Congress Introduces Bill to Improve IoT Security

Congress Introduces Bill to Improve IoT Security

The Internet of Things Cybersecurity Improvement Act aims to establish a bare minimum of security standards for IoT devices used by the federal government

Members of the U.S. Senate and House of Representatives introduced Monday the Internet of Things Cybersecurity Improvement Act. The goal of the bill is to bring legislative action to improve cybersecurity in the emerging tech.

During a Senate hearing last year, Defense Intelligence Agency Director Lt. General Robert Ashley told legislators that insecure IoT devices are one of the “most important emerging cyberthreats” to U.S. national security.

No national standard exists for IoT security, leaving each manufacturer free to decide how secure they want their devices to be.

The Internet of Things Cybersecurity Improvement Act aims to solve that problem by requiring a bare minimum of security standards for any IoT device used by the federal government.

The bill would not establish security standards for IoT companies across the board, just those that want to sell to the U.S. government. The hope is that by increasing security standards for one of the largest customers available, the federal government, that standards for the entire IoT industry will improve as well.

"While I'm excited about their life-changing potential, I'm also concerned that many IoT devices are being sold without appropriate safeguards and protections in place, with the device market prioritizing convenience and price over security," Sen. Mark Warner said.

If passed, the federal IoT security bill would receive recommendations from the National Institute of Standards and Technology regarding security standards the U.S. government should follow. NIST would review that policy every five years.

In addition, all IoT vendors who sell to the U.S. government would be required to have a vulnerability disclosure policy to alert government officials when the devices they use are vulnerable to cyberattacks.

"As these devices positively revolutionize communication, we cannot allow them to become a backdoor to hackers or tools for cyberattacks," Rep. Robin Kelly said.

About the Author

Jessica Davis is the Associate Content Editor for 1105 Media.

Featured

  • 12 Commercial Crime Sites to Do Your Research

    12 Commercial Crime Sites to Do Your Research

    Understanding crime statistics in your industry and area is crucial for making important decisions about your security budget. With so much information out there, how can you know which statistics to trust? Read Now

  • Boosting Safety and Efficiency

    Boosting Safety and Efficiency

    In alignment with the state of Mississippi’s mission of “Empowering Mississippi citizens to stay connected and engaged with their government,” Salient's CompleteView VMS is being installed throughout more than 150 state boards, commissions and agencies in order to ensure safety for thousands of constituents who access state services daily. Read Now

  • Live From GSX: Post-Show Review

    Live From GSX: Post-Show Review

    This year’s Live From GSX program was a rousing success! Again, we’d like to thank our partners, and IPVideo, for working with us and letting us broadcast their solutions to the industry. You can follow our Live From GSX 2023 page to keep up with post-show developments and announcements. And if you’re interested in working with us in 2024, please don’t hesitate to ask about our Live From programs for ISC West in March or next year’s GSX. Read Now

    • Industry Events
    • GSX
  • People Say the Funniest Things

    People Say the Funniest Things

    By all accounts, GSX version 2023 was completely successful. Apparently, there were plenty of mix-ups with the airlines and getting aircraft from the East Coast into Big D. I am all ears when I am in a gathering of people. You never know when a nugget of information might flip out. Read Now

    • Industry Events
    • GSX

Featured Cybersecurity

Webinars

New Products

  • FEP GameChanger

    FEP GameChanger

    Paige Datacom Solutions Introduces Important and Innovative Cabling Products GameChanger Cable, a proven and patented solution that significantly exceeds the reach of traditional category cable will now have a FEP/FEP construction. 3

  • Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation.

    Connect ONE®

    Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation. 3

  • Camden CV-7600 High Security Card Readers

    Camden CV-7600 High Security Card Readers

    Camden Door Controls has relaunched its CV-7600 card readers in response to growing market demand for a more secure alternative to standard proximity credentials that can be easily cloned. CV-7600 readers support MIFARE DESFire EV1 & EV2 encryption technology credentials, making them virtually clone-proof and highly secure. 3