FTC Released a Guide Careful Connections: Building Security in the Internet of Things (January 2015)

Careful Connections: Building Security in the Internet of Things

January 2015

The Federal Trade Commission (“FTC”) released a guide Careful Connections: Keeping the Internet of Things Secure that discusses the growing use of Internet of Things (IoT) devices, projected to exceed 20 billion by 2025, and highlights the associated security risks. It emphasizes that insecure devices can expose sensitive information not only from the devices themselves but also from the networks they connect to. The guide outlines a multifaceted approach to security that IoT companies should adopt, focusing on the unique needs of each device based on its function, data handling, and potential risks.

Key recommendations include designing security into products from the start, employing a risk-based approach to security resource allocation, and utilizing recognized best practices to address common vulnerabilities. Companies are encouraged to implement strong encryption, understand applicable regulations, and ensure robust authentication and access control measures. Additionally, the guide stresses the importance of secure data management throughout the device lifecycle and the need for continuous monitoring of security risks.

The guide advocates for creating a culture of security within organizations, promoting clear communication about security practices to both employees and customers. This includes training employees on security measures, establishing vendor security expectations, and being transparent about data collection and security protocols. Ultimately, it calls for proactive measures to address vulnerabilities, including timely updates and user notifications, to enhance the overall security of IoT devices and protect consumer information.

For more information, see here:  https://www.ftc.gov/business-guidance/resources/careful-connections-keeping-internet-things-secure

These materials were obtained directly from the Federal Government public websites and are posted here for your review and reference only.  No Claim to Original U.S. Government Works.  These may not be the most recent versions.  The U.S. Government may have more current information.  We make no guarantees or warranties about the accuracy or completeness of this information or the information linked to.  Please check the linked sources directly.