Got Thoughts on the Sad State of IoT Security? The FCC Wants to Know
In a rare move, an FCC commissioner is calling on the public to weigh in on a proposed cybersecurity label for Internet of Things (IoT) products to prevent device makers from watering down the potential regulation.
The request comes from Commissioner Nathan Simington, who’s trying to strengthen an FCC proposal that would issue an easy-to-understand cybersecurity label for eligible IoT products, such as smart home appliances.
The system is meant to be voluntary for participating companies. But even so, the FCC’s goal is to issue the labels to products that follow “widely accepted cybersecurity standards.” As a result, the labeling system promises to drive consumers to purchase safer IoT gear while encouraging both device makers and retailers to sell “market secure devices.”
Still, Simington fears electronics vendors could end up undermining the labeling system as it faces scrutiny during the FCC’s official rule-making process. So on Tuesday, he took to Hacker News, a social site popular among software developers, urging them to submit their own comments on the proposed program.
“Many manufacturers oppose making any commitments about security updates, even voluntary ones,” he wrote.” These manufacturers are heavily engaged at the FCC and represented by sophisticated regulatory lawyers. The FCC and White House are not likely to take a strong stand if they only hear the device manufacturer's side of the story.”
The risk of electronics vendors dominating the public comments for the voluntary cybersecurity labeling system is why Simington is asking for concerned citizens, such as programmers, to offer their own feedback.
“You have experienced insecure protocols, exposed private keys, and other atrocious security,” he
Read more on pcmag.com
