. https://blog.avira.com/global-standards-for-smart-devices/
blog article
It looks like consumer smart devices might be getting a baseline set of standards, thanks to some collaboration between a UK government agency, a European Standards Organization, an industry association – and probably help from barrels and barrels of coffee. About time too, as a newly revised and updated Mirai botnet is raising its ugly head – primed for an expanded basket of vulnerable smart devices. The newly agreed-upon standards have 13 suggested guidelines for making IoT smart devices more secure such as “no default passwords” and “communicate securely.” “It’s a rather low baseline, but it’s definitely a move in the right direction of a more secure Internet of Things for consumers.” said Andrei Petrus, IoT Director at Avira. “In the rush to get the most innovative and competitive products to market, IoT device manufacturers often overlook the most basic security principles. Without proper enforcement, however, it’s yet to see to what extent manufacturers will voluntarily adhere to the ETSI standards.” Just a bit of organizational maneuvering. Getting to this point has required a bit of organizational cross-pollination. In the lead position has been the British government. Their Code of Practice was first published in a draft form in March 2018 and finalized in October of that year. It was developed by an alphabet soup of agencies including the Department for Digital, Culture, Media and Sport (DCMS), the National Cyber Security Centre (NCSC), and extensive contact with industry, consumer associations and academia. READ MORE