Effective immediately following the notification on January 15, 2026, Telecom Security Testing Laboratories (TSTLs) are now mandated to share detailed security test reports directly with applicants.
Previously, the flow of technical feedback could be opaque. This new directive ensures that applicants have full visibility into the testing process, allowing for faster remediation of issues and a clearer understanding of compliance gaps.
The New Requirement: Full Disclosure
According to the official notification, TSTLs can no longer withhold the specifics of the testing results. The labs are now required to provide the applicant with the security test report that explicitly includes:
- Detailed Observations: The specific findings noted during the evaluation.
- Non-Conformities: Precise details on where the equipment failed to meet the ITSAR (Indian Telecom Security Assurance Requirements).
- Tester Remarks: Any additional technical commentary or context recorded during the testing phase.
Your Certification Strategy
This move empowers the applicant. By having direct access to the observations and non-conformities, engineering teams can:
- Troubleshoot Faster: Eliminate the guesswork. You will know exactly which parameter failed and why.
- Accelerate Re-testing: With clear data on non-conformities, you can patch vulnerabilities and re-submit with confidence, reducing time-to-market.
- Ensure Accountability: The requirement creates a transparent record of the testing process, ensuring that results are consistent and verifiable.
