The ONE | Driving Global Awareness of Cybersecurity Testing at CES 2026

/in

We were honored to have our Global Strategic Partnerships Lead, Smiler Lu, and Technical Director, Jeans Koo, represent The One Testing Technology Co., Ltd. at CES 2026 powered by the Consumer Technology Association, connecting with industry leaders and innovators from across the globe.

Throughout the event, our team engaged in meaningful conversations with manufacturers, startups, and technology partners spanning IoT, smart devices, consumer electronics, and next-generation connected products. CES 2026 highlighted innovations like non-invasive glucose monitoring via breath analysis—showing how connected health and IoT are advancing, and why strong cybersecurity is essential for trust and safety.


A clear consensus emerged:

Cybersecurity testing is no longer just a compliance checkbox — it’s a strategic necessity for global market access and building lasting product trust.
As international regulations and security expectations evolve, cybersecurity has become a core element of product design and go-to-market strategies. At The ONE, we remain committed to delivering professional, globally aligned cybersecurity testing services that help manufacturers overcome regulatory challenges and create secure, reliable products.
We’re excited to turn the insights gained at CES 2026 into actionable testing and advisory solutions, collaborating with partners worldwide to strengthen a secure and resilient technology ecosystem.

For further inquiries, please contact:
Email:Charles.liao@theonelab.co
Phone:(02)8601-2828

TEC

【India TEC】India NCCS Extends Pro-Tem Security Certification to a Two-Year Validity (Effective Jan 1, 2026)

/in ,

Key Update from DoT/NCCS: Scheme Extension and Certificate Validity Upgrade

Based on the latest official communications released by India’s Department of Telecommunications (DoT) and the National Centre for Communication Security (NCCS), the Pro-Tem Security Certification Scheme has been extended for an additional two (2) years effective from January 1, 2026. In parallel, the validity of individual Pro-Tem certificates has been increased from six (6) months to two (2) years. The policy is intended to provide the industry with greater operational certainty and sufficient transition time while formal security testing and certification activities continue under the national framework.

Scope: ITSAR-Mandated Products Remain In-Scope

The Pro-Tem certification continues to be closely aligned with the Indian Telecommunication Security Assurance Requirements (ITSAR). In practice, it primarily applies to regulated product categories such as IP Routers and Wi-Fi CPE (including routers, Wi-Fi access points/CPE devices, and related variants). Importantly, the extended validity should not be interpreted as an exemption from security compliance obligations. Instead, it is a mechanism to support market continuity while products undergo required testing and certification procedures.

Official Rationale: Business Continuity and Reduced Renewal Burden

NCCS has emphasized that the adjustment aims to: ensure continuity of business operations, reduce pressure caused by frequent renewals, and ease the transition toward full-scale mandatory security certification. For products already holding a Pro-Tem certificate, stakeholders are advised to track certificate status and any renewal/extension requirements through NCCS/MTCTE processes and subsequent notices, particularly where import clearance, delivery timelines, or customer commitments depend on valid certification status.

Ongoing Monitoring and Customer Advisory

Our team will continue to monitor further announcements and implementation guidance from DoT/NCCS, including any follow-up notifications, procedural clarifications, and updates related to the Pro-Tem pathway and subsequent standard/graded certification regimes. We will keep customers and partners informed as additional details become available.

TEC

【TEC-India-Ai Server】 The ONE Supports a Leading Taiwanese OEM in Securing India TEC Certification

/in ,

Enabling AI Server Market Entry and Reducing Customs Clearance Uncertainty in India

The ONE today announced that it has successfully supported a leading Taiwanese OEM in obtaining India’s TEC certification for its AI server products—accelerating market entry into India and strengthening compliance readiness for stable shipments and smoother customs clearance. As India’s demand for ICT infrastructure and data center deployment continues to grow, Taiwan’s AI server supply chain is expanding globally while facing increasingly complex market-access and import compliance requirements.

AI Server Architectures Involving Switch Systems Increase Import Scrutiny

In many cases, traditional server products may not be subject to mandatory certification. However, modern AI server architectures typically incorporate high-speed interconnect designs between CPUs and GPUs, often involving switch systems that enable switching functionality. During importation, such components may raise concerns at customs due to regulatory considerations around switch-related items, potentially leading to additional inspection, document requests, or clearance delays. To avoid delivery risks caused by differing interpretations, The ONE worked closely with the customer to implement a proactive compliance strategy—preparing the required technical documentation, aligning test and evaluation plans, and managing the overall TEC application process. As a result, the customer secured certification to help ensure more predictable clearance and delivery timelines.

Addressing Non-Scale Out System Challenges with Speed and Execution Discipline

This project also covered a new Non-Scale Out system, which introduced multiple practical challenges across test conditions and certification workflows compared with conventional approaches. The ONE collaborated with its India-based partners and engaged in intensive, ongoing communications with TEC to clarify applicability, evidence expectations, and documentation positioning. By maintaining a high-efficiency project cadence and clear milestone control, The ONE successfully met the strict timeline requirements expected by a world-class brand.

Continuing to Strengthen Cross-Border Compliance Services for Taiwan’s AI Supply Chain

The ONE will continue investing in international regulatory research and cross-border compliance enablement, helping more Taiwanese manufacturers enter overseas markets with greater speed and confidence—so Taiwan’s AI supply chain can scale globally with stronger trust, resilience, and execution capability.

For further inquiries, please contact:
Email:Charles.liao@theonelab.co
Phone:(02)8601-2828

TEC

【India_TEC】 India NCCS Updates ITSAR: Wi-Fi CPE and IP Router V2.0.0 Released; Cloud-Implemented Exemption Extended to 31 Mar 2026

/in ,

Highlights

India’s National Centre for Communication Security (NCCS) has released ITSAR V2.0.0 for Wi-Fi CPEs and IP Routers (Release date: 01 Dec 2025). These updated requirements serve as a key reference for product security alignment, documentation preparation, and compliance planning for suppliers targeting the Indian market.

Key 2026 Milestone

In an official memorandum dated 07 Jul 2025, NCCS confirmed that the exemption from security testing/certification for cloud-implemented IP Routers and Wi-Fi CPEs has been extended until 31 March 2026. Stakeholders are advised to treat this date as a major planning checkpoint and to accelerate internal readiness activities to minimize schedule and supply-chain risks beyond the exemption window.

Recommended Actions

  • Confirm product classification (Wi-Fi CPE vs. IP Router) and deployment model (including cloud-implemented architectures).
  • Perform a gap assessment against ITSAR 2.0.0, updating security design, evidence packages, and test plans accordingly.
  • Build a 2026 execution roadmap aligned to the exemption end date (31 Mar 2026), including certification lead times and procurement commitments.

Sources (Official NCCS Documents)

https://nccs.gov.in/public/circulars_sc/ExtensionOfMandatoryDateForCloudRouterCPE.pdf

https://nccs.gov.in/public/latest_updates/ITSAR402122512.pdf

https://nccs.gov.in/public/latest_updates/ITSAR201012512.pdf

【India BIS】A Major Milestone! We Successfully Assisted Our Client in Achieving the First Taiwan-Developed CCTV Product Certified Under India’s ER:01 Requirement

/in

Our team is proud to announce that we have successfully supported our client in obtaining certification for the first Taiwan-developed CCTV product compliant with India’s ER:01 (Essential Requirements: 01) regulatory standard. This marks a significant achievement and an important gateway for entering the rapidly expanding Indian surveillance market. The accomplishment highlights not only our team’s professional capabilities, but also the strong trust our client has placed in us.

In recent years, India has strengthened safety and technical regulations for surveillance equipment, making ER:01 one of the most challenging requirements for CCTV products seeking market approval. Through rigorous testing, documentation review, and cross-functional technical coordination, our team helped the client complete the full compliance process — setting an industry-first milestone in Taiwan.

We recognize that such success is built upon long-term client trust and close collaboration, combined with the dedication of our team members in regulatory analysis, test planning, engineering support, and project management. Every contribution played a crucial role in reaching this achievement.

Moving forward, we will continue leveraging our regulatory expertise to help more companies expand globally, providing comprehensive, efficient, and reliable compliance and certification services. We remain committed to being the trusted partner for clients navigating international market entry.

For further inquiries, please contact:
Email:Charles.liao@theonelab.co
Phone:(02)8601-2828

anab

The One Lab Achieves ANAB ISO/IEC 17025:2017 Accreditation

/in

18031We are proud to announce that The One Testing Technology Company Limited has been officially accredited by the ANSI National Accreditation Board (ANAB) for compliance with ISO/IEC 17025:2017 (Certificate No. AT-3425, valid until September 26, 2027).

This accreditation demonstrates our technical competence and robust quality management system. Our test reports are now recognized under the ILAC-MRA Mutual Recognition Arrangement, trusted globally by regulators and industries.

Scope of Accreditation
• Information Technology – Cybersecurity
• Standards covered:
• hEN 18031-1:2024
• hEN 18031-2:2024
• hEN 18031-3:2024
• ETSI EN 303 645

Product categories
• Internet-connected devices
• Childcare radio equipment, toys, wearables
• Devices processing monetary or virtual value
• Consumer IoT products
• Focus: Cybersecurity of hardware and embedded softwareThis milestone affirms our commitment to excellence and enables us to deliver internationally recognized cybersecurity testing and certification services to the ICT and IoT industries worldwide.
For further inquiries, please contact:
Email:Charles.liao@theonelab.co
Phone:(02)8601-2828

【BSMI_News】BSMI Plans to Enforce New Cybersecurity Requirements — THE ONE Keeps You Ahead

/in

To enhance the cybersecurity of ICT and AV products, the Bureau of Standards, Metrology and Inspection (BSMI), Ministry of Economic Affairs, recently released a draft amendment for mandatory cybersecurity testing on ten categories of regulated products. The new regulations are expected to take effect on January 1, 2027. THE ONE Testing Technology reminds all manufacturers to take early actions for compliance and product readiness.

Key Highlights of the Proposed Amendments

1. New Cybersecurity Testing Standards

  • Additional standards introduced include CNS 18031-1, CNS 16190, and the CNS 16120 series.
  • Products will be required to undergo different cybersecurity tests depending on whether they have wireless or wired network capabilities.

2. Applicable Product Categories

  • Digital cameras and camcorders
  • Network routers, bridges, gateways (including smart speakers and home assistants)
  • Monitors, video recorders/players, and televisions (including tiled and connected types)

3. Adjusted Verification Methods

  • New certification schemes added:
    • Total Quality Management (TQM) system
    • Process Quality Management (PQM) system
    • Factory Inspection Scheme
  • The current verification methods will be fully phased out starting January 1, 2027.

4. Type Approval and Registration

  • New applications must include type test reports and quality system certificates that meet the updated standards.
  • Existing certificate holders must complete recertification by the end of 2026 to avoid invalidation of their certificates.

 

📞 In response to the new regulatory updates, The One brings extensive experience in cybersecurity testing and inspection. If you have any questions, feel free to contact us — we’re here to help ensure your products are fully prepared to meet the new requirements.

Email: Charles.liao@theonelab.co

Phone: (02)8601-2828

 

THE ONE not only provides you with compliant and accurate cybersecurity testing services, but also has a professional team offering GMA services, helping your electronic products overcome international barriers and enter markets around the world.

THE ONE, One Total Solution.

BIS ER:01

Key Facts about BIS ER:01 Certification for CCTV in India – Don’t Overlook These Critical Points!

/in

India has significantly raised its cybersecurity bar for CCTV products. BIS ER:01 (Essential Requirements) certification is now mandatory for all surveillance equipment manufactured or imported for the Indian market. However, many brands face bottlenecks in the application process, series planning, and documentation, resulting in delays and higher costs.

THE ONE, trusted by clients for our practical experience, has successfully managed multiple ER:01 projects and collaborated closely with Indian authorities. This press release summarizes the most common pitfalls and key points you must know. For more in-depth, actionable guidance, contact us directly for a consultation!

1. Series Planning: Not All Models Can Be Grouped Together

Have multiple similar models and want to save costs through series certification?
India’s rules for “series formation” are clear: the same SoC, unchanged PCBA security layout, identical firmware hash, and more. Even one inconsistency may require separate testing.
To maximize your series approval strategy and avoid surprises, consult THE ONE for case studies and optimization advice.

2. Documentation & Timelines: Every Detail Affects Approval

BIS ER:01 application requires more than basic specs—it demands security architecture, key management, hardware/software BOM, and comprehensive technical evidence.
Over 60% of first-time applicants face delays due to incomplete documents. With THE ONE’s pre-submission check, you can prevent rejections and save precious time.

3. Lab Testing & On-Site Review: Collaboration Between Factory & Technical Teams Is Vital

BIS designated labs may request live device operations and verification. If debug interfaces aren’t pre-disabled or explanations aren’t clear, test failure and re-submission are real risks.
THE ONE offers a complete playbook and on-site coaching to help your team sail through audits and lab tests smoothly.

Final Advice: There Is No One-Size-Fits-All in BIS Compliance—Strategy Matters!

India’s BIS compliance requirements are nuanced; every product and factory scenario is unique.
THE ONE specializes in ER:01 strategy, series approval planning, and documentation—helping brands, manufacturers, and OEM/ODM clients achieve smooth, risk-free market access.

Have a product for India? Need advice on optimal series formation or documentation? Contact THE ONE for expert consultation and a preliminary compliance review!

FCC Cyber

U.S. Government to Require Cybersecurity Trust Mark (CTM) for IoT Purchases Starting 2027

/in

FCC Cyber

[June 12, 2025 — Taipei] President Donald J. Trump has signed a new executive order mandating that, starting January 4, 2027, all Internet of Things (IoT) devices procured by U.S. federal agencies must be certified under the Cybersecurity Trust Mark (CTM) program. Originally launched by the Federal Communications Commission (FCC) in 2023, CTM will soon become a mandatory benchmark for national cybersecurity in the public sector.

Reference,Sec 7 (c):

Sustaining Select Efforts to Strengthen the Nation’s Cybersecurity and Amending Executive Order 13694 and Executive Order 14144 – The White House

📌 What Is the Cybersecurity Trust Mark?

The CTM is a U.S. cybersecurity labeling initiative for consumer-grade IoT devices. It helps buyers identify products that meet security best practices based on the NIST IR 8425 guidelines.

Key features include:

  • ✅ Secure-by-design standards (no default passwords, software updates, vulnerability reporting)

  • ✅ Compliance assessed by third-party testing labs

  • ✅ Dynamic QR codes linking to real-time product compliance info

 

📦 What Devices Are Covered?

Initial scope includes:

  • Wireless routers and extenders

  • IP cameras and smart doorbells

  • Smart plugs, lights, and appliances

  • Smart wearables (watches, fitness bands)

The scope may expand to commercial and industrial IoT equipment in the future.

🌐 Global Supply Chain Impact

Once mandatory for U.S. federal procurement, CTM will have ripple effects worldwide:

  • Manufacturers must design security architecture upfront (e.g., secure MCUs, OTA updates)

  • Exporters will need FCC-approved certification labs

  • IoT exporters from Taiwan, China, South Korea, and beyond must plan for compliance to stay competitive

 

📞 Need CTM Certification Support? Contact THE ONE

At The One, we specialize in IoT cybersecurity Testing Service. Our services include:

  • Regulatory analysis and CTM compliance mapping

  • Lab Testing

  • Continuous updates on NIST/FCC cybersecurity requirements

For further inquiries, please contact:
Email:Charles.liao@theonelab.co
Phone:(02)8601-2828

BIS ER:01

【India】BIS Permits Sale of Pre-ER-01 CCTV Stock Amid Compliance Challenges

/in

BIS ER:01

The surveillance industry receives crucial relief as the Bureau of Indian Standards (BIS) announces that CCTV manufacturers and importers struggling with the new ER-01 security testing requirements are allowed to sell stock imported or manufactured before April 9, 2025.

Challenges Posed by the ER-01 Security Regulation

Since the mandatory implementation of ER-01 on April 9, 2025, many license holders have failed to meet the updated criteria, resulting in BIS cancelling licenses and marking registrations inactive on the BIS portal. The deferment of R-number issuance further restricted sales of previously imported CCTV products in the Indian market.

BIS Issues Temporary Sales Permission to Ease Industry Pressure

To ease the transition, BIS now permits the sale of CCTV cameras holding valid safety registration under IS 13252 imported or manufactured before April 9, 2025, even if they do not comply with the latest Essential Requirements (ER). Manufacturers can expect official confirmation from the Ministry shortly.

Industry Response and Future Outlook

This measure provides a temporary reprieve, allowing companies to align with the new compliance framework while minimizing supply chain disruptions. Industry stakeholders are advised to stay tuned for further updates.

For further inquiries, please contact:
Email:Charles.liao@theonelab.co
Phone:(02)8601-2828