QKS Group has recognized Soracom as both a Leader and an Ace Performer in the 2025 SPARK Matrix for IoT Connectivity Management Platforms (IoTCMP). Within the SPARK Matrix framework, the Leader category highlights companies that demonstrate exceptional performance in both Technology Excellence and Customer Impact. These organizations are known for delivering advanced, scalable, and forward-looking solutions. The Ace Performer distinction is awarded to vendors that have shown outstanding operational success over the past year, particularly in areas such as revenue growth, strategic partnerships, and customer acquisition.

According to Ignatius Daniel T, Principal Analyst at QKS Group, Soracom has strengthened its position in the IoTCMP market through its cloud-native, API-driven platform architecture, which aligns closely with the evolving needs of modern IoT deployments. The platform integrates global multi-carrier cellular connectivity with services that simplify secure device-to-cloud communication, protocol management, and private cloud integration within a unified control environment.

This approach enables enterprises to achieve greater flexibility, accelerate deployment timelines, and reduce operational complexity across widely distributed IoT ecosystems. Soracom’s innovations, including SGP.32-compliant eSIM orchestration, satellite connectivity capabilities, and cloud-integrated services, further demonstrate its balance of technological innovation and strong execution in the rapidly developing IoTCMP sector.

QKS Group describes an IoT Connectivity Management Platform as a centralized solution designed to oversee and manage IoT device connectivity across multiple network types such as cellular, Wi-Fi, LPWAN, and satellite networks. These platforms allow organizations to deploy, monitor, and manage IoT devices while providing real-time insights into network conditions, device performance, and data usage.

Typical functionalities include device onboarding, SIM lifecycle management, diagnostic monitoring, security enforcement, and intelligent network selection to ensure compliance with regional and regulatory requirements. Modern CMPs also support multiple communication protocols and leverage analytics and AI-driven capabilities to optimize connectivity, anticipate issues, and enhance network reliability, making them essential for scaling secure and efficient global IoT operations.

Soracom differentiates itself in the market through a software-defined and programmable connectivity approach rather than relying on traditional carrier-centric models. Its market strength comes from combining extensive global cellular coverage with a flexible service layer that enables secure data routing, cloud integration, and centralized connectivity management across distributed IoT environments.

Recent developments from the company highlight an intentional expansion of its platform capabilities, including support for IP-based devices via Arc, SGP.32-compliant eSIM orchestration through its Connectivity Hypervisor initiative, and integrated non-terrestrial network connectivity through its collaboration with Skylo. These advancements indicate that Soracom is evolving beyond a conventional connectivity management provider and positioning itself as a broader enabler of scalable and adaptable IoT operating environments. This strategy aligns well with enterprises seeking centralized management, agile deployment capabilities, and stronger cloud-to-edge connectivity frameworks for their IoT initiatives.

The SPARK Matrix report from QKS Group offers an in-depth assessment of global market trends, competitive dynamics, and the overall vendor landscape within the IoT CMP industry. The report also includes comparative rankings of IoT CMP providers and provides strategic insights that help organizations assess vendor strengths, market positioning, and competitive differentiation.

Building on its global expertise in device and cybersecurity testing, Keysight has achieved accreditation as an IT Security Evaluation Facility (ITSEF) under the EU Cybersecurity Certification Scheme on Common Criteria (EUCC). This designation authorizes Keysight’s Device Security Lab in Delft, Netherlands, to conduct substantial and high-assurance level security evaluations. These assessments support certification for critical information and communication technology (ICT) products, including secure hardware, smartcards, and software solutions.

The Common Criteria (CC) framework serves as a globally accepted benchmark for assessing and certifying the security of IT products. Within Europe, it has long established a harmonized and trustworthy foundation for high-assurance evaluations through mutual recognition among national certification bodies. The newly introduced EUCC, developed under the EU Cybersecurity Act (Regulation (EU) 2019/881), further strengthens this system by offering a unified European approach to cybersecurity certification.

With extensive experience in the Common Criteria domain, Keysight’s experts assist clients in managing complex certification processes, optimizing evaluation timelines, and aligning with evolving cybersecurity mandates. Their proven expertise now extends seamlessly into the EUCC framework.
 
Why EUCC Certification Is Important
EUCC certification delivers a single, trusted mark of security assurance, reducing the complexity of compliance for manufacturers and increasing user confidence. It holds particular significance in sectors where cybersecurity is both a core requirement and a competitive advantage, such as:

EUCC-certified products offer independent assurance that ICT systems are robust against vulnerabilities. This certification not only builds trust and reliability but also provides market advantages, as it is recognized throughout the European Union, removing the need for multiple national certifications and accelerating time-to-market. As a result, Keysight’s clients can enter and compete in Europe’s unified digital market more efficiently.

“Keysight’s EUCC accreditation allows us to test and certify both hardware and software products to meet Europe’s most stringent cybersecurity standards,” said Gerrit van der Bij, Compliance Lead at Keysight Device Security Lab. “EUCC also serves as a compliance pathway for the Cyber Resilience Act (CRA), meaning certified products are presumed compliant with CRA requirements. This significantly streamlines our customers’ journey to deliver secure solutions to market.”
 
Advancing Toward Post-Quantum Security
With cryptographic standards evolving, the EUCC framework is adapting to post-quantum security requirements. The 2025 revision of the Agreed Cryptographic Mechanisms (ACM) will incorporate Post-Quantum Cryptography (PQC) algorithms, emphasizing hybrid cryptographic approaches to ensure long-term resilience.

Keysight supports organizations through this transition by providing strategic guidance on implementing hybrid cryptography and enabling future-proof, quantum-resistant security for critical systems across multiple industries.

Click here to know about Keysight Device Security solutions and services.