Purchasing Power to Secure the IoT – A US solution

A cross-party group of US Senators have this week introduced the Internet of Things Cybersecurity Improvement Act, which would ensure that companies selling IoT devices to the Federal Government met a minimum security threshold. The minimum threshold loosely revolves around ensuring that products are patchable and prohibiting vendors from supplying devices that have unchangeable passwords.

Federal agencies would have the ability to enforce higher security measures and also petition for exceptions to the ruling if it were impractical or uneconomic to have the additional functionality. The Act also seeks to attempt to protect security researchers who exposed flaws in IoT devices used by the Government from prosecution.

Whilst the Act is limited to technology being sold to the Government the intention is that there will be substantial overspill into the wider IoT market. The development follows on from the publication of Strategic Principles for Securing the IoT from the Department of Homeland Security (DHS) in January.

The conversation in the UK and EU is currently focused on consumer devices with discussion ongoing about a potential trust or secure label. The Department for Digital, Culture, Media and Sport (DCMS) are also looking at potential interventions in this area. techUK is on the external advisory group for this project and will be holding a call between the IoT and Cyber Security Councils – if you are interested; http://www.techuk.org/events/meeting/item/11152-joint-iot-and-cyber-security-council-working-group 


Join techUK at the Privacy Conference 2017 where @techUKdepCEO Antony Walker will speak. 15% off for techUK members. https://t.co/i2Yo73N80W
What Would Great #Connectivity Deliver? #Autonomous vehicles - read more about Environmental Benefits here =>… https://t.co/sBJSwQC1bY
Join us on 11 Sept for our AI & the Comms sector event with speakers inc @verizon, @awscloud & @rethinkresearch https://t.co/MO6DsXSdmD
The 2017 ScaleUp Business Survey is here! What is needed to help businesses achieve scale? https://t.co/CIRXCaKr8b
Booking's now open for our Health & Social Care Industry Dinner on 15 Nov sponsored by @UKCloudHealth https://t.co/yku5PlQ77t #HSCDinner17
Our Policy Manager @doniyasoni comments on #alevelresults - welcoming 34% increase in girls taking computing https://t.co/CX9r9EdKOh
Registration for #Supercharging17 is now open. How does the UK secure its leadership in a Global Economy? https://t.co/HvjzIvkecJ
techUK is delighted to be a Partner of @cyberawaregov ensuring SMEs and individuals are better protected against cyber criminals #CyberAware
Nominations for @BCloudUK’s tech firsts list closes tomorrow – if you’re doing something new get in touch!… https://t.co/W1AT1tK6hB