Date Published: June 17, 2022
Comments Due:
Email Questions to:
Author(s)
Michael Fagan (NIST), Katerina Megas (NIST), Paul Watrobski (NIST), Jeffrey Marron (NIST), Barbara Cuthill (NIST)
Announcement
NIST's Cybersecurity for the Internet of Things (IoT) program has released two new draft documents for public comment:
These new documents will be central to the discussions at our upcoming virtual workshop on considerations around cybersecurity for IoT products, including consumer products. This event takes place on June 22, 2022, from 10:00 am - 4:00 pm Eastern Daylight Time. The workshop Building on the NIST Foundations: Next Steps in IoT Cybersecurity | NIST website has the full agenda and registration.
To learn more about the Cybersecurity for IoT Program, visit the NIST website, and follow @NISTcyber on Twitter using #IoTSecurityNIST to join the conversation around topics in cybersecurity for consumer IoT devices during and after the workshop.
This publication documents the consumer profile of NIST’s IoT core baseline and identifies cybersecurity capabilities commonly needed for the consumer IoT sector (i.e., IoT products for home or personal use). It can also be a starting point for small businesses to consider in the purchase of IoT products. The consumer profile was developed as part of NIST’s response to Executive Order 14028 and was initially published in Recommended Criteria for Cybersecurity Labeling for Consumer Internet of Things (IoT) Products. The consumer profile capabilities are phrased as cybersecurity outcomes that are intended to apply to the entire IoT product. This document also discusses the foundations to developing the recommended consumer profile and related considerations. NIST reviewed a landscape of relevant source documents to inform the consumer profile and engaged with stakeholders across a year-long effort to develop the recommendations.
This publication documents the consumer profile of NIST’s IoT core baseline and identifies cybersecurity capabilities commonly needed for the consumer IoT sector (i.e., IoT products for home or personal use). It can also be a starting point for small businesses to consider in the purchase of IoT...
See full abstract
This publication documents the consumer profile of NIST’s IoT core baseline and identifies cybersecurity capabilities commonly needed for the consumer IoT sector (i.e., IoT products for home or personal use). It can also be a starting point for small businesses to consider in the purchase of IoT products. The consumer profile was developed as part of NIST’s response to Executive Order 14028 and was initially published in Recommended Criteria for Cybersecurity Labeling for Consumer Internet of Things (IoT) Products. The consumer profile capabilities are phrased as cybersecurity outcomes that are intended to apply to the entire IoT product. This document also discusses the foundations to developing the recommended consumer profile and related considerations. NIST reviewed a landscape of relevant source documents to inform the consumer profile and engaged with stakeholders across a year-long effort to develop the recommendations.
Hide full abstract
Keywords
Internet of Things (IoT); consumer IoT; cybersecurity; IoT products; privacy; safety; securable products.
Control Families
None selected
