We Can All Move IoT Security Forward
Industry groups such as the National Institute of Standards and Technology (NIST), the Industrial Internet Consortium (IIC), and the IoT Security Foundation (IoTSF), are developing security frameworks to help address the many foreseeable issues our IoT devices will face. They are coupled by industry-specific undertakings whose comprehensiveness and maturity vary from vertical to vertical. The FDA, for example, issued guidance entitled Postmarket Management of Cybersecurity in Medical Devices in which broad security recommendations are provided, but not mandated, for Class-3 implantable devices. All of these efforts are still in their early stages though, and any enforcement of tangible policy will only arrive after lengthy review processes at both government and industry levels.