ETSI Publish Cyber Security Standard for Consumer IoT

ETSI, the European Standards Organisation have this week released the first globally applicable cyber security standard for consumer IoT devices. The standard, ETSI TS 103 645, establishes a security baseline for internet-connected consumer products and provide a basis for future IoT certification schemes. It builds closely on the UK's Code of Practice for Consumer IoT Security which set out a list of 13 Commitments. The standard focuses on the top three of these which are generally regarded as the highest priority. 

The standard requires implementers to forgo the use of universal default passwords, which have been the source of many security issues. It also requires implementation of a vulnerability disclosure policy to allow security researchers and others to report security issues.

Matt Evans, Director of Market Programmes, said "Our own research shows that poor security is a barrier to greater adoption of Connected Home devices and services. If we are to deliver the very real benefits that IoT can make to people's life's we must address these justified concerns and therefore welcome the publication of the ETSI standard. We encourage companies to engage with both the standard and the UK Government's Code of Practice as these are developed further."

  • Talal Rajab

    Talal Rajab

    T 020 7331 2189
  • Matthew Evans

    Matthew Evans

    Director | Markets
    T 020 7331 2034

Share this


Congratulations to all the new appointed members of our Local Public Services Committee. We look forward to seeing…
Join us for an Introductory Evening on 09 September. This is a great opportunity for you to meet the techUK team an…
An important proposal and something that @techUK is very proud to be a part of.
Local Digital Fund open for next round of funding for councils looking to improve public services through digital t…
Become a Member

Become a techUK Member

By becoming a techUK member we will help you grow through:

Click here to learn more...