Tech firms sign up to government's IoT code of practice

HP, Samsung and Centrica Hive first to sign up to voluntary guidelines for Gov's 'Secure by Design'

IoT

Tech firms including HP, Samsung and Centrica Hive are the first to sign up to the UK government's voluntary security guidelines for IoT consumer devices.

Published by Department for Media, Culture and Sport (DCMS), the Code of Practice is a voluntary set of measures to help manufacturers boost the security of internet of things (IoT) devices by ensuring that security is embedded into the design process.

The code is made up of 13 guidelines, laid out in the government's 'Secure by Design' review published by the DCMS and the National Cyber Security Centre (NCSC) in March. Initially, the review was criticised by tech experts for 'lacking teeth' due to it being optional.

However, the code has already received support from high ranking tech firms, such as electronics giant Samsung. The company's director of IoT and SmartThings, Teg Dosanjh said that security and privacy in connected devices were of great importance to consumer trust and that the government's desire to make connected devices as safe and secure as possible was "warmly welcome".

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

"From smartwatches to children's toys, internet-connected devices have positively impacted our lives but it is crucial they have the best possible security to keep us safe from invasions of privacy or cyber attacks," said Minister for Digital, Margot James.

"The UK is taking the lead globally on product safety and shifting the burden away from consumers having to secure their devices."

James added that pledges by HP and Centrica Hive Ltd were a welcome first step but warned that it was vital other manufacturers followed their lead and ensured strong security measures were built into everyday technology during its design.

By making security a part of the design, tech companies can take the burden of securing devices away from consumers, who would otherwise have to add it on as an extra after purchase.

According to the government, there will be an estimated 420 million internet-connected devices in use across the UK within the next three years and these will range from smart technology, such as phones, TVs and speakers, to more innovative and obscure gadgets like as kettles and fish tanks.

Such devices have been exploited by malicious actors in a number of ways. A recent lab report from Kaspersky found that IoT malware had tripled in the first half of 2018, with attacks such as malicious cryptocurrency mining, DDoS attacks and botnet activities becoming more prevalent and harder for manufacturers to combat.

Advertisement - Article continues below

The government's move was welcomed by the cyber security community, with Duncan Jones, head of research at Thales eSecurity: "This kind of directive from the government, supporting security by design, is crucial to ensuring that our increasingly connected world is secure, and it's excellent to see large-scale tech companies committing to these efforts."

Featured Resources

Digitally perfecting the supply chain

How new technologies are being leveraged to transform the manufacturing supply chain

Download now

Three keys to maximise application migration and modernisation success

Harness the benefits that modernised applications can offer

Download now

Your enterprise cloud solutions guide

Infrastructure designed to meet your company's IT needs for next-generation cloud applications

Download now

The 3 approaches of Breach and Attack Simulation technologies

A guide to the nuances of BAS, helping you stay one step ahead of cyber criminals

Download now
Advertisement

Recommended

Visit/technology/30736/what-is-ethical-ai
Technology

What is ethical AI?

21 Jan 2020
Visit/careers/28212/a-guide-to-cyber-security-certification-and-training
Careers & training

A guide to cyber security certification and training

13 Jan 2020
Visit/security/internet-security/354417/avast-and-avg-extensions-pulled-from-chrome
internet security

Avast and AVG extensions pulled from Chrome

19 Dec 2019
Visit/security/354156/google-confirms-android-cameras-can-be-hijacked-to-spy-on-you
Security

Google confirms Android cameras can be hijacked to spy on you

20 Nov 2019

Most Popular

Visit/operating-systems/25802/17-windows-10-problems-and-how-to-fix-them
operating systems

17 Windows 10 problems - and how to fix them

13 Jan 2020
Visit/microsoft-windows/32066/what-to-do-if-youre-still-running-windows-7
Microsoft Windows

What to do if you're still running Windows 7

14 Jan 2020
Visit/web-browser/30394/what-is-http-error-503-and-how-do-you-fix-it
web browser

What is HTTP error 503 and how do you fix it?

7 Jan 2020
Visit/business-strategy/mergers-and-acquisitions/354602/xerox-to-nominate-directors-to-hps-board-reports
mergers and acquisitions

Xerox to nominate directors to HP's board – reports

22 Jan 2020