Date Published: March 2021
Comments Due: April 19, 2021 (public comment period is CLOSED)
Email Questions to: iot-onboarding@nist.gov
Planning Note (4/19/2021):
The comment period has been extended from April 19 to April 21.
, , , , , ,
Network-layer onboarding of an Internet of Things (IoT) device is the provisioning of network credentials to that device. The current lack of trusted IoT device onboarding processes leaves many networks vulnerable to having unauthorized devices connect to them. It also leaves devices vulnerable to being taken over by networks that are not authorized to onboard them.
This National Cybersecurity Center of Excellence (NCCoE) project will focus on approaches to trusted network-layer onboarding of IoT devices and lifecycle management of the devices. The NCCoE will build a trusted network-layer onboarding solution example using commercially available technology that will address a set of cybersecurity challenges aligned to the NIST Cybersecurity Framework. This project will result in a freely available NIST Cybersecurity Practice Guide.
Access Control; Identification and Authentication
Publication:
Draft Project Description
Supplemental Material:
Submit comments (web)
Project homepage (web)
Related NIST Publications:
Document History:
03/16/21: White Paper (Draft)
05/20/21: White Paper (Final)
Security and Privacy
access authorization; access control; asset management; roots of trust
Technologies
networks
Applications
Internet of Things