Singapore Collaborates with Korea and Germany for Safer Smart Consumer Devices Through Cybersecurity Label Agreements

Singapore partners with Korea and Germany Partner to simplify cybersecurity labelling for smart consumer devices

Singapore has taken an important step in bolstering cybersecurity for consumer smart devices by signing Mutual Recognition Arrangements (MRAs) with South Korea and Germany.

These agreements, effective from 1 January 2025, aim to streamline the certification process for smart products, ensuring enhanced security for consumers across these nations.

Singapore Signs Mutual Recognition Arrangements with Republic of Korea and Germany on Cybersecurity Labelling for Consumer Smart Products

The Cyber Security Agency of Singapore (CSA) signed Mutual Recognition Arrangements (MRAs) for the recognition of cybersecurity labels with Korea Internet & Security Agency (KISA) and Germany Federal Office for Information Security (BSI) respectively at the International Internet of Things (IoT) Security Roundtable today. The event was held during the Singapore International Cyber Week 2024 at Sands Expo and Convention Centre.

Default

Strengthening International Cybersecurity Collaboration

The Cyber Security Agency of Singapore (CSA) formalised these MRAs during the International Internet of Things (IoT) Security Roundtable at the Singapore International Cyber Week 2024.

The agreements were signed with the Korea Internet & Security Agency (KISA) and Germany's Federal Office for Information Security (BSI).

Under these arrangements, smart consumer products certified by KISA's Certification of IoT Cybersecurity (CIC) and Singapore's Cybersecurity Labelling Scheme (CLS) will enjoy mutual recognition.

This means a device approved in South Korea will be accepted in Singapore without additional assessments, and vice versa. Similarly, products certified under Germany's IT Security Label will be recognised in Singapore, streamlining market entry for manufacturers.

Ensuring Rigorous Security Standards

The MRAs ensure that only products meeting stringent security criteria benefit from mutual recognition. In South Korea, devices achieving at least the CIC Basic Level—which requires third-party laboratory testing—will be deemed equivalent to Singapore's CLS Level 3.

This level signifies that a product has been developed with security-by-design principles and has undergone thorough software binary assessments.

In Germany, products with the IT Security Label will be recognised as fulfilling CLS Level 2 requirements in Singapore.

Expanding Global Cybersecurity Efforts

These agreements build upon Singapore's existing collaborations. Previously, Singapore established similar mutual recognition with Finland, facilitating the acceptance of cybersecurity labels between the two countries.

The addition of South Korea and Germany to this network demonstrates a growing international commitment to harmonising cybersecurity standards for consumer IoT devices.

For manufacturers, these MRAs reduce the need for duplicate testing, saving time and costs when entering new markets.

Consumers stand to gain from a wider selection of certified secure smart devices, fostering greater confidence in the safety of their connected products.