Date Published: May 14, 2021
Comments Due:
Email Questions to:
Author(s)
Katerina Megas (NIST), Barbara Cuthill (NIST), Sarbari Gupta (Electrosoft Services)
Announcement
The purpose of this draft paper is to start a conversation about what it means to have confidence in the cybersecurity of IoT devices used by individuals and organizations and the various ways of gaining that confidence. This paper describes the landscape of confidence mechanisms that are currently available for establishing the security of IoT devices in the marketplace. In preparing this paper, NIST conducted extensive research on initiatives that can help to instill confidence in IoT device security and held a series of meetings with government and industry experts to glean information on the unique aspects and challenges in this space.
NIST seeks comments on this paper and on the topic of confidence mechanisms including comments addressing the following questions:
- While the landscape review wasn’t meant to be exhaustive, are there other significant confidence mechanisms that we should include?
- Have we correctly characterized the different mechanisms for providing confidence in the security of IoT products?
- We identified seven themes that emerged from our interviews. Are there other considerations that we missed?
NIST conducted a review of the available alternative approaches for providing confidence in the cybersecurity of Internet of Things (IoT) devices in November 2020 through January 2021, conducting interviews with government and private sector organizations who are experts on these approaches. This white paper describes the available landscape of approaches and draws out themes commonly heard during the interviews.
NIST conducted a review of the available alternative approaches for providing confidence in the cybersecurity of Internet of Things (IoT) devices in November 2020 through January 2021, conducting interviews with government and private sector organizations who are experts on these approaches. This...
See full abstract
NIST conducted a review of the available alternative approaches for providing confidence in the cybersecurity of Internet of Things (IoT) devices in November 2020 through January 2021, conducting interviews with government and private sector organizations who are experts on these approaches. This white paper describes the available landscape of approaches and draws out themes commonly heard during the interviews.
Hide full abstract
Keywords
conformance testing; cybersecurity; Internet of Things; labelling
Control Families
None selected
) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)
