To help organizations address the cybersecurity and privacy threats against Internet of Things (IoT) devices, the National Institute of Standards and Technology (NIST) has released draft NIST Internal Report (NISTIR) 8228: Considerations for Managing IoT Cybersecurity and Privacy Risks for public comment.
The document – developed in collaboration with a broad range of stakeholder groups – is intended to help federal agencies and other organizations better understand and manage the cybersecurity and privacy risks associated with their IoT devices throughout their lifecycles. The draft also includes recommendations about how to address risk considerations for these devices. Public comment on the draft NISTIR can be emailed to iotsecurity [at] nist.gov (iotsecurity[at]nist[dot]gov) by October 24, 2018.
For additional information, see NIST’s recent blog post.