IoT Security Trust Mark™ is in Pilot
Verifying Baseline IoT Security and Vendors Security Claims
What is the Trust Mark?
The Internet of Things (IoT) Security Trust Mark™ (STM) framework sets out the principles and basis for third party conformity assessment, certification and voluntary 'live' labelling scheme providing IoT users (consumers) with a recognisable level of assurance that IoT provider's (vendor/manufacturer) security claims about their product have been independently evaluated and conform with internationally established baseline security requirements.
The scheme itself provides a unified, internationally applicable, scalable, independent and rigorous approach to assessing the integrity of the vendor’s security claims for their IoT product and how they conform to the defined IoT Security Baseline Requirements (BR) recommendations, guidelines and codes produced by Governments and Standards bodies enabling mutual recognition.
Why a Trust Mark?
The IoT Security Trust Mark™ addresses the real risk of a lack of verified baseline security in IoT devices by:
* Enabling IoT Users to have confidence that the baseline requirements and security features claimed by a vendor in an IoT product have been evaluated.
* Providing participating IoT product evaluators, independent Accredited Test Facilities (ATFs), with a governance framework for predictable, standardised and repeatable evaluation of products prior to submission to a scheme Decision Authority (DA).
* Supplying IoT Providers with a certification, voluntary 'live' label (STM QR) to demonstrate their product has passed independent evaluation of their security claims and the Baseline Requirements (BR) of the scheme.
Trust Mark Application?
The IoT Security Trust Mark™ certification and labelling scheme covers IoT devices associated with:
* Consumers in their homes;
* Business use;
* Government;
* Industrial & Operational Systems;
* Critical Infrastructure; and,
* Organisations of Significant National Interest.
“For many IoT start-ups, security is often considered as the last thing, in a haste to get products into the market.” #IoTsecurity
Read MoreRT @IoTACproject: The #smarthome use case is @IoTACproject's 4th pilot that focuses on the security-critical #energy and #healthcare domain…
Read More@NCSC Technical Director Dr Ian Levy, said: “I am delighted by the introduction of this bill which will ensure the security of connected consumer devices and hold device manufacturers to account for upholding basic cyber security.” #IoTsecurity
Read More“Appliance makers have little understanding of security risks compared to computer manufacturers and software companies, hackers have become easy to hijack their devices.” #IoTsecurity
Read MorePhilips Working on Patches for Vulnerabilities Found in Medical Products | https://t.co/ogkF6xFA8f via @SecurityWeek #IoTsecurity
Read MoreThe Internet of Things #IoTsecurity Trust Mark™ (STM) certification and voluntary labelling scheme is live, with an open call for leading IoT vendors to register an expression of interest to participate in the Pilot. Details on organisations site ;
Read MoreRT @CIOonline: Only 39% of organizations believe their network engineers and security successfully collaborate. Why aren’t more doing bette…
Read MoreRT @CSOonline: Researchers uncover vulnerabilities that affect the Bluetooth Classic protocol. The most serious flaw allows an attacker to…
Read More“IoT does pose security threats that require thorough protection. Anything that connects to the internet or relies on connectivity—from train displays to phones to smart thermostats— can be hacked.” #IoTsecurity
Read More“IoT security solutions are not something you slap on after the fact. Build your IoT infrastructure securely from the ground up.” #IoTsecurity
Read More