors. We are experts at converging technologies to build your digital transformation.