NIST lays out roadmap for Internet of Things security

How the Census Bureau can make the most of its IT

We put the information out there so that there is an understanding as to the level of security that any one of these devices has, Markey said.

NIST will take public comments its draft report until April 18.

Marines train during Eager Lion 2018 in Jordan

During a Feb. 14 Brookings Institution cybersecurity panel discussion, Tom Wheeler,  former chairman of the Federal Communication Commission, said the FCC could some day play a role in certifying cyber best practices, much like how it currently reviews all products that emit radio frequencies.

In 2017, theresearch company Gartnerestimated there were more than 8.4 billion IoT devices in use. It expects more than 20 billion devices will be online by 2020.

As lawmakers seek a seal of approval for the Internet of Things, the National Institute of Standards and Technology recently gave federal agencies and private industry a better roadmap to future IoT cybersecurity concerns.

Insight by the Trezza Media Group: Technology experts share their IT modernization strategies in this free webinar.

What every fed needs to know about telework

Blockchain is an evolving technology that could revolutionize IoT security. The blockchain model favors peer-to-peer interactions between devices and thus de-centralizes security, the report said.

While the Internet of Things has become prevalent in many consumer electronics over the last few years, the agency warns that as the technology becomes more widespread, it presents more of an opportunity for malicious actors.

Pentagon seeks to limit bid protests in federal court

If we think that protecting the airwaves from interefence is important enough that there should be type acceptance of products, why shouldnt one of those inspections that have to be made be a cyber assurance for that product? Wheeler said.

There is a market failure here. When youre making the chip that goes to the board, that goes in the camera, that goes to Best Buy, that goes to the consumer, nobody in that supply chain is asking any question about cybersecurity. Mostly theyre saying, Talk to me about price, he said.

The Cyber Shield Act, if passed, would establish an advisory committee of cybersecurity experts from academia, industry and consumer advocacy groups to create cybersecurity benchmarks for IoT devices.

NIST deadline looms for agencies to improve digital authentication standards

Under the legislation, device manufacturers would voluntarily submit their products for evaluation. Products that meet the advisory boards cybersecurity standards would carry a cyber shield logo. The system has been compared to the Energy Star program developed by the Environmental Protection Agency more than 20 years ago.

Who should use the NIST Cybersecurity Framework?

While FCC testing would mark a significant regulatory change for IoT device manufacturers, Wheeler said private industry hasnt done enough to regulate the cybersecurity of its products.

Did this EPA tweet violate Hatch Act? OSC says itll investigate

It is expected to be even more revolutionary and ubiquitous in the future. Yet, the adoption of IoT brings cybersecurity risks that pose a significant threat to the nation, NIST wrote in its report.

The IoT era could also be considered the Internet of Threats era if appropriate cybersecurity safeguards are not in place, Markey said during a prerecorded video statement released during the Institute for Critical Infrastructure Technologys winter summit on Jan. 29.

Looking ahead to technology-based solutions, NIST said blockchain could help fill in some of the security gaps with internet-connected devices.

To give a sense of the security risk at hand, NIST cited the October 2016 cyber attack on Dyn, a company that monitors and routes internet traffic. By infecting internet-connected devices with malware, malicious actors overwhelmed Dyns systems through a denial-of-service attack, and temporarily brought down a number of major websites

NIST leadership tackling physical security weaknesses through culture change, employee training

February 19, 2018 5:59 pm3 min read91 Shares

On Capitol Hill, Sen. Ed Markey (D-Mass.) and Rep. Ted Lieu (D-Calif.) have encouraged lawmakers to take action on theirCyber Shield Act, which would create a voluntary cybersecurity certification program for IoT devices.

The Commerce secretary would appoint members of the advisory committee, and the Commerce Departments inspector general would have oversight over the regulatory body.

1904: Panama Canal is dedicated, construction begins

DISA saved from congressional scalpel, for now

Jory Heckman is a reporter at covering U.S. Postal Service, IRS, big data and technology issues.Follow @jheckmanWFED

Federal workforce by the numbers: Who they are and where they work

Law Enforcement and Public Safety…

The disruption of Dyn and associated Internet services underscores the significant, systemic harm that may be caused by malware dedicated to exploiting the security vulnerabilities of IoT components, the NIST report said.

In the Feb. 14 draft version of itsinteragency reporton the state of IoT cyber standards, NIST warned that without a standardized set of cybersecurity requirements in place, many IoT devices from smart cars to the energy-efficiency sensors in the General Service Administration headquarters building could be vulnerable to cyber attack.

Leave a Reply