More USA IoT security regulation on its way

There’s a nice article on CNET with updates on proposed US legislation which would require basic security standards for any IoT devices that the federal government uses. Note, this does not propose to cover consumers or the general market simply mandate standards that suppliers and manufacturers would have to meet if they want to sell to the USA government. Apparently it is likely to borrow heavily from California’s SB 327 legislation.

The Californian legislation has nice specific elements such as mandating that device makers have to include specific security features such as removing default passwords and requiring users to generate their own passwords before allowing device access. However, this is functionality so basic for security that you appreciate how vulnerable the domestic market currently is to attacks at the moment.

One thought on “More USA IoT security regulation on its way

Add yours

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

Blog at

Up ↑

%d bloggers like this: