Tenable Supports the IoT Standards Leadership Act
The IoT Standards Leadership Act would require the U.S. Department of Commerce to report on U.S. engagement in international IoT standards-setting bodies and their effectiveness for cybersecurity. Here’s why it matters.
The modern attack surface is growing faster than ever before, enabled in large part by the explosion of mobile computers, smartphones and Internet of Things (IoT) devices like the weather monitoring systems on the electric grid and the sensors connected to industrial control systems to make factories and warehouses run smoothly.
In fact, the Ericsson Internet of Things Forecast predicts there will be 18 billion IoT-related connected devices by 2022. While the exponential increase in IoT devices is enabling organizations to improve services and efficiency, it also widens the Cyber Exposure gap for users and provides bad actors with easy access to unsecured devices.
As the global use of IoT devices continues to grow, the U.S. has a responsibility to help develop strong IoT security standards. We must maintain leadership on this important issue, and that includes supporting international, multi-stakeholder standards development processes with respect to internet-connected devices. These processes can help enable further innovation, while strengthening security.
Tenable supports the IoT Standards Leadership Act recently introduced by Representatives Doris Matsui (D-CA) and Michael McCaul (R-TX), which would require the U.S. Department of Commerce to conduct a study of international IoT standards-setting bodies and organizations, and their effectiveness. These findings would further guide U.S. engagement with stakeholders to promote and strengthen international standards.
This legislation is an important step toward ensuring the U.S. is part of the process to develop international, consensus-driven IoT standards and will help prevent country-specific standards from hindering the progress of American innovation. The development of effective, international IoT standards will support global collaboration on the establishment of secure operations through strong encryption, network security and cyber hygiene.
At Tenable, we know firsthand how the increase in connected devices creates Cyber Exposure challenges. Effective U.S. engagement in international standards development will help address these challenges and make for a safer future. Through this important legislative effort, and the work of the private sector, the U.S. can play a leadership role in the creation of an interoperable, safe and secure future for these powerful emerging technologies. Leveraging private-public partnerships will remain a vital piece of securing IoT devices around the world, and Tenable looks forward to working with our partners in government and industry to ensure these devices can provide incredible benefits while minimizing the risk to users.
Learn More:
Related Articles
Cybersecurity Snapshot: Cyber Agencies Offer Secure AI Tips, while Stanford Issues In-Depth AI Trends Analysis, Including of AI Security
April 19, 2024Check out recommendations for securing AI systems from the Five Eyes cybersecurity agencies. Plus, Stanford University offers a comprehensive review of AI trends. Meanwhile, a new open-source tool aims to simplify SBOM usage. And don’t miss the latest CIS Benchmarks updates. And much more!
Cybersecurity Snapshot: CISA Says Midnight Blizzard Swiped U.S. Gov’t Emails During Microsoft Hack, Tells Fed Agencies To Take Immediate Action
April 12, 2024Check out CISA’s urgent call for federal agencies to protect themselves from Midnight Blizzard’s breach of Microsoft corporate emails. Plus, a new survey shows cybersecurity pros are guardedly optimistic about AI. Meanwhile, SANS pinpoints the four trends CISOs absolutely must focus on this year. And the NSA is sharing best practices for data security. And much more!
Cybersecurity Snapshot: CSRB Calls Exchange Online Hack “Preventable,” While CISA, Others Warn About XZ Utils Backdoor Vulnerability
April 5, 2024Check out why the Cyber Safety Review Board has concluded that the Microsoft Exchange Online breach “should never have occurred.” Plus, warnings about the supply chain attack against the XZ Utils open source utility are flying. In addition, a report says ransomware attacks surged in February. And the U.S. government issues a comprehensive AI usage policy for federal agencies. And much more!
CVE-2024-4040: CrushFTP Virtual File System (VFS) Sandbox Escape Vulnerability Exploited
April 23, 2024A zero-day vulnerability in CrushFTP was exploited in the wild against multiple U.S. entities prior to fixed versions becoming available as the vendor recommends customers upgrade as soon as possible.
Operational Technology in the DoD: Ensuring a Secure and Efficient Power Grid
April 19, 2024In an evolving threat landscape, the DoD must make sure that its mission-critical operations don’t experience power outages.
Cybersecurity Snapshot: Cyber Agencies Offer Secure AI Tips, while Stanford Issues In-Depth AI Trends Analysis, Including of AI Security
April 19, 2024Check out recommendations for securing AI systems from the Five Eyes cybersecurity agencies. Plus, Stanford University offers a comprehensive review of AI trends. Meanwhile, a new open-source tool aims to simplify SBOM usage. And don’t miss the latest CIS Benchmarks updates. And much more!
- Government
- Legislation
- Threat Intelligence
- Threat Management
- Vulnerability Management
- Vulnerability Scanning