Standards, Guidance & Notices
Showing 101–110 of 128
JIS
Std
Std
TRT24971
ISO/TR 24971:2020 Medical devices - Guidance on the application of ISO 14971
This technical report provides practical guidance on developing, implementing, and maintaining medical device risk management systems in accordance with JIS T 14971:2020 and its parent standard ISO 14971:2019. Published concurrently with JIS T 14971:2020 on October 1, 2020, the document offers detailed explanations and examples to support manufacturers in applying risk management principles effectively. The guidance clarifies the relationship between ISO 14971 requirements and other standards such as IEC 62304 and IEC 62366-1, demonstrating how risk management integrates with software lifecycle and usability engineering processes. Manufacturers should consult this technical report to understand implementation best practices, including hazard analysis methodologies, risk estimation approaches, risk control strategies, and residual risk evaluation techniques. The document addresses sector-specific considerations applicable to various medical device types and provides case studies demonstrating risk management in practice. This non-normative guidance helps organizations establish robust risk management culture and documentation while ensuring compliance with both Japanese regulatory requirements and international standards.
Published: 2020-10-01
JIS
Std
Std
JIST14971
JIS T 14971:2020 Medical devices - Application of risk management to medical devices (equivalent to ISO 14971:2019)
This JIS standard specifies terminology, principles, and processes for applying risk management to medical devices, including Software as a Medical Device (SaMD) and In Vitro Diagnostic devices (IVD), corresponding to ISO 14971:2019. The 2020 revision strengthens provisions for addressing security risks and aligns terminology with JIS T 0063:2020 (vocabulary for medical device risk management). Manufacturers must establish and maintain a risk management system that identifies hazards, estimates risks, implements controls, and verifies their effectiveness throughout the device lifecycle. The standard provides a structured approach to ensure patient safety by reducing risks to acceptable levels. As the foundational risk management framework under Japanese medical device regulations, this standard works in conjunction with other lifecycle standards such as JIS T 2304 and JIS T 62366-1. The document replaced JIS T 14971:2003 and represents Japan's adoption of evolving international risk management best practices.
Published: 2020-10-01
IEC
IEC 62366-1:2015+AMD1:2020
Medical devices — Part 1: Application of usability engineering to medical devices
Specifies a process for a manufacturer to analyse, specify, develop and evaluate the usability of a medical device as it relates to safety.
Published: 2020-08-01
EU
MDCG
MDCG
MDCG 2019-16 rev.1
Guidance on cybersecurity for medical devices
MDCG 2019-16 rev.1 — Guidance on cybersecurity for medical devices — (July 2020)
Published: 2020-07-01
ISO
ISO/TR 24971:2020
Medical devices — Guidance on the application of ISO 14971
Provides guidance on the application of ISO 14971:2019 for risk management of medical devices, including practical examples and clarifications.
Published: 2020-06-01
NIST
IR
IR
IR 8259A
IoT Device Cybersecurity Capability Core Baseline
Device cybersecurity capabilities are cybersecurity features or functions that computing devices provide through their own technical means (i.e., device hardware and software). This publication defines an Internet of Things (IoT) device cybersecurity capability core baseline, which is a set of device capabilities generally needed to support common cybersecurity controls that protect an organization’s devices as well as device data, systems, and ecosystems. The purpose of this publication is to provide organizations a starting point to use in identifying the device cybersecurity capabilities for new IoT devices they will manufacture, integrate, or acquire. This publication can be used in conjunction with NISTIR 8259, Foundational Cybersecurity Activities for IoT Device Manufacturers.
Published: 2020-05-29
NIST
IR
IR
IR 8259
Foundational Cybersecurity Activities for IoT Device Manufacturers
Internet of Things (IoT) devices often lack device cybersecurity capabilities their customers—organizations and individuals—can use to help mitigate their cybersecurity risks. Manufacturers can help their customers by improving how securable the IoT devices they make are by providing necessary cybersecurity functionality and by providing customers with the cybersecurity-related information they need. This publication describes recommended activities related to cybersecurity that manufacturers should consider performing before their IoT devices are sold to customers. These foundational cybersecurity activities can help manufacturers lessen the cybersecurity-related efforts needed by customers, which in turn can reduce the prevalence and severity of IoT device compromises and the attacks performed using compromised devices.
Published: 2020-05-29
EU
MDCG
MDCG
MDCG 2019-8
Guidance document implant card on the application of Article 18 Regulation (EU) 2017/745 on medical devices
MDCG 2019-8 — Guidance document implant card on the application of Article 18 Regulation (EU) 2017/745 on medical devices — (March 2020)
Published: 2020-03-01
EU
MDCG
MDCG
MDCG 2020-1
Guidance on clinical evaluation (MDR) / Performance evaluation (IVDR) of medical device software
MDCG 2020-1 — Guidance on clinical evaluation (MDR) / Performance evaluation (IVDR) of medical device software — (March 2020)
Published: 2020-03-01
IMDRF
IMDRF/CYBER WG/N60FINAL:2020
Principles and Practices for Medical Device Cybersecurity (FINAL 2020)
This core document establishes international principles and practices for medical device cybersecurity, covering the complete device lifecycle. It specifies requirements for security by design, vulnerability management, and incident response frameworks. Manufacturers should integrate cybersecurity considerations throughout product development, maintenance, and end-of-life phases. The document serves as the common foundation referenced in Japan's Basic Principles for Conformity Assessment of Medical Devices (Article 12, Paragraph 3), FDA 2023 final cybersecurity guidance, and EU MDCG cybersecurity guidance. Japanese regulatory authorities directly reference this document in official notifications, making it essential for regulatory compliance in multiple jurisdictions.
Published: 2020-03-01