If you have ever unplugged a digital assistant because it was annoying or spouting something laughable, the National Institute of Standards and Technology advises the internet of things devices are more than a matter of frustration, convenience or entertainment.
Consumer IoT products are rapidly increasing in popularity because these devices can make basic tasks, like adjusting the thermostat or turning on exterior home lights easier, and more convenient. As more of these IoT devices make their way into consumers' homes, it is important to understand their security implications. NIST recently conducted a technical security review of several consumer home IoT devices and developed a series of considerations to manufacturers for improving the security of these devices.
NIST is inviting the public to review and comment on the findings and considerations, released by the National Cybersecurity Center of Excellence (NCCoE). Draft NISTIR 8267, Security Review of Consumer Home Internet of Things (IoT) Products details open-source research, a hands-on review and a security features analysis of several commonly purchased IoT consumer home devices. Further, this report builds upon a series of recent research by NIST on IoT devices, including Draft NISTIR 8259, Core Cybersecurity Feature Baseline for Securable IoT Devices, and NISTIR 8228, Considerations for Managing Internet of Things (IoT) Cybersecurity and Privacy Risk.
Publication Details (Draft NISTIR 8267):
The public comment period for this document closes Friday, Nov. 1, 2019.
If you are interested in joining a community of interest to follow the developments of this guide and future NIST IoT research, please email firstname.lastname@example.org.