Principles for Restricting the Use of Products That Endanger National Cybersecurity

1. According to the Executive Yuan Official Letter No. 1121000202 dated June 20, 2023, the principles for the use of information and communication technology (ICT) products by all government agencies are reiterated as follows:

(1) In accordance with the Executive Yuan Secretary-General Official Letter No. 1090201804A dated December 18, 2020, the use and procurement of ICT products (including software, hardware, and services) manufactured by companies from mainland China are strictly prohibited.
(2) If, due to business requirements and in the absence of alternative solutions, it is still necessary to use products that may endanger national cybersecurity, the justification must be clearly stated. Approval must then be obtained sequentially from the agency’s Chief Information Security Officer (CISO) and the superior agency’s CISO, and finally submitted to the competent authority under the Cyber Security Management Act (the Ministry of Digital Affairs) for approval. Before such products are replaced, the following enhanced cybersecurity measures must be implemented:

Common Mainland Chinese Brands

Based on a preliminary review conducted by the university, the following brands are provided for reference only and are not exhaustive:

  • Lenovo Group
  • OPPO
  • Xiaomi (MI)
  • Hisense
  • vivo
  • Huawei
  • Nubia
  • Dahua Technology
  • TP-Link
  • DJI
  • REALME
  • TotoLink
  • Tenda
  • Meizu
  • Foscam
  • Insta360 (Arashi Vision Inc.)
  • ZTE Corporation
  • Online Learning Platform: Panopto (Singapore Pan Learning Technology)

References

  1. Principles for Restricting the Use of Products That Endanger National Cybersecurity
  2. Guidelines for Inventorying Mainland Chinese ICT Products and Outsourced Public Venue Operations
  3. Ministry of Digital Affairs, Administration for Cyber Security – FAQs