+91 22 40163190 info@deltaphi.in

Optical Network Terminal (ONT) – PON Family Broadband Equipment

(NCCS Accredited Security Testing & Certification as per ITSAR Standards)

Official ITSAR ONT Standard (PDF)
Regulator website link to ITSARs

Overview

Optical Network Terminals (ONT) are critical subscriber-end devices in Passive Optical Networks (PON), enabling ultra-broadband connectivity to homes and businesses.
Because ONTs terminate access networks and interact directly with national telecom infrastructure, their security posture is critical.

The Department of Telecommunications has declared that ITSAR certification for ONT devices will be mandatory from 1 January 2026, with the Voluntary Security Certification (VSC) phase active until 31 December 2025.

Deltaphi Labs Private Limited — an NCCS-accredited Telecom Security Test Lab (TSTL) — offers end-to-end security testing, documentation, and certification services under the ITSAR framework to help OEMs, ISPs, and integrators prepare well ahead of enforcement.

Devices Covered (All ONT Categories)

Z

GPON / EPON ONT Devices

Z

ONT with Wi-Fi or Ethernet Interfaces

Z

FTTH Terminals (Residential & Enterprise)

Z

IoT-enabled PON ONTs for FWA & smart buildings

Z

Multi-service ONT/ONU units

Compliance Standards

Our ITSAR ONT testing aligns with

ITSAR – ONT Security Requirements v1.0 (NCCS / DoT India)

TEC/MTCTE Annexures – Router Protocol Conformance Testing

3GPP TS 33.117 – Security Requirements for Network Equipment

NIST SP 800-115 – Security Assessment & Penetration Testing

ISO/IEC 27001 – Infrastructure & Information Security Controls

Key Benefits

Reduce Risk – Protect your business by hardening ONT against cyberattacks

Regulatory Readiness: Mandatory from 1 Jan 2026 — voluntary until 31 Dec 2025.

Enhanced Security Posture – Strengthen resilience against exploits, fuzzing, and advanced threats

Faster Time-to-Market – We provide fast-track testing services to shorten certification cycles

Operator Acceptance: Required for deployment with major operators (Bharat Sanchar Nigam Limited, Bharti Airtel, Reliance Jio Infocomm Limited, Vodafone Idea Limited).

Global Visibility – Standards-aligned testing increases acceptance across international markets

Why Choose Deltaphi Labs?

Z

NCCS-Accredited – Recognized by India’s National Centre for Communication Security

Z

Fast-Track Testing – Accelerated timelines for OEMs under market pressure

Z

End-to-End Security – Covering fuzzing, DoS/DDoS, replay, and advanced resilience testing

Z

Trusted by Industry – Supporting device vendors, ISPs, and telecom operators for compliance

Z

Evidence-Based Reporting – Detailed compliance reports aligned with ITSAR and MTCTE requirements

FAQs – ITSAR ONT Certifications

Q1. Is ITSAR certification mandatory for ONT devices right now?

No. ONT devices are currently under Voluntary Security Certification (VSC) until 31 December 2025.
However, starting 1 January 2026, ITSAR security certification will become mandatory for all ONT devices that are imported, manufactured, or deployed in Indian telecom networks.

Q2. Why is ITSAR certification important for ONT devices?

ONTs are subscriber-side termination points in Passive Optical Networks (PON) and are directly connected to national telecom infrastructure.
Compromise of ONT devices can expose critical access networks to botnets, data interception, and service disruption.
ITSAR certification ensures that ONTs meet baseline authentication, encryption, and access control standards defined by DoT/NCCS.

Q3. What security areas are validated during ITSAR ONT testing?

  • Authentication and access control (local & remote)

  • Management plane security (Web UI, CLI, SNMP, TR-069, OMCI)

  • Firmware integrity and secure boot validation

  • Protocol fuzzing (DHCP, DNS, IGMP, ICMP, OMCI)

  • DoS/DDoS, spoofing, and replay resilience

  • Traffic encryption on upstream/downstream

  • Event logging and audit capabilities

Q4. Do all ONT variants require ITSAR certification?

Yes. All PON-family ONTs—including GPON, EPON, FTTH ONTs, ONT-Wi-Fi combo units, enterprise ONTs, and multi-service ONUs—must comply with ITSAR from 1 January 2026.
Even if your product is technically approved under Telecommunication Engineering Centre MTCTE, separate ITSAR certification is required for security.

Q5. How long does the ONT ITSAR certification process take?

Typical timelines are 3–6 weeks, depending on:

  • Number of interfaces (e.g., Wi-Fi + Ethernet + PON)

  • Protocol support (OMCI, TR-069, SNMP, etc.)

  • Security feature maturity of the device
    Fast-track timelines may be available for OEMs with operator deployment deadlines.

Get a Quote – Fast-Track Your Certification

ONT ITSAR certification will become mandatory from 1 January 2026

Deltaphi Labs helps you:

Get quick quotations based on device type and features

Accelerate certification timelines with streamlined test processes

Achieve full compliance to meet DoT/NCCS regulatory requirements

Contact us today to get a quote and secure your ITSAR certification — ensuring your ONT  are compliant, resilient, and ready for operator deployment.

Get a Quote Now