METI Formulated a List of Requirements for Ensuring Security in Procurement of IT Products
The Ministry of Economy, Trade and Industry (METI) and the Information-technology Promotion Agency, Japan (IPA) formulated a List of Requirements for Ensuring Security in Procurement of IT Products, one of METI’s efforts to promote the use of highly secure and reliable IT products. The list is a revision of the previous "List of Products Field Certified under the IT Security Assessment and Certification Systems."
The list is a collection of possible security threats that should be taken into consideration by the IT products field including multifunction digital machines and firewall software, as well as requirements for ensuring security to protect such products from possible threats.
On May 19, 2014, the Information Security Policy Meeting, chaired by the Chief Cabinet Secretary, decided on the Management Standards for Information Security Measures for the Central Government Computer Systems (the 2016 version), and the new list was referred to in the Standards. Therefore, the government will be able to effectively and efficiently procure IT systems considering information security.
In addition, the new list will be useful not only for government procurement but also for private enterprises’ and organizations’ procurement when purchasing IT products that are able to counter expected threats.
For encouraging the public to use the new list, IPA created and publicized a guidebook to complement the list:
URL: https://www.ipa.go.jp/security/it-product/guidebook.html (in Japanese)
For further details, see the Japanese language press release.
May 19, 2014
Division in Charge
Office for IT Security Policy, Commerce and Information Policy Bureau