Editing List of IoT Security Standards
Warning: You are not logged in. Your IP address will be publicly visible if you make any edits. If you log in or create an account, your edits will be attributed to your username, along with other benefits.
The edit can be undone.
Please check the comparison below to verify that this is what you want to do, and then save the changes below to finish undoing the edit.
Latest revision | Your text | ||
Line 17: | Line 17: | ||
The National Institute of Standards and Technology (NIST) under U.S. Department of Commerce publishes the FIPS standards applicable under the Federal Information Security Management Act (FISMA).NIST is actively developing a high level IoT guide covering organizational process and roles . See [https://www.nist.gov/programs-projects/nist-cybersecurity-iot-program https://www.nist.gov/programs-projects/nist-cybersecurity-iot-program]. | The National Institute of Standards and Technology (NIST) under U.S. Department of Commerce publishes the FIPS standards applicable under the Federal Information Security Management Act (FISMA).NIST is actively developing a high level IoT guide covering organizational process and roles . See [https://www.nist.gov/programs-projects/nist-cybersecurity-iot-program https://www.nist.gov/programs-projects/nist-cybersecurity-iot-program]. | ||
− | ''' | + | '''IoT Security Foundation''' |
− | A new organization tries to holistically address IoT security thru best practices guide and planned self certification schemes the [https://iotsecurityfoundation.org/best-practice-user-mark/ Best Practice User | + | A new organization tries to holistically address IoT security thru best practices guide and planned self certification schemes the [https://iotsecurityfoundation.org/best-practice-user-mark/ Best Practice User Mar]k. They explicitly reject the idea that the manufacturer is solely responsible and are far more realistic about the roles of various players. For more check [https://iotsecurityfoundation.org/ https://iotsecurityfoundation.org] |
− | http://api.ning.com/files/JomcnL50vYBvmOA31QfC4StHXMFUCq7ud2t0jWw-YlVmCPXKr4bXg8yf7EmRLjKFdSF*7n3ORFiBX*WdcLr8cZDcbGyqUOzE/1.png | + | [http://api.ning.com/files/JomcnL50vYBvmOA31QfC4StHXMFUCq7ud2t0jWw-YlVmCPXKr4bXg8yf7EmRLjKFdSF*7n3ORFiBX*WdcLr8cZDcbGyqUOzE/1.png][[File:1.png|link=http://api.ning.com/files/JomcnL50vYBvmOA31QfC4StHXMFUCq7ud2t0jWw-YlVmCPXKr4bXg8yf7EmRLjKFdSF*7n3ORFiBX*WdcLr8cZDcbGyqUOzE/|688px]]] |
'''[http://www.iiconsortium.org/index.htm IIC Industrial Internet Consortium]''' | '''[http://www.iiconsortium.org/index.htm IIC Industrial Internet Consortium]''' | ||
Line 55: | Line 55: | ||
The online trust alliance (OTA) works on consumer trust and online brand reputation, including privacy, identity theft and internet governance. They are a successor to efforts to combat spam emails thru Email Senders and Provider Coalition (ESPC). They have developed a [https://otalliance.org/initiatives/internet-things IoT trust framework .] | The online trust alliance (OTA) works on consumer trust and online brand reputation, including privacy, identity theft and internet governance. They are a successor to efforts to combat spam emails thru Email Senders and Provider Coalition (ESPC). They have developed a [https://otalliance.org/initiatives/internet-things IoT trust framework .] | ||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
'''[https://www.ietf.org/ IETF]''' | '''[https://www.ietf.org/ IETF]''' | ||
Line 73: | Line 65: | ||
: '''MUD''' | : '''MUD''' | ||
− | The draft [ | + | The draft [https://tools.ietf.org/html/draft-lear-mud-framework-00 Manufacturers Usage Description] is a RFC intended to help reduce the vulnerability surface using a simple network policy ( whitelisting approach). It aims to reduce scope for malware injection and over the air firmware updates being hijacked. It also tries to cover devices no longer actively maintained by the original manufacturer. |
: [https://datatracker.ietf.org/doc/rfc7925/ '''DICE'''] | : [https://datatracker.ietf.org/doc/rfc7925/ '''DICE'''] |