← Hiverlab

Singapore, 10 Nations Launch Global IOT Smart Device Cybersecurity Label

Published: 2025-10-27 Category: IoT News

Singapore, 10 Nations Launch Global IOT Smart Device Cybersecurity Label

Synopsis

  • Eleven countries form an alliance to establish a unified cybersecurity labelling framework for smart devices.
  • The Global Cybersecurity Labelling Initiative (GCLI) aims to streamline compliance and enhance consumer confidence.
  • Singapore’s Cyber Security Agency underscores the urgency of a coordinated international approach to IoT protection.
  • The scheme will harmonize security standards across major economies including the UK, UAE, Japan, and Germany.
    Estimated reading time: 3 mins

Singapore has joined ten other nations in launching the Global Cybersecurity Labelling Initiative (GCLI), an international framework designed to create a unified security labelling system for smart devices.
The initiative covers Internet of Things (IoT) devices such as Wi-Fi routers, surveillance cameras, smart locks, wearables, and connected home appliances, helping consumers make informed choices while easing manufacturers’ compliance requirements across different markets.

During Singapore International Cyber Week (SICW) at Sands Expo, representatives from Singapore, Brunei, the United Arab Emirates, the United Kingdom, Australia, Germany, Finland, South Korea, Japan, Canada, and Hungary endorsed the joint statement formalizing their participation in this global partnership.

Singapore’s Cyber Security Agency (CSA) deputy commissioner Chua Kuan Seah said the collaboration reflects the need to address the fast-expanding threat landscape, as over 75 billion devices are expected to be connected globally by 2030.

“Consumers struggle to assess device security while manufacturers navigate compliance requirements across multiple markets,” Mr Chua noted. “Fragmented individual efforts cannot effectively address the global scale of IoT supply chains and cyber threats.”

Mr Chua, who also serves as Deputy Chief Executive (Development) at CSA, cited Operation Da Maque, a 2024 U.S. law-enforcement operation that dismantled a network of hijacked devices linked to state-sponsored hackers, and the Akira ransomware group’s 2025 breach of a surveillance system, as examples of urgent risks demanding coordinated action.

Under the new framework, members will standardize security requirements and pursue interoperable labelling schemes built on the principle of “labelled once, recognized everywhere.” The aim is to foster consumer trust, minimize friction in global trade, and create market incentives for manufacturers and laboratories to make secure design the default standard.

Devices within the scheme’s scope include home-networking gear and connected appliances such as smart refrigerators and washing machines. The number of products to be labelled under the GCLI is yet to be determined, as the framework remains in its foundational stage.

At the ceremony, Claudia Plattner, president of Germany’s Federal Office for Information Security, stressed that the cost of inaction would far exceed preventive investment. Half of German households already own more than four IoT devices, she said, emphasizing that visibility is the first line of defence.

“Consumers and businesses should be able to choose products that clearly indicate their level of security,” Ms Plattner said.
“Just as energy-efficiency labels guide purchases, cybersecurity labels should do the same.”

Singapore has operated its own Cybersecurity Labelling Scheme (CLS) since 2020, assigning four levels of certification.

  • Level 1 ensures unique default passwords and automatic software updates.
  • Level 4 requires third-party penetration testing.

More than 800 devices, including smart home hubs and medical wearables such as pacemakers, have already been certified under the CLS, according to CSA’s Oct 23 statement.

While each nation will continue managing its national labelling systems, mutual recognition is expected to emerge as members align with GCLI standards.

Singapore and the United Kingdom have signed a memorandum of understanding, effective January 2026, enabling smart devices certified under Singapore’s CLS to be automatically recognized as compliant with Britain’s Product Security and Telecommunications Infrastructure Act. Manufacturers seeking entry to both markets can therefore undergo a simplified certification process.

This marks Singapore’s fourth bilateral agreement, following similar arrangements with Finland, Germany, and South Korea.

According to The Straits Times and the Australian Department of Home Affairs, the Global Cybersecurity Labelling Initiative represents a collective effort to harmonize IoT security standards worldwide—building transparency, promoting innovation, and strengthening digital resilience for consumers and enterprises alike.

Source here – Have a Story? Address it to the Editor and submit it here

Cyber Security Agency of Singapore (CSA)

Cyber Security Agency of Singapore (CSA) stands as one of the most influential bodies driving the Global Cybersecurity Labelling Initiative (GCLI). As the lead agency coordinating Singapore’s participation, CSA plays a central role in shaping the framework that enables consumers to identify secure smart devices and manufacturers to navigate compliance across multiple markets.

Through its Cybersecurity Labelling Scheme (CLS), launched in 2020, CSA has already certified over 800 IoT products—including routers, smart home hubs, and medical wearables—based on a four-tier rating system. Its expertise and partnerships with countries such as the United Kingdom, Germany, Finland, and South Korea have positioned Singapore as a global model for digital trust. Under Deputy Commissioner Chua Kuan Seah, CSA’s leadership in promoting interoperability and mutual recognition across nations ensures that the vision of “labelled once, recognised everywhere” becomes the cornerstone of global IoT security.

Featured Image Source: Singapore Straits Times

Disclaimer

The information provided in this article is for general informational purposes only and is derived from publicly available sources. While every effort is made to ensure accuracy, we make no representations or warranties, express or implied, regarding the completeness, reliability, or validity of the content. This article does not assert or verify any claims about specific companies, individuals, or organizations. References to external reports, studies, or sources are for contextual purposes only and do not imply endorsement or confirmation of any specific allegations. Readers are advised to conduct their own due diligence and seek professional advice before making business or investment decisions. We disclaim any liability for losses or damages incurred as a result of reliance on the information provided.

← Back to Hiverlab
© Hiverlab. All rights reserved.