Brazil - Anatel Draft Proposal for Minimum Cyber Security Requirements for Equipment Connecting with Public Telecommunication Network

​The Anatel (Brazilian National Telecommunication Agency) published the Public Consultation No 13 with a proposal for minimum cyber security requirements of terminals that connect to the internet and the telecommunications network infrastructure equipment. The application of each requirement contained in the proposal must take into account the different technical characteristics (amount of memory, data processing capacity, user interfaces, communication interfaces, etc.) of each equipment and the purposes for which they are intended.
The proposal presented includes requirements that must be applied to the equipment and its suppliers and was based on international references, such as:
OECD - Enhancing the Digital Security of Products - Draft Scoping Paper (November 2019).
IEEE - Internet Technology Policy Community White Paper - Internet of Things (IoT) Security Best Practices (February 2017).
IETF - Internet of Things (IoT) Security: State of the Art and Challenges - RFC 8576.
LAC-BCOP-1 (May / 2019) - Best Current Operational Practices on Minimum Security Requirements for Customer Premises Equipment (CPE) Acquisition.
ENISA - Baseline Security Recommendations for IoT in the Context of Critical Information Infrastructures (November 2017).
GSMA IoT Security Guidelines - Complete Document Set.

It is open for public comments and suggestions until May 17th 2020.