THE door industry journal summer 2025 27 Industry News Also online at: www.dijonline.co.uk Smart security: ‘Many manufacturers have faced significant challenges in achieving full compliance’ The UK’s Consumer connectable security regime came into effect on 29th April 2024 DHF’s General Manager & Secretary, Michael Skelding, touches on how this has impacted the country’s digital landscape, and how DHF can support its members. The implementation of the PTSI Regulations in April 2024 intended to strengthen the security of consumer smart devices. The legislation addressed growing concerns over the vulnerabilities embedded within the Internet of Things (IoT). A little over a year later, DHF is reflecting on its impact, assessing its effectiveness, and considering the future for IoT security. With the Product Security and Telecommunications Infrastructure (PSTI) Regulations now law in the UK, this requires manufacturers of consumer IoT products to meet minimum cybersecurity standards. From 29 April 2024, products must eliminate default passwords, provide a clear vulnerability disclosure policy, and be transparent about security update support timelines. Non-compliance with these measures can lead to significant penalties, including fines of up to £10 million or 4% of global revenue, enforcement notices, and product recalls. “In the year following the enforcement, many manufacturers have faced significant challenges in achieving full compliance,” explains Michael. “These include uncertainty around product scope; supply chain hurdles, because importers and distributors now also share responsibility under the PSTI Regulations; implementation delays due to the complexity of managing compliance across new and existing inventory, and difficulties in producing the required Statement of Compliance (SoC), as defined in Schedule 4 of the PSTI Regulations 2023.” To support the industry, DHF has held several free educational webinars for its members, detailing the PSTI Act’s obligations for manufacturers, importers, and distributors of internet-connectable devices. A DHF Cyber Security committee has been formed to focus efforts in this area and a number of initiatives and campaigns are being created as a result of a recent meeting. These initiatives will benefit DHF members who will be kept up to date with developments. And to further assist manufacturers in demonstrating compliance and advancing best practices, Secured by Design (SBD), in collaboration with the Department for Science, Innovation and Technology (DSIT), has introduced the Secure Connected Device (SCD certification. This police-recognised certification evaluates products against all 13 ETSI EN 303 645 provisions, supports industry leadership in security innovation, offers the only police-recognised IoT security certification in the UK, and enhances trust with distributors, retailers, and consumers. www.securedbydesign.com/internet-of-things www.dhfonline.org.uk
RkJQdWJsaXNoZXIy Mzg2Nzk=