cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Caute_cautim
Community Champion

IoT Cybersecurity improvement Act signed off

Hi All

 

Within the US, "The Bipartisan IoT Cybersecurity Improvement Act was officially signed into law earlier this month, mandating that any IoT device purchased with government funds must meet minimum security standards." 

 

Well it's a good start, if it works, what happens if a third party supplier purchases the the IoT devices to support services they are providing the Government?

 

https://www.allaboutcircuits.com/news/internet-of-things-cybersecurity-improvement-act-signed-into-l...

 

Regards

 

Caute_Cautim

1 Reply
AppDefects
Community Champion

Re: IoT Cybersecurity improvement Act signed off

NIST has done a reasonable job at creating draft guidance (Special Publication 800-213 and NIST Interagency Reports (NISTIRs) 8259B8259C, and 8259D but developers clear need concise requirements. The NISTIR baselines are a good start but are going to require a lot more detail to be usable.