Towards Automating IoT Security: Implementing Trusted Network-Layer Onboarding

Date Published: April 14, 2025
Comments Due: May 29, 2025
Email Comments to: iot-onboarding@nist.gov

Author(s)

Michael Fagan (NIST), Jeffrey Marron (NIST), Murugiah Souppaya (NIST), Paul Watrobski (NIST), Karen Scarfone (Scarfone Cybersecurity), Blaine Mulugeta (MITRE), Susan Symington (MITRE)

Announcement

IoT device network-layer onboarding is an automated mechanism for securely provisioning network credentials to devices, thereby enhancing network security and management. IoT devices can measure energy consumption, detect component faults, monitor water quality, measure toxins, and detect infrastructure breaches. Whether used in complex operational networks or simple home networks, the goal is to avoid exposing these networks to additional threats. Key capabilities of trusted IoT device network-layer onboarding include per-device network credentials, zero-touch onboarding, configurable trust policies, and continuous assurance. Organizations and individuals using IoT devices to collect data for quick identification of potential issues and rapid response management are encouraged to read the publication.

The comment period is open until 11:59 PM (EDT) on May 29, 2025. Please complete the comment template found on the NCCoE project page. You can submit completed templates and all questions to iot-onboarding@nist.gov.

Control Families

None selected