CC Blog Tech News

IoTSF Updates IoT Security Compliance Framework

The Internet of Things Security Foundation (IoTSF) announced today that it has updated its industry leading IoT Security Compliance Framework to Release 1.1. The Framework was created by security practitioners and aimed at product developers, manufacturers and supply chain managers. This release details 204 controls across 14 themes that businesses can use to ensure their consumer category products are IoT ready. A companion questionnaire is also supplied and provides a simple mechanism for documenting requirement responses.

Compliance-Framework-and-Questionnaire-1-1-1-400x400IoTSF also extended its best practice guidance for connected consumer products to include logging and software update policy as part of its review. The framework, questionnaire and best practice guidelines are available to download for free from the IoTSF website. Users are also invited to use the Best Practice User Mark to inform their public that they observe security best practices in their organizations.

Richard Marshall, IoTSF Executive Steering Board member, said “since we published the first version of the Framework it has been downloaded, used and referenced by a wide number of stakeholders. These updates build on the first release and further strengthen the security mechanisms that organizations need to provide. We’ve also added a companion questionnaire to assist businesses in their security risk assessments. As IoT covers a vast number of use cases, the Framework is written in a manner that makes it extensible, and we will add categories beyond its consumer based origins in future releases.”

John Moor, IoTSF Managing Director also commented that “the era of IoT is characterized by hyper-connectivity and software defined products. Ensuring fit for purpose security is recognized as a wicked challenge which requires many stakeholders, and more than technical solutions alone. We are encouraging all organizations that provide or use IoT-class technology to be proactive, and think about their duty of care to their customers and wider society. We’re here to help in that endeavor, and we’re delighted to announce these updates to our publications today. Further, we encourage industry to provide feedback so that we can ensure they are easy to use and stay relevant in the fast-paced world of connected and digital technology.”

The publications can be downloaded direct from the IoTSF website: www.iotsecurityfoundation.org/best-practice-guidelines

Internet of Things Security Foundation | www.iotsecurityfoundation.org

— ADVERTISMENT—

Advertise Here


Don't miss out on upcoming issues of Circuit Cellar. Subscribe today!

 
 
Note: We’ve made the October 2017 issue of Circuit Cellar available as a free sample issue. In it, you’ll find a rich variety of the kinds of articles and information that exemplify a typical issue of the current magazine.


Would you like to write for Circuit Cellar? We are always accepting articles/posts from the technical community. Get in touch with us and let's discuss your ideas.

Become a Sponsor
Website | + posts

Circuit Cellar's editorial team comprises professional engineers, technical editors, and digital media specialists. You can reach the Editorial Department at [email protected], @circuitcellar, and facebook.com/circuitcellar