The GSMA has produced an initial draft of its ‘IoT Security Guidelines’ that are designed to help the industry establish a common understanding of security issues, establish best practise and provide recommendations on how to mitigate common security threats and weaknesses. We are now pleased to invite industry experts to review this set of documents and make any comments or suggested changes to ensure it reflects the requirements of the nascent IoT security space.
As the IoT grows and countless devices become connected to the internet consumers and businesses need to have the confidence that the privacy and security of their data does not become compromised. The introduction of new, innovative and interconnected IoT services raises the possibility of potential vulnerabilities that can be overcome if each IoT service is designed according to a common understanding of the threats and security issues. This is where the GSMA’s IoT Security Guidelines can play a valuable role in serving the entire industry.
The goal of the IoT Security Guidelines is to provide service providers and their developers with a set of design guidelines for building secure services. They interpret what aspects of the service are relevant to each player in the ecosystem, evaluate the risks associated with each component and determine how to compensate for them.
The GSMA IoT Security Guidelines are designed for:
- IoT service providers – i.e. Enterprises who are looking to develop new and innovative connected products and services.
- IoT device manufacturers who provide endpoint devices to service providers.
- Developers who build IoT services on behalf of service providers.
We encourage those involved in developing IoT services to review these guidelines to help create an ecosystem which is stable, secure and rich with opportunity for everyone. In order to receive a draft of the guidelines, visit the GSMA Connected Living IoT Security Guidelines Page. Comments and recommendations must be submitted via our form on our Guidelines Page. To provide more detailed feedback, please download the ‘GSMA IoT Security Guidelines Feedback Form’, also located on our Guidelines Page. Such recommendations must be submitted by November 16 and will be considered for the final version of our guidelines, due for publication in early 2016. The guidelines can be downloaded in either pdf or zip format. For any other information on the GSMA IoT Security Guidelines, please contact [email protected].
Submissions are now closed – the final version of the GSMA IoT Security Guidelines will be available in February 2016.