Halfway through 2026, policy updates related to GB 44496 have been issued far more frequently than expected at the start of the year. I have sorted out all policy revisions and frequent test failure cases encountered in communication with vehicle manufacturers in recent months for your reference and risk inspection.
·January 1, 2026: Official effective date of mandatory national standard GB 44496Many enterprises confuse the standard effective date with the mandatory CCC enforcement date, which are two separate concepts. After the standard takes effect, enterprises must fully deploy and operate the SUMS Software Upgrade Management System without any grace period, including complete system documents, upgrade traceability ledgers and annual emergency drill records. Only hardware OTA retrofits for existing legacy vehicles are granted a transition window, while system compliance has no buffer time.Additional reminder: Amendment No.1 to the national standard is under development, where the term "SUMS Software Upgrade Management System" has been uniformly revised to "software upgrade guarantee requirements". Enterprises shall synchronously update all terminology in system documents immediately; mismatched terminology will directly trigger non-conformities during audits.
·July 1, 2026: Mandatory simultaneous submission of GB 44495 vehicle cybersecurity and GB 44496 compliance documents for new vehicle announcement applicationsExisting vehicles already listed in official announcements enter a rectification countdown from this date, with a unified transition period ending on July 1, 2027. Key clarification: The July 1, 2027 deadline only applies to newly produced and commercially available vehicles. Finished stock vehicles rolled off production lines before this date can be cleared normally without mandatory recall and rectification.
·July 1, 2027: Final hard deadline for mandatory CCC complianceRumors claiming March 2027 as the CCC deadline are incorrect; no such deadline exists. Starting July 1, 2027, the CCC certificate of all commercially available vehicles must record GB 44496 compliance status. Vehicles without this record cannot be filed in official announcements, nor permitted for production, sales or import. Legacy vehicles with CCC certificates obtained before the deadline can circulate normally until inventory clearance.
The application workflow has become fully mandatory sequential procedures as clarified in the December 2025 notice issued by MIIT Equipment Industry Development Center: SUMS compliance audit report → VTA physical vehicle testing → CCC certification issuance → official vehicle announcement filing. The previous practice of completing announcement filing first and supplementing GB 44496 compliance materials later has been officially abolished. Missing test or system documents during announcement application will lead to direct rejection, and a one-week delay will push back vehicle launch schedules.
Clarification on SUMS certificates for industry-wide confusion: Auditing bodies issue SUMS compliance audit reports, which are statutory documents required for announcement filing. Third-party institutions can additionally issue SUMS system certification certificates for bidding and customer internal audits; both documents can be retained simultaneously without conflict.
2. High-Failure Test Items in H1 2026 Physical Vehicle Testing
·Consistent text of multi-channel user notificationsAll upgrade duration descriptions, risk warnings and operation instructions pushed on vehicle infotainment screen, mobile APP and SMS must be identical word-for-word. Laboratories compare screenshots and field each text field one by one; inconsistent duration or risk descriptions lead to direct test failure. This is a common pitfall for manufacturers exporting to Europe with UN R156 compliance, as international regulations impose no mandatory requirement for unified multi-channel text, resulting in inconsistent copywriting across three terminals during domestic development and instant test rejection.
·In-vehicle door unlock capability throughout the full OTA upgrade processMany manufacturers misunderstand this requirement as a pure OTA logic adjustment, but the national standard sets a general mechanical interior door unlock safety requirement for complete vehicles instead of an independent hardware function added for OTA. In simulated scenarios where power cuts out mid-upgrade, all four doors must be manually opened from inside the cabin. Many overseas benchmark vehicles only adopt electronic unlock logic, which locks internal doors after power loss and triggers outright test failure. Partial vehicle models require hardware modification of door lock assemblies instead of simple software tuning. This requirement is unique to China and not stipulated in UN R156.
·Full vehicle functional self-inspection after upgrade failure rollbackPassing rollback under normal operating conditions is insufficient; four extreme scenarios must be fully covered: power cut mid-upgrade, network disconnection, hot plug of diagnostic instruments and forced termination under low battery. After rollback, the system must automatically execute full functional self-inspection of all vehicle ECUs and push a complete inspection report to users; a simple error pop-up window does not meet the standard. Most vehicles pass normal rollback tests but lack verification under extreme conditions.
Two additional conventional high-frequency failure items to note:
·OTA remote upgrade blocking under driving status: The national standard mandates that upgrades can only be initiated under P gear with sufficient battery power; any logic allowing OTA triggering while driving results in failure.
·Anti-tampering verification of upgrade packages: The vehicle fails to intercept or report errors when tampered firmware packages are uploaded, leading to failure of safety test items.
3. Cross-Border Compliance: UN R156 Report Cannot Be Directly Adopted for Domestic Certification
Three exclusive mandatory domestic test items require supplementary testing: interior mechanical door unlock, unified multi-channel notification text, full vehicle self-inspection and result push after rollback. General system documents including software version control, upgrade package encryption and compatibility risk assessment can be reused. Overseas OEMs with existing UN R156 systems may apply for equivalent assessment with domestic certification bodies to avoid full system reconstruction, and imported vehicles do not need to build compliance systems from scratch. Export to the EU requires additional GDPR privacy compliance and RED RF testing, which are not covered by domestic GB 44496 certification.
4. Post-Certificate Long-Term Compliance Obligations
Obtaining a CCC certificate is not the end of compliance work. Enterprises must maintain normal SUMS system operation, complete upgrade ledgers and annual emergency drill records every year. Certification bodies conduct annual on-site surveillance audits; missing ledgers or incomplete drill records will trigger major non-conformities with risks of certificate suspension or revocation.
BlueAsia provides one-stop SUMS system construction and VTA physical vehicle testing services for GB 44496 certification. Laboratory test slots are highly competitive in 2026, and early reservation guarantees on-time market launch. For inquiries, contact BlueAsia Compliance Consultant: +86 13534225140 (Benson)
相关新闻