Skip to main content
Top Button

August 2017

New Internet of Things Security Legislation Introduced in U.S. Senate

August 3, 2017 by George A. Gasper, Clayton Heil,
Four United States Senators introduced bipartisan legislation this week that would improve the cybersecurity of Internet-connected devices purchased by the federal government. The Internet of Things Cybersecurity Improvement Act of 2017 (which was drafted with input from several security and technology companies) would require companies selling IoT devices to the government to implement specific security standards, including ensuring their devices: (i) do not have any known security vulnerabilities, (ii) do not use hard-coded passwords that cannot be changed, (iii) rely on industry standard protocols, and (iv) are patchable if security is compromised. (IoT devices with limited data processing and software functionality would be subject to alternative requirements to be developed by the Office of Management and Budget.)  The proposed legislation would also require (among other things) the Department of Homeland Security to issue additional guidelines regarding vulnerability disclosure policies applicable to companies selling IoT devices to the federal government.


Displaying results 11-11 (of 11)
 |<  <  1 - 2 >  >|
View Full Site View Mobile Optimized