Workshop Summary Agenda

The TCBC Council Workshop 2025 provides essential updates from North American and international regulators, along with insights into new methods and equipment that help meet industry standards. Cybersecurity remains a central focus, with panel discussions covering product development, manufacturing, testing, and perspectives from Telecommunication Certification Bodies (TCBs).

RF Exposure and SAR Simulations

This session focused on RF exposure training, testing methodologies, and the use of simulations for FCC and ISED compliance. Presentations also addressed new standards for Specific Absorption Rate (SAR) and Incident Power Density (IPD) simulations.

Regulatory Updates Across Regions

Canada’s updates emphasized certification procedures, application volumes, and changes to test methods like ANSI C63.10. ISED stressed improved oversight due to increasing errors and inconsistencies in submissions, particularly related to antenna gains, HVIN mismatches, and outdated SAR test procedures.

In the U.S., the FCC discussed rulemakings related to foreign adversary countries, affecting recognition of test labs and TCBs. The U.S. Cyber Trust Mark for IoT devices was also highlighted, with a focus on regulatory integrity and cybersecurity.

The European Union shared insights from REDCA meetings and provided updates on the Cyber Resilience Act (CRA) and cybersecurity obligations under RED Articles 3.3(d), (e), and (f). Authorities focused on compliance planning, expanding charging requirements, and refining enforcement for refurbished products.

Japan’s updates included changes to the use of the 5.2 GHz band for WLANs in airspace and the reorganization of certification under the amended Radio Act. These updates support drone operations and other airborne use cases.

Korea presented information about the KC mark and changes to its conformity assessment system. Amendments to the Radio Act introduced a new SDoC pathway for low-risk equipment.

Mexico is undergoing major regulatory restructuring with the dissolution of IFETEL and the formation of the Comisión Reguladora de Telecomunicaciones (CRT). While current certifications remain valid, delays are expected as CRT becomes operational.

Cybersecurity and Software Supply Chain

Cybersecurity’s influence on regulatory compliance continues to grow. Presentations emphasized the expanding role of the Software Bill of Materials (SBOM) in supply chain transparency. The U.S. Cyber Trust Mark and EU cybersecurity regulations were discussed as critical tools for enhancing product security.

SBOMs provide inventories of all software components, helping manufacturers:

• Detect vulnerabilities
• Ensure licensing compliance
• Establish frameworks for incident response

As regulatory expectations rise, organizations must proactively monitor open-source and proprietary software components.

Testing Methodologies and Data Re-use

The workshop highlighted common test errors and how modernizing methods can improve accuracy. Sessions explored the evolution of EMC immunity standards and the value of referencing previously approved test data.

Data re-use can reduce certification costs and expedite market access, especially for manufacturers with modular designs. However, both the FCC and ISED emphasize the importance of maintaining technical consistency and traceability in reused data.

Emerging Technologies

Wi-Fi 6E and Wi-Fi 7 were key topics due to their global rollout. These technologies support wider channels and faster speeds but face inconsistent regulatory treatment across markets.

Participants discussed how spectrum availability varies. Early adopters like the U.S. and Korea opened the full 6 GHz band, while others such as the EU allow only partial access. This regulatory fragmentation affects device design and certification timelines.

Presentation Summaries with Slides and Audio

Day 1

ISED Certification Updates and Common Errors

ISED projects a significant increase in application volume, expecting around 10,800 submissions in fiscal year 2025–2026. Much of this growth will stem from single-model certifications.

To manage this volume, ISED has intensified scrutiny of new recognition applications. Certification Bodies (CBs) that repeat errors must take corrective action. Passbacks, applications returned for correction, now require logging as formal quality issues within CBs’ systems.

ISED frequently identifies the following technical problems:

• Inconsistent data across documents (e.g., mismatched HVINs and antenna gains)
• Use of outdated test standards such as ANSI C63.10-2013
• Identical SAR system check data across different reports
• Missing mandatory user manual statements

ISED launched a blockchain-based pilot to improve compliance document security. Additionally, it enhanced the Spectra search system, reducing typical query times to under five seconds.

ISED Directorate of Regulatory Standards (DRS) Update

Key regulatory developments include:

• RSS-193 released for mmWave devices
• Extension of the RSS-HAC transition deadline to January 1, 2028
• Updates to RF exposure standards:
  • RSS-102.SAR.MEAS Issue 2
  • RSS-102.IPD.MEAS/SIM for IPD simulations (6 GHz to 300 GHz)

Although ISED recognizes some laboratories for simulation testing, it has not yet approved any CBs to conduct simulation-based assessments. Therefore, ISED must evaluate these applications individually, which may cause delays.

Mandatory Corrective Actions and Enforcement

Due to concerns over declining work quality, ISED now enforces stricter oversight. It:

• Closely reviews CAB recognition and renewal submissions
• Requires CBs to treat passbacks as complaints
• Has suspended multiple laboratories due to repeated systemic issues

C-PRAV: Australia, New Zealand, and India Approvals

Effective GMA planning requires early identification of markets and understanding all relevant standards, including those beyond radio.

Australia and New Zealand share the Regulatory Compliance Mark (RCM) for safety and EMC. However, New Zealand maintains separate radio approval processes, requiring distinct declarations and R-NZ labeling.

India’s TEC MTCTE scheme expanded on August 25, 2025, to include 14 new products. Devices like Wi-Fi CPEs and IP routers must now undergo mandatory cybersecurity testing under the NCCS ITSAR framework.

The WPC is evaluating draft rules that could allow license-exempt use of the 5925–6425 MHz band for Wi-Fi 6E and Wi-Fi 7 devices. Meanwhile, BIS safety certification applications face prolonged review times, especially for imports from China and Vietnam due to NOC requirements.

EU and REDCA Report

The RED cybersecurity requirements under Articles 3.3(d), (e), and (f) became mandatory on August 1, 2025. These will be incorporated into the Cyber Resilience Act (CRA), which becomes fully enforceable on December 11, 2027.

However, challenges remain. ADCO RED found that many manufacturers treat RED Risk Assessments as post-test justifications rather than planning tools. The European Commission is pushing for these to become proactive documents in the compliance process.

Additional developments include:

• Expansion of Article 3.4 charger standards to wearables, AR/VR, and drones
• Standardization of wireless charging, expected by March 2027
• Clarification of software-related modifications that trigger new regulatory obligations

Market surveillance efforts have increased scrutiny of refurbished products. Authorities are working to define what constitutes a “modification,” particularly when it involves component replacements like screens or batteries.

Approve-it: Mexico Regulatory Update

On October 17, 2025, Mexico dissolved IFETEL and launched the Comisión Reguladora de Telecomunicaciones (CRT). The new authority operates under the ATDT.

While existing Certificates of Homologation (CoHs) remain valid, the transition has caused delays. Certification processes are expected to stabilize as CRT matures.

Key Regulatory Milestones

Two technical standards will take effect in November 2025:

• IFT-016-2024 for low-power devices (30 MHz to 3 GHz)
• IFT-017-2023 for WLAN devices (5925–6425 MHz band)

CoHs issued under Type B and Type C are valid for two years. To gain indefinite validity, applicants must submit a Memoria Técnica at least 90 days before expiration. This process is critical, especially under the new enforcement provisions linked to IFT-017.