GSMA IoT Security Guidelines
The emergence of the Internet of Things (IoT) will create thousands of new services that will connect billions of new IoT devices over the next decade.
The providers of these new services may be unaware of the cyber security threats their services face, and may not have the skills to mitigate these risks. In contrast, their adversaries may understand the technology and security weaknesses, quickly taking advantage of these if vulnerabilities are exposed.
The mobile telecommunications industry, which the GSMA represents, has a long history of providing secure products and services to their customers, and would like to share their security expertise with IoT service providers.
The GSMA has therefore created this set of security guidelines for the benefit of service providers who are looking to develop new IoT products and services.
The primary audience for the IoT Security Guidelines are:
- IoT Service Providers – enterprises or organisations who are looking to develop new and innovative connected products and services.
- IoT Device Manufacturers – who provide IoT devices to IoT service providers, in order to enable IoT services.
- IoT Developers – who build IoT services on behalf of IoT service providers.
- Network Operators – who provide services to IoT service providers.
After downloading, you can demonstrate that your company’s products are aligned with the GSMA IoT Security Guidelines by completing the IoT Security Self-Assessment. Self-assessed products and services will be listed on our website after submission.
You can download the document set most relevant to you below. Documents are available in English & Japanese. A Chinese version will be available shortly.