U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

This is an archive
(replace .gov by .rip)

Considerations for Managing Internet of Things (IoT) Cybersecurity and Privacy Risks: NISTIR 8228
June 25, 2019

The Internet of Things (IoT) is a rapidly evolving and expanding collection of diverse technologies that interact with the physical world, yet many organizations are not necessarily aware of the large number of IoT devices they already use. Understanding both existing and future usage of IoT devices can enable organizations to identify IoT’s effects on managing cybersecurity and privacy risks as well as how such risks differ from those of conventional information technology (IT) devices.

NIST announces the publication of NISTIR 8228, Considerations for Managing Internet of Things (IoT) Cybersecurity and Privacy Risks, which provides guidance for federal agencies and other organizations to better understand and manage the risks associated with individual IoT devices throughout the lifecycles of those devices. It also considers three high-level goals for risk mitigation: device security, data security, and individual privacy. This introductory report provides the foundation for a planned series of publications on more specific aspects of this topic.

Related Topics

Security and Privacy: general security & privacy, risk management

Applications: Internet of Things

Created June 25, 2019, Updated June 22, 2020