Government IoT security enforcement may be on the way

July 23, 2020

With IoT technology rapidly advancing, the UK government is looking to stay ahead of the curve and ensure its security before it’s continuing deployment across industries.

A recent update revealed that it would be setting up a new regulatory body to enforce IoT security laws. The body’s remit could include actions such as temporarily banning sales during product testing, completely banning products found to be insecure and issuing recall notices, among other regulatory behaviours. Additionally, they could potentially apply to the court for an order of confiscation and destruction of a device deemed to be particularly dangerous.

This follows the Department for Culture, Media and Sport’s proposed legislation on IoT security, which it published at the beginning of the year. This law would require three specific security requirements for all Smart/IoT devices sold in the UK:

  • Unique passwords for each device, which could not be vulnerable to a factory reset
  • An easy contact point to the manufacturer, to report any bugs or security vulnerabilities
  • A stated minimum amount of time that updates will be available, which can be easily found by consumers or clients

Of course, these standards may be difficult to enforce as many IoT devices are manufactured and sold abroad. However, with the UK’s recent involvement in the global ETSI standard for consumer IoT devices, it is clear that they are keen to try to keep up with cyber security standards and legislation.

20 billion smart devices already in circulation – but only about 13% of those have basic cyber security safeguards built-in. As consumer products can be an easy entry point for cyber attackers – exemplified by notorious cyberattacks such as the 2018 Mi-Cam Baby Monitor hack – it is imperative to provide security solutions strong enough to mitigate any vulnerability.

Related Articles

Web cams and other IoT devices remain wildly insecure

Web cams and other IoT devices remain wildly insecure

As IoT devices continue to proliferate, the communications protocols they use puts millions of users’ data in danger of a serious breach. There are two protocols that have proven to be especially vulnerable – CS2 Network P2P and Shenzhen Yunni iLnkP2P – though, of...

Using 5G to unlock the potential of edge computing

Using 5G to unlock the potential of edge computing

Edge computing has been hailed as the new frontier of networking, focusing on decentralising some of the services and data that has been pushed to the cloud. In pre-COVID times, this may have come in the form of a local data centre, which would hold data necessary to...

Angoka Runner-Up in Digital DNA’s Startup of the Year

Angoka Runner-Up in Digital DNA’s Startup of the Year

Angoka is pleased to announce that we have been named as the runner-up for Digital DNA’s Startup of the Year award. The Digital DNA Awards highlight the brilliant work done by Northern Irish companies, promoting and celebrating the talent within the fast-growing NI...

Translate »