Contact

What are you looking for?

Some topics you might be interested in

SGS Annual ReportJob OpportunitiesUpcoming WebinarsSustainability Solutions

CSA Singapore Security Evaluation Services

Demonstrate the security of your product in compliance with the requirements of the Cybersecurity Agency (CSA) of Singapore with SGS.
CSA

When it comes to ensuring the cybersecurity of your product in Singapore, the Cybersecurity Agency (CSA) sets the standard. CSA offers and supports certification schemes that objectively assess product cybersecurity, promoting a security-by-design approach throughout the product lifecycle. Their mission is to create a resilient and trusted digital environment, essential for a 'smart nation.'

We are proud to be an approved laboratory under the Cybersecurity Labelling Scheme (CLS), Singapore Common Criteria Scheme (SCCS), and National IT Evaluation Scheme (NITES). Our CSA evaluation services empower you to demonstrate your product's security in conformance with international standards.

Why choose CSA Singapore security evaluation from SGS?

We help you:

  • Achieve the CSA’s Cybersecurity Labelling Scheme (CLS) for network-connected consumer smart devices
  • Empower consumers to make informed purchasing decisions by discerning your devices' security levels
  • Differentiate your products and reduce compliance costs across nations through mutual recognition
  • Prepare your products for other IoT security schemes and reduce evaluation costs by reusing test results

Cybersecurity Labelling Scheme (CLS)

The CLS, the first scheme in Asia-Pacific, provides transparency in the security of all consumer IoT devices. It uses a four-tier rating label:

  • Tier one: meeting basic security requirements
  • Tier two: adherence to the principles of security-by-design
  • Tier three: absence of known common software vulnerabilities
  • Tier four: resistance against common cyber attacks
Cybersecurity Labelling Scheme logo

Singapore has signed Memorandums of Understanding (MoU) with Finland and Germany for mutual recognition of Cybersecurity Labels issued by CSA, Traficom (Finnish Transport and Communications Agency), and BSI (Germany Federal Office for Information Security).

Under MoU with Finland:

  • Products with Singapore CLS Level 3 and above are recognized by Finland
  • IoT devices meeting Finland’s Cybersecurity Label requirements are recognized as Level 3 of Singapore’s CLS

Under MoU with Germany:

  • Products with Singapore CLS Level 2 and above are recognized by Germany
  • IoT devices meeting Germany’s IT Security Label requirements are recognized as Level 2 of Singapore’s CLS

CLS-Ready certification

CLS-Ready is a complementary scheme to CLS, focused on common IoT platforms. By using CLS-Ready certified hardware/platforms and their associated security functionalities, it's easier to meet CLS Level 4 requirements. The CLS-Ready label distinguishes IoT platform manufacturers from competitors.

We can help platform manufacturers:

  • Prepare for CSA’s CLS-Ready certificate by reviewing submissions
  • Conduct evaluations to achieve the CLS-Ready certificate
CLS MD logo

Cybersecurity Labelling Scheme (CLS) for Medical Devices

CLS(MD) is a voluntary scheme indicating security levels in medical devices using a four-level rating label:

  • Level 1: Security Baseline Requirements
  • Level 2: Enhanced Security Requirements
  • Level 3: Enhanced Security Requirements, Software Binary Analysis, and Penetration Testing
  • Level 4: Enhanced Security Requirements, Software Binary Analysis, Security Evaluation

We can help you:

  • Prepare for CLS(MD) evaluation
  • Empower consumers to make informed purchasing decisions
  • Differentiate your products by obtaining the label
  • Prepare your products for compliance with other medical device rules and regulations

Singapore Common Criteria Scheme (SCCS) and National IT Evaluation Scheme (NITES)

Singapore is recognized as a CC Certificate Authorizing Nation and subscribes to the objectives of the CCRA: improving IT product evaluations under high and consistent standards. The SCCS provides a cost-effective regime for the info-communications industry.

Singapore CC scheme
NITES logo

NITES ensures the most stringent requirements for safeguarding Singapore’s national interests. With over 35 years of experience in Common Criteria evaluations, we assess IT products up to the highest security level of EAL 7+.

We provide:

  • Consultancy services, including readiness assessment, pre-evaluation workshops, developer support, pre-testing, executives training, and Common Criteria scoping
  • Product evaluation based on SCCS requirements against EAL, PP, and cPP, including document review, vulnerability scans, security functional tests, and in-depth penetration testing
Security Consultant Touching Network of Lock Icons on Virtual Screen

Why SGS?

We are the world’s leading provider of testing, inspection and certification services to the cybersecurity industry, providing CC evaluations to NSCIB requirements. We are recognized as the global benchmark for quality and integrity. Accredited by Common Criteria (CC), EMVCo, SESIP, PSA Certified, MasterCard, PCI, Visa, American Express, and numerous national schemes, we boast the highest number of CC accreditations globally. As the largest security evaluation laboratory with more than ten locations across the globe, we execute over 700 projects annually for hundreds of clients worldwide.

To discuss your CSA Singapore security requirements, contact us today.

Related Services

More Services

News & Insights

View all
View all

Contact Us

Send us a message
  • Brightsight

+31 15 269 2500

brightsight.com

Brassersplein 2,

2612 CT,

Delft, Netherlands