Japan Cybersecurity Label

【Japan】JC-STAR: Officially Started Issuing★1

/in

Japan Cybersecurity Label

The Information-technology Promotion Agency, Japan (IPA) has officially started issuing the ★1 compliance label under the Security Requirements Conformance Evaluation and Labeling System (JC-STAR), which began accepting applications on March 25, 2025. The initial issuance covers 26 applications from 11 companies, corresponding to 477 certified product models. The first list of products awarded the compliance label has also been published.

This label indicates that IoT products meet the ★1 security requirements, allowing government agencies, enterprises, and general consumers to easily identify and purchase IoT devices that satisfy baseline security standards, ensuring safe and reliable usage.

Background

Amid increasing cybersecurity threats targeting IoT vulnerabilities, Japan’s Ministry of Economy, Trade and Industry (METI) released the “IoT Product Security Conformance Evaluation System Development Policy” in August 2024. Based on this policy, IPA launched the JC-STAR system in March 2025 to evaluate and visualize the security features embedded in IoT products.

Current Status of Label Issuance

Since the launch of the ★1 application window, IPA has granted the compliance label to 26 applications from 11 companies, covering 477 products. Additionally, 8 applications from 3 companies (12 products) are currently under review. The product list will be regularly updated as more labels are issued.

Label Details and Features

The ★1 compliance label certifies that IoT products fulfill defined security requirements. The label includes the security level, registration number, and a QR code linking to IPA’s product information page for verification. The label may be affixed to product bodies, packaging, manuals, brochures, and websites.

System Overview

JC-STAR defines four security levels:

  • ★4 / ★3: High-level security requirements aimed at government agencies, critical infrastructure, and large enterprises, evaluated by independent third parties.

  • ★2: Additional baseline security requirements tailored for specific product categories, self-declared by vendors.

  • ★1: Common minimum security requirements applicable to all IoT products, self-declared by vendors.

Plans are underway to expand acceptance of ★2 and higher-level certifications, initially targeting network cameras and communication devices. Furthermore, IPA is negotiating mutual recognition agreements with similar labeling schemes in Singapore, the UK, the US, and the EU.

Call to Action for Brands

With the official issuance of the JC-STAR ★1 compliance label, IoT manufacturers and vendors aiming to build a strong reputation and earn the trust of consumers and enterprises in the Japanese market should act quickly. We strongly encourages brands to apply for and obtain the ★1 compliance label promptly to establish a trusted and secure image, enhance brand value and market share, and gain a competitive edge.

For further inquiries, please contact:
Email:Charles.liao@theonelab.co
Phone:(02)8601-2828