Digital standards Archives | Page 2 of 388

Singapore and Japan launch mutual recognition of IoT cybersecurity labels

Singapore and Japan have launched mutual recognition of their cybersecurity labelling schemes for Internet of Things (IoT) under a Memorandum of Cooperation that entered into force on 1 June 2026. The arrangement covers Singapore’s Cybersecurity Labelling Scheme and Japan’s JC-STAR scheme.

The Memorandum of Cooperation was signed by Rahayu Mahzam, Singapore’s Minister of State for Digital Development and Information, and Ino Toshiro, Japan’s State Minister of Economy, Trade and Industry. The Cyber Security Agency of Singapore (CSA) and Japan’s Ministry of Economy, Trade and Industry agreed to recognise cybersecurity labels issued under either scheme.

IoT devices certified under either Japan’s JC-STAR scheme or Singapore’s Cybersecurity Labelling Scheme will be eligible for streamlined recognition in the other market. Covered products include smart home assistants, home automation and alarm systems, and IoT gateways and hubs that connect multiple devices.

Japan is the fifth country to establish such an arrangement with Singapore, following Finland, Germany, South Korea, and the United Kingdom. According to Singapore authorities, the arrangement is expected to support stronger cybersecurity practices for connected devices, reduce certification burdens for manufacturers, and increase consumer confidence in smart technologies.

The CSA launched the Cybersecurity Labelling Scheme in 2020. Since then, it has received applications for more than 1,000 products, including routers, smart lighting, and smart cameras.

Why does it matter?

Connected devices are increasingly used in homes, businesses, and critical services, making cybersecurity a growing concern for governments and consumers. Cybersecurity labelling schemes are designed to help buyers identify products that meet recognised security requirements while encouraging manufacturers to improve security practices.

By recognising each other’s certification schemes, Singapore and Japan are reducing regulatory barriers and promoting greater interoperability in cybersecurity standards. The agreement also reflects broader international efforts to strengthen trust and security in the rapidly expanding IoT ecosystem.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

Finland proposes rules for EU Cyber Resilience Act

The Finnish Government has proposed the approval of national provisions supplementing the EU Cyber Resilience Act, which sets cybersecurity requirements for products with digital elements.

The legislation will enter into force on 1 June 2026, with phased application aligned with the Cyber Resilience Act’s transitional periods during 2026 and 2027. The aim is to improve the cybersecurity of connected devices and software placed on the EU market.

The Cyber Resilience Act will be supplemented in Finland by a new national act on the cyber resilience of certain products and cybersecurity certification. The act covers supervision of product-related obligations, notification of conformity assessment bodies under the Cyber Resilience Act, administrative sanctions, and national provisions linked to the EU cybersecurity certification.

Market surveillance under the Cyber Resilience Act, along with the designation and supervision of notified bodies, will be assigned to the Finnish Transport and Communications Agency, Traficom. Market surveillance of high-risk AI systems will be carried out by the authorities responsible for supervising compliance with the AI Act, depending on the sector.

Conformity assessment bodies will be able to apply to Traficom from 11 June 2026 to be notified for assessment tasks under the Cyber Resilience Act. Bodies notified by Finland will be able to carry out conformity assessments across the EU member states within their area of competence.

Finland will also add a new chapter to the Act on Electronic Communications Services concerning the collection and disclosure of domain name registration data under the NIS2 Directive. The obligations will extend beyond .fi and .ax domains where the registrar or top-level domain registry is located in Finland, after a three-month transitional period.

The Government said the domain name provisions will complement Finland’s national implementation of NIS2 and improve the availability of registration data, making it easier to tackle illegal activity online.

Why does it matter?

Finland’s legislation shows how EU cybersecurity rules are being translated into national enforcement structures. The Cyber Resilience Act sets product security obligations at the EU level, but member states still need national provisions for supervision, notified bodies, sanctions, and certification. The added NIS2 domain registration rules also show how cybersecurity implementation is expanding beyond products into online infrastructure and data availability for enforcement.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

UN launches AI Governance for Humanity Lab in Valencia

The UN Office for Digital and Emerging Technologies has launched the AI Governance for Humanity Lab in Valencia to strengthen international cooperation on AI governance.

The Lab will focus on improving interoperability between national and regional governance frameworks and supporting practical implementation across regions and sectors. Its work will include network mobilisation, comparative policy analysis, and the development of cooperative tools for AI governance.

The launch brought together policymakers, researchers, industry practitioners, and AI governance experts for workshops and a public event. Discussions focused on two initial workstreams: interoperability in AI governance and the implementation of governance frameworks by private-sector actors.

The interoperability workstream will produce a white paper for UN member states, mapping the fragmented global AI governance landscape and outlining cooperation-oriented policy options ahead of the first Global Dialogue on AI Governance in Geneva in July 2026.

A second workstream, focused on industry insights, will examine how AI governance frameworks are operationalised within companies and what challenges emerge in practice. The resulting analysis will inform discussions on safe, secure, and trustworthy AI, as well as transparency, accountability, human oversight, and human rights.

The Lab will convene global and regional meetings in Valencia, online, and in other cities. The UN said the meetings are intended to translate research and practice into actionable insights that can support multistakeholder cooperation and inform UN-led AI governance processes.

Why does it matter?

The Lab gives the UN’s AI governance agenda a more practical institutional mechanism. Its focus on interoperability responds to a central problem in global AI policy: national and regional frameworks are developing quickly, but often with limited coordination. By producing comparative analysis, policy options, and industry-focused insights, the Lab could help states and stakeholders reduce fragmentation and connect the Global Digital Compact’s AI commitments with implementation.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our chatbot!

EuroDIG 2026 closes with calls for multilingual internet and stronger digital inclusion

EuroDIG 2026 concluded with calls for stronger multistakeholder cooperation, greater digital inclusion, and wider support for multilingual internet access during the conference’s closing plenary hosted by EURid.

The final session combined celebratory reflections on the two-day event with broader policy messages on universal acceptance, digital accessibility, and cooperation across governments, the technical community, civil society, academia, and the private sector.

Opening the session, moderator Florence Ranson thanked participants for remaining until the end of what she described as a ‘fulfilling’ conference and said workshop outcomes and feedback would be shared in the coming weeks.

Co-moderator Sandra expressed surprise at the size of the audience at the wrap-up session and thanked the focal points, speakers, rapporteurs, youth participants, institutional partners, and sponsors for their contributions to the programme.

Regina, co-moderating the session, described EuroDIG 2026 as a demonstration of multistakeholder cooperation, noting that EURid hosts EuroDIG only once every ten years. She also highlighted the event’s coincidence with the 20th anniversary of the .eu domain.

Both moderators thanked the European Commission’s DG CONNECT team for supporting the event venue and programme development.

The closing session then shifted toward one of the conference’s recurring themes, the universal acceptance of multilingual domain names and email addresses.

Sarmad Hussain of ICANN said the internet must function in all languages and scripts, pointing to progress made since the Tunis Agenda of 2005 enabled development of internationalised domain names and multilingual email addresses. However, Hussain warned that many websites, platforms, and online services still fail to support non-Latin scripts and local-language identifiers despite existing technical standards.

According to Hussain, this creates a ‘universal acceptance’ challenge affecting accessibility and inclusion online. He called on developers, governments, academia, civil society, and private-sector organisations to update systems and applications so they accept all valid domain names and email addresses regardless of language or script. He also promoted the upcoming Universal Acceptance Day initiative aimed at raising awareness about the issue.

UNESCO representative Dr Xianhong Hu used the closing session to reinforce broader themes of multilingualism, inclusion, and digital cooperation. Speaking on behalf of Ambassador Salih Abduh, Hu highlighted UNESCO’s partnership with EuroDIG and linked the conference to the 25th anniversary of UNESCO’s Information for All Programme.

She noted that discussions during EuroDIG 2026 covered internet governance, universal acceptance, gender equality, youth participation, and intergenerational dialogue, reflecting UNESCO’s priorities around inclusive knowledge societies.

Hu also called for renewed cooperation among European governments, the technical community, academia, civil society, and businesses to bridge digital divides and support multilingual digital futures in the AI era.

The session concluded with a toast to partnership, an invitation for a group photo, and final thanks to participants and organisers.

The closing plenary reflected several broader themes that ran throughout EuroDIG 2026, including multistakeholder governance, digital inclusion, and concerns about unequal access to digital infrastructure and online participation.

The emphasis on universal acceptance also connected technical internet governance questions with wider debates on linguistic diversity and accessibility, highlighting ongoing gaps between existing technical capabilities and real-world adoption across online platforms and services.

EuroDIG 2026 took place on 26 and 27 May at the Charlemagne Building of the European Commission in Brussels under the theme ‘European Voices for the Future of the Internet – Celebrating 20 Years of .eu and the Beginning of a New Internet Governance Era’.

Digital Watch Observatory followed EuroDIG 2026 through a dedicated event page, featuring session information and reporting from Brussels.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

EuroDIG highlights collaboration and experimentation for WSIS+20 delivery

European national and regional Internet Governance Forum initiatives (NRIs) discussed how they can help implement the outcomes of the WSIS+20 review during a EuroDIG 2026 session focused on collaboration, local engagement, and multistakeholder governance.

The discussion examined whether NRIs should remain primarily bottom-up discussion spaces or take on a more direct role in supporting the implementation of global digital governance commitments at the national and regional levels.

Sabina Heber, moderating the workshop, described NRIs as increasingly important spaces for multistakeholder discussion, cooperation, and policy exchange. She said implementation of WSIS goals often depends on national and regional action, making NRIs key links between global frameworks and local realities.

A central debate emerged around the future role of NRIs after the WSIS+20 review.

Jordan Carter of the UK IGF argued that national and regional IGFs have traditionally not operated as ‘WSIS implementation agencies.’ Instead, he said, they usually function as bottom-up forums that relay local discussions into regional and global internet governance processes.

Matthias Kettermann of the Austrian IGF took a more proactive position, arguing that NRIs should engage more directly with WSIS action lines in the post-review environment and translate them into national priorities.

He pointed to Austria’s approach of organising youth-focused panels and rotating the Austrian IGF across different regions to involve local stakeholders, including schools, museums, and innovation departments, in discussions on AI governance and digital transformation.

Declan McDermott of IGF Ireland focused on how NRIs measure and scale impact. He proposed three approaches: ‘scaling out’ to reach more stakeholders, ‘scaling up’ to influence policymakers, and ‘scaling deeply’ to change how internet governance is understood within society.

McDermott argued that NRIs need clearer theories of change and more concrete definitions of success, warning against ‘collaborating for the sake of collaboration.’

Several speakers emphasised that NRIs are particularly valuable because they operate close to national realities and can identify emerging digital policy challenges early.

Dijana Milutinovic from Serbia’s national IGF said NRIs are well-positioned to monitor developments at the country level, raise issues for public debate, and improve the likelihood that concerns will eventually influence regulation or legislation. She added that exchange between NRIs is especially important when countries face similar regional challenges and can learn from one another’s experiences.

The workshop also explored how NRIs produce messages and policy outputs.

Carter explained that the UK IGF publishes annual key messages developed through a multistakeholder steering committee, while Serbia drafts messages during sessions and submits reports to ministries and the global IGF Secretariat.

Austria, by contrast, does not prioritise formal outcome documents and instead focuses more on convening stakeholders and creating connections that later generate initiatives indirectly.

Another major theme was collaboration and experimentation.

Concettina Cassa from Italy’s Agency for Digital Italy proposed the creation of voluntary ‘NRI labs’ as spaces for peer learning and practical cooperation between NRIs. She described them as non-binding multistakeholder spaces where participants could exchange operational experience and experiment with implementation approaches on issues such as trustworthy AI in public administration or child protection online.

According to Cassa, the challenge twenty years after WSIS is no longer only agreeing on principles, but translating them into practical cooperation and implementation.

Participants also discussed new tools for handling controversial policy debates. A representative from the Netherlands presented ‘argument maps,’ structured visual overviews that organise competing positions on contentious issues such as age verification or encryption without forcing participants to agree on a single recommendation.

Business participation emerged as another recurring challenge. Speakers said companies are often difficult to attract unless discussions address concrete operational problems or provide visible practical value.

Kettermann said Austrian organisers worked directly with the Chamber of Commerce to identify topics businesses cared about, while Serbian representatives noted that companies engage more actively when discussions focus on how regulation affects their operations and business models.

Toward the end of the session, participants stressed that NRIs’ ability to influence policymaking depends heavily on resources, institutional legitimacy, and public awareness.

Milutinovic warned that many NRIs rely largely on volunteers, limiting their capacity to produce reports, participate in coalitions, or contribute consistently to policy consultations.

The workshop concluded with several agreed-upon messages, including recognition that NRIs are effective multistakeholder forums for supporting WSIS+20 goals through awareness-raising, stakeholder engagement, peer learning, and practical experimentation.

Participants also endorsed continued dialogue through EuroDIG and supported new forms of collaboration, including NRI labs and other experimental approaches designed to strengthen cooperation while preserving the bottom-up nature of internet governance processes.

Digital Watch Observatory followed EuroDIG 2026 through a dedicated event page, featuring session information and reporting from Brussels.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

EuroDIG 2026 debates Europe’s path towards digital sovereignty

European policymakers, technical experts, and civil society representatives debated how Europe can reduce its dependence on foreign digital technologies without fragmenting the open internet during a EuroDIG 2026 session on digital sovereignty.

The discussion reflected growing concern in Europe that heavy reliance on non-European cloud providers, AI systems, platforms, semiconductors, and digital infrastructure has become a strategic vulnerability affecting not only the economy but also democratic resilience and political self-determination.

Fabrizia Benini, head of unit for the Future Internet at the European Commission’s DG CONNECT, argued that Europe’s dependencies across the digital stack are the result of years of choosing to buy technologies rather than build them domestically. According to Benini, digital sovereignty should not mean isolation or digital nationalism, but ensuring that citizens, businesses, and governments retain meaningful choice and control over digital technologies, data, and infrastructure.

She stressed that Europe remains committed to an open, global, secure, and interoperable internet while seeking to manage strategic dependencies through partnerships with trusted countries and stronger European technological capacity.

Benini also pointed to upcoming EU initiatives, including a Sovereign Tech Package covering semiconductors, cloud and AI infrastructure, and open-source technologies. She described Europe’s regulatory framework, including the GDPR, DSA, DMA, and AI Act, as an important long-term foundation, while acknowledging that regulation alone cannot deliver sovereignty.

Several participants echoed that concern, arguing that Europe has become highly effective at regulating digital systems while still depending heavily on technologies built elsewhere.

João Gomes from YouthDIG said younger Europeans increasingly want opportunities not only to regulate technology, but also to build competitive European alternatives. He warned that Europe risks becoming ‘the world’s most sophisticated regulator’ without developing sufficient industrial and technological capacity of its own.

Open source, interoperability, and trusted infrastructure emerged repeatedly as key pillars of the European approach. Frank Kruger from Germany’s Federal Ministry for Digital Transformation and Government Modernization argued that maintaining critical open-source infrastructure is essential for Europe’s resilience, security, and innovation capacity.

Peter Janssen, general manager of EURid, linked digital sovereignty to practical user control over online identities and infrastructure. Using the .eu domain as an example, he said European users should be able to retain control over their digital presence, providers, and data through open standards and interoperable systems.

At the same time, several speakers warned against allowing digital sovereignty to become a justification for internet fragmentation or excessive state control. Elonnai Hickok, Managing Director at Global Network Initiative, stressed that Europe should continue supporting open standards, interoperability, portability, and multistakeholder governance while avoiding surveillance-heavy or protectionist approaches.

The terminology itself also generated debate. Some participants preferred terms such as ‘strategic autonomy’ or ‘digital autonomy’, arguing that ‘sovereignty’ can sound nation-centric or exclusionary. Others defended the term as necessary to describe Europe’s ability to preserve democratic self-determination in a more contested geopolitical environment.

Despite differences over terminology and emphasis, the session ended with broad agreement that Europe needs a long-term strategy combining regulation, industrial policy, open standards, digital skills, infrastructure investment, and support for European alternatives.

Participants also agreed that Europe’s approach should aim for what the session’s final draft messages described as ‘resilient openness and strategic autonomy’ rather than isolation or protectionism.

Digital Watch Observatory followed EuroDIG 2026 through a dedicated event page, featuring session information and reporting from Brussels.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

European Commission marks .eu anniversary with internet governance focus

The European Commission has marked the 20th anniversary of the .eu top-level domain, presenting it as a symbol of European identity online and an element of Europe’s technological sovereignty agenda.

The milestone was celebrated during the 2026 European Internet Governance Dialogue in Brussels, where policymakers, technical experts, businesses, civil society representatives, and other stakeholders discussed the future of global internet governance.

According to the Commission, .eu has grown into the fourth-largest country-code top-level domain in Europe, with 3.8 million registrations since its launch in April 2006. The EU officials described the domain as a symbol of European identity online and an example of resilient European digital infrastructure, noting that it has operated without a single outage for two decades.

The discussions also focused on Europe’s broader approach to internet governance, digital autonomy, and the reduction of strategic technological dependencies. Executive Vice-President Henna Virkkunen said Europe is at a pivotal moment where digital autonomy, reduced dependencies, and global leadership in internet governance must go hand in hand.

The Commission linked the anniversary to future EU initiatives, including the upcoming Technological Sovereignty Package, which it said would further support Europe’s vision for a decentralised and open internet where users, businesses, and governments have real alternatives and control over their digital future.

Officials also stressed the importance of ensuring that European values, including human rights, inclusivity, and competition, continue to shape the next decade of global internet governance.

Why does it matter?

The anniversary shows how domain governance and internet infrastructure are increasingly being linked to digital sovereignty and technological dependence. By framing .eu as part of Europe’s identity, resilience, and internet governance agenda, the Commission is connecting a long-standing country-code top-level domain to broader debates on autonomy, infrastructure, trust, and Europe’s role in shaping the future of the open internet.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Vietnam introduces mandatory labels for AI-generated content

Vietnam will require disclosure labels for certain AI-generated and AI-edited content from May under a new government decree aimed at improving online transparency.

Under Decree 142/2026/ND-CP, organisations and individuals using AI systems must disclose when content has been created or altered by AI in ways that could affect perceptions of authenticity.

The rules apply to AI-generated or AI-edited audio, image, and video content, particularly material imitating real people or realistic events. Particularly, it applies to content that imitates the appearance or voice of real people or recreates real-life events in a convincing manner. According to the decree, disclosures must be clear, visible, and recognisable before or during user access to the content.

The decree states that disclosures designed to obscure the AI-generated nature of content will not satisfy the requirements. Anyways, several exemptions are included. Several exemptions are included, such as technical quality improvements that do not materially alter content.

The framework also excludes certain AI-assisted editing functions, including spelling correction, translation, summarisation, and grammar editing, where original meaning is preserved. Additional exemptions apply to internal organisational use and controlled research or testing environments not intended for public release. At the end, content produced during research, development or testing activities in controlled environments and not released to the public is also an exemption.

Authorities said disclosures may take different forms depending on content type, including labels, captions, interface notices, or audio announcements. Labels may appear directly on content, in titles, captions and descriptions, through platform interfaces or even as audio announcements. Films and artistic productions may include disclosures in opening sections, end credits or supporting materials.

Responsibility for compliance will apply both to parties generating AI content and those distributing it publicly. Parties generating or editing AI content must provide the information needed for labelling, while those publishing the material to the public must ensure disclosure rules are followed.

Vietnam’s Ministry of Science and Technology is expected to publish additional technical guidance related to the implementation of the disclosure framework. Officials said the guidance would not create additional administrative procedures or business conditions or obligations beyond those already outlined in the decree.

Why does it matter?

The decree reflects broader international efforts to improve transparency around AI-generated media as synthetic content becomes more realistic and widely accessible. Disclosure requirements are increasingly being explored by governments as a way to address misinformation risks, impersonation concerns, and public trust in digital content.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

European Commission delays tech sovereignty package again

The European Commission has postponed the presentation of its tech sovereignty package until 3 June, following several earlier delays. The publication had previously been scheduled for 25 March, 15 April and 27 May.

According to Euractiv, the package is expected to include the proposed Cloud and AI Development Act and Chips Act 2. The initiatives are intended to support digital infrastructure development and strengthen Europe’s semiconductor sector. The measures are also expected to encourage data centre investment and semiconductor manufacturing within the EU.

The latest postponement follows comments from the US ambassador to the EU concerning potential trade implications of European digital regulation. Euractiv additionally reported uncertainty regarding a proposed EU open-source strategy previously linked to the package.

The European Commission did not comment publicly on the latest delay.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

EU consultation closes on AI energy measurement

The European Commission has moved forward with work on measuring the energy consumption and emissions of AI models and systems, as part of preparations for a possible AI energy measurement framework under the EU AI Act.

The targeted consultation forms part of a Commission-procured study on measuring and promoting energy-efficient and low-emission AI in the European Union. Responses will help refine the study, contribute to a measurement framework for the AI Act’s energy-related objectives and support the design of a potential AI energy and emissions label.

The process focuses on how to measure energy use across the AI lifecycle, including development and training, as well as operational use and inference. The Commission says a comprehensive picture of AI’s energy efficiency and carbon footprint requires data on computational resources, electricity consumption and hardware details.

Under Annex XI of the AI Act, providers of general-purpose AI models must document known or estimated energy consumption as part of their technical documentation obligations. The consultation, therefore, targets developers and deployers of general-purpose AI models and AI systems, as well as component and service suppliers.

Stakeholders were asked about the accessibility of data needed to assess AI energy consumption and emissions, as well as the suitability of different AI performance indicators. The Commission said the aim is to develop a robust and practical industry-informed framework for measuring AI energy consumption and efficiency.

The AI Office will publish a summary of the consultation results based on aggregated data, with respondents not directly quoted.

Why does it matter?

AI’s growing energy demand is becoming a regulatory and environmental policy concern, especially as general-purpose AI models require substantial computing resources for training and inference. A common EU framework for measuring AI energy use and emissions could make environmental impacts more visible, support future transparency obligations and help compare systems more consistently. A possible AI energy and emissions label would also push sustainability into AI governance alongside safety, transparency and accountability.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!