The Latest: The UK government has released a voluntary Code of Practice for Consumer Internet of Things (IoT) Security, while California has become the first US State to pass an IoT Cybersecurity Bill. Implications: This clearly highlights the growing awareness amongst regulators regarding the security risk of IoT devices, as well as the need to develop the right common standards. As we have often said, anything connected can be hacked, and the greater number of connected devices automatically increases the risk of hacks and breaches. The guidelines are not looking to create a punitive regime where companies are fined for their failings, at least at first, but rather to create a virtuous system where the devices put to market have at least the basic security in place. For instance, both the UK and California want passwords to be unique for connected devices so as not to be easily replicated. It is important for these common standards to be introduced now, as the price for connected devices decreases, but it is also important to remember that no device can be fully secure.
展开▼
