As we connect more devices in our homes to the internet, products and appliances that have traditionally been offline are now becoming part of the ‘Internet of Things’ (IoT).
The IoT represents a new chapter of how technology becomes increasingly common in our homes, making people’s lives easier and more enjoyable. As people entrust an increasing amount of personal data to online devices and services, the cyber security of these products is now as important as the physical security of our homes.
The UK Department for Digital, Culture, Media and Sports (DCMS) has published a ‘Code of Practice for consumer IoT security’. The aim of this Code of Practice is to support all parties involved in the development, manufacturing and retail of consumer IoT with a set of guidelines to ensure that products are secure by design and to make it easier for people to stay secure in a digital world.
The Code of Practice brings together, in thirteen outcome-focused guidelines, what is widely considered good practice in IoT security. The DCMS developed the code in conjunction with the National Cyber Security Centre (NCSC), and follows engagement with industry, consumer associations and academia. The Code was first published in draft in March 2018 as part of the Secure by Design report.
The Code of Practice and its 13 guidelines for IoT manufacturers, service providers, app developers, and retailers can be found here.