Inclusion of CCTV Cameras under BIS Compulsory Registration Scheme

The Ministry of Electronics and Information Technology (MeitY), through its IPHW Division, has announced a significant amendment to the "Electronics and Information Technology Goods (Requirements for Compulsory Registration) Order, 2021." This amendment, published on April 9, 2024, underscores the Central Government's commitment to enhancing public security and trust in electronic and information technology goods by mandating the inclusion of CCTV cameras under the compulsory registration scheme.

Effective six months from the publication date, CCTV cameras must conform to the Indian Standard IS 13252: Part 1: 2010, titled "Information Technology Equipment - Safety General Requirements." This inclusion aims to ensure that CCTV systems meet stringent safety and security requirements, enhancing their reliability and effectiveness in safeguarding public and private spaces.

To comply with this amendment, manufacturers and suppliers must ensure that their CCTV products adhere to the Essential Requirements as outlined in the annexure of the notification. Compliance will necessitate obtaining test reports from BIS-recognized laboratories and securing a license to use the Standard Mark, as per Scheme II of the BIS Conformity Assessment Regulations, 2018.

To fortify the security and functionality of CCTV systems, the following areas must be rigorously addressed:

Physical Security: Implement tamper-resistant enclosures and locking mechanisms to deter unauthorized access.

Access Control: Employ authentication, Role-Based Access Control (RBAC), and regularly update access permissions to reflect personnel changes.

Network Security: Ensure encryption for data transmission to protect against unauthorized access.

Software Security: Enforce regular updates, disable unused features, and implement strong password policies.

Penetration Testing: Conduct thorough penetration testing to identify and mitigate vulnerabilities, ensuring resilience against cyberattacks.

The compliance framework includes detailed parameters across several categories:

Hardware Level Security Parameters:

• Disable or protect debugging interfaces.
• Ensure unique cryptographic keys and certificates.
• Secure on-chip debugging interfaces and sensitive data storage.
• Implement tamper resistance and intellectual property protection.
• Validate boot image signatures and use cryptographically secure random number generators.

Software/Firmware:

• Enable memory protection controls.
• Protect data-in-transit using transport layer security.
• Validate server connection digital signatures.
• Replace banned C functions with safe alternatives.
• Maintain a software bill of materials and review for hardcoded credentials.
• Implement code signing, anti-rollback features, and secure firmware updates.

Secure Process Conformance:

• Authenticate and encrypt wireless communications.
• Source components from trusted suppliers and conduct supply chain risk assessments.
• Avoid proprietary network protocols unless fully documented and shared.

Security Conformance at Product Development Stage:

• Provide detailed design and architecture information to counter counterfeit and malware threats.
• Implement threat mitigation strategies and deploy malware detection tools.
• Conduct comprehensive supply chain risk assessments and maintain business continuity plans.

At Rego Services, we specialize in Electronics & IT Compliance Services, offering comprehensive support to help companies navigate regulatory requirements for wire/wireless interfaces and equipment. Our blend of technical and regulatory expertise, coupled with deep industry experience, positions us uniquely to assist our clients in achieving compliance swiftly and efficiently. By partnering with us, companies can not only meet regulatory standards but also enhance consumer trust and gain a competitive edge.

Our mission is to help clients lead into the future by solving their most complex and mission-critical issues through tailored solutions. With our reputation for excellence and dedication to improving consumer trust, we stand ready to assist you in making your products compliance-ready in the shortest possible time.

For more information on how we can support your compliance needs, please contact us.

Visit www.regoservices.com or reach out at [email protected] / +91-9667526974, or +91-9667526584 for a consultation.

#regoservices #BEE #BIS #TEC #WPC #ISI #ISO #CDSCO #BEERegistration #BISRegistration #TECCertification #TECApproval #WPCCertification #ISICertification #ISOCertification #MobileEntrepreneurs #Certifications #BusinessSuccess #ExpertGuidance #StayCompliant #WirelessTechnology #TrademarkSuccess #ProtectYourBrand #LegallyStandOut