Internet standards organisation, ETSI has released a new standard for cybersecurity in the Internet of Things (IoT) that references the GSMA’s IoT Security Guidelines. With more and more devices in the home being connected to the internet and people entrusting their personal data to an ever-growing number of online devices and services, the new specification aims to address the security concerns of internet-connected consumer devices.
Many products and appliances that have been traditionally offline are now being connected and need to be created with security by design to withstand potential cyber-attacks. The IoT will touch virtually every connected device such as connected appliances, connected home automation and alarm systems, smart home assistants, TVs and speakers and even toys. ETSI’s approach requires manufacturers to stop the use of universal default passwords which have been the source of a number of security issues.
Earlier this year the UK Government’s Department of Culture, Media and Sport (DCMS) issued its IoT Security ‘Code of Practice’ outlining 13 practical steps that consumer IoT manufacturers should consider when designing and building products, with the intention of making them less vulnerable to attack and keeping consumers safe. This also referenced the GSMA’s IoT Security Guidelines.
The GSMA’s guidelines outline a number of recommendations for Internet of Things (IoT) security for the entire IoT ecosystem including service providers, device manufacturers, developers and mobile operators and set out a comprehensive security assessment scheme to ensure IoT services are protected against IoT security risks. They address typical cybersecurity and data privacy issues associated with IoT services and outline a step-by-step process to securely launch solutions to market. With the global cellular IoT market set to reach 3.1 billion IoT connections by 2025, according to GSMA Intelligence, cybersecurity will be of crucial importance.
By following the guidelines manufacturers have the opportunity to ensure their devices are inherently secure at the point of manufacture, providing customers with peace of mind. For more information on the GSMA’s work on IoT Security, please go here: www.gsma.com/iot/iot-security/