EMC China Lab

What is the UK PSTI Certification?

Views :
Update time : 2024-07-17

Introduction to the Product Security and Telecommunications Infrastructure Act (psti Act 2022)

The UK has mandated the enforcement of the Product Security and Telecommunications Infrastructure Act (PSTI Act 2022) starting from April 29, 2024. This applies to England, Scotland, Wales, and Northern Ireland. Products within the scope of this regulation must obtain psti certification as soon as possible to ensure smooth entry into the UK market.

 

Obliged Entities:

Manufacturers, importers, and distributors of relevant products must comply with the security requirements of this Act. They are responsible for creating compliance declarations, maintaining appropriate records, investigating compliance failures, ensuring products are accompanied by compliance declarations, and taking action in the event of compliance failures.

 

Scope of Products for uk psti Certification

The certification covers most IoT/connected products, such as smartphones, smart appliances, routers, smart home assistants, wearable fitness trackers, outdoor leisure products, connected children's toys, baby monitors, cellular-connected tablets, computers for children under 14 (desktops, laptops), and products that do not connect directly to the internet but can connect to multiple other devices, such as smart lighting fixtures, smart controllers, and IoT base stations.

 

Types of involved products include smart speakers, network terminals, home cameras, wearable devices, home smart gateways, smart home printers, smart locks, and home connected sensors.

 

Exempt Products:

Computers (desktops, laptops) used by children over 14, tablets without cellular connections, medical devices, electric vehicle charging stations, smart meter products, and products compliant with relevant legislation supplied to Northern Ireland.

 

uk psti certification Requirements

PSTI certification's cybersecurity requirements are mainly divided into three aspects:

1. Prohibition of universal default passwords;

2. Implementation of vulnerability disclosure management;

3. Transparency in product security update services.

These requirements can be assessed directly through PSTI certification or by referencing the cybersecurity standards for consumer IoT products, ETSI EN 303 645. Meeting the requirements of the three chapters and items of ETSI EN 303 645 is equivalent to complying with the UK PSTI certification requirements.

PSTI Act and ETSI EN 303 645 Standard Testing Process

1. Preparation of Sample Materials:

   Three sets of samples, including the main unit and accessories, unencrypted software, user manuals, specifications, related services, and login accounts.

2. Establishment of Testing Environment:

   Establish a testing environment according to the user manual.

3. Execution of Cybersecurity Assessment:

   Document review and technical testing, inspection of supplier questionnaires, and provision of feedback.

4. Vulnerability Remediation:

   Provision of consulting services to fix vulnerabilities.

5. Issuance of Report:

   Issuance of PSTI assessment report or ETSI EN 303 645 assessment report.

 

China JJR Laboratory is an IEC 17025 authorized laboratory providing UK PSTI certification and ETSI EN 303 645 standard services. Feel free to consult us for a quote. We can help you save 30% on costs.


Email:hello@jjrlab.com


Leave Your Message


Write your message here and send it to us


Related News
Read More >>
Kitchen Appliances UL982 Test Report Guide Kitchen Appliances UL982 Test Report Guide
07 .15.2026
Need to sell kitchen appliances on Amazon or Temu? Ensure compliance with the mandatory UL982 safety...
UL + UN38.3 Testing for Home Appliances with Lithi UL + UN38.3 Testing for Home Appliances with Lithi
07 .15.2026
Amazon mandates UL (e.g., UL1017, UL1642) and UN38.3 standards testing for lithium battery appliance...
PTCRB Certification for Mobile & Communication PTCRB Certification for Mobile & Communication
07 .15.2026
North American PTCRB certification ensures device network compatibility via 3GPP TS 51.010-1 and CTI...
PTCRB Certification Process and Cycle PTCRB Certification Process and Cycle
07 .15.2026
JJR LAB streamlines the 4-week PTCRB certification process, ensuring compliance with strict testing ...
Operator Certification Guide: North American PTCRB Operator Certification Guide: North American PTCRB
07 .15.2026
Get North American PTCRB Certification with JJR LAB. We test RF, Protocol, SIM, Audio, and OTA per C...
JJR Lab Granted PTCRB Authorized Testing Qualifica JJR Lab Granted PTCRB Authorized Testing Qualifica
07 .15.2026
JJR LAB is granted PTCRB Authorized Testing Qualification, offering 3GPP standard testing for 5G NR,...
What is European Operator GCF Certification? What is European Operator GCF Certification?
07 .15.2026
GCF certification ensures mobile devices meet operator testing standards for global networks. JJR LA...
What Are the Types of PTCRB Certification? What Are the Types of PTCRB Certification?
07 .14.2026
PTCRB certification types—Initial, Integrated, Variant, and ECO—ensure 3G/4G/5G device compliance wi...

Leave Your Message