U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

PUBLICATIONS

Foundational Concepts in Trusted IoT Device Network-Layer Onboarding: Enhancing Internet Protocol-Based IoT Device and Network Security

Published

Author(s)

Susan Symington, Blaine Mulugeta, William Polk, Murugiah Souppaya, Jeffrey Marron

Abstract

Internet of Things (IoT) devices are typically connected to a network. The steps performed to provision a device with its network credentials are referred to as network-layer onboarding (or simply, onboarding, assuming the network-layer context is understood). This paper proposes a definition for trusted network-layer onboarding. This paper is intended to introduce the reader to trusted network-layer onboarding; describe its capabilities, characteristics, and benefits; and explain the important role that onboarding can play in the protection of IoT devices and networks throughout the device lifecycle. By providing a common language that describes and clarifies various onboarding capabilities, this paper assists with discussion, characterization, and development of trusted onboarding solutions. This paper also describes a generic trusted onboarding process, defines onboarding functional roles and responsibilities, discusses onboarding-related aspects of IoT device lifecycle management, and explains how onboarding can enhance security capabilities that protect the device throughout its lifecycle.
Citation
NIST Interagency/Internal Report (NISTIR) - 8350
Report Number
8350
NIST Pub Series
NIST Interagency/Internal Report (NISTIR)
Pub Type
NIST Pubs

Download Paper

https://doi.org/10.6028/NIST.IR.8350
Local Download

Keywords

application-layer onboarding, authentication, bootstrapping, credentials, device lifecycle management, identity, internet of things (IoT), network-layer onboarding, onboarding
Network security and robustness

Citation

Symington, S. , Mulugeta, B. , Polk, W. , Souppaya, M. and Marron, J. (2025), Foundational Concepts in Trusted IoT Device Network-Layer Onboarding: Enhancing Internet Protocol-Based IoT Device and Network Security, NIST Interagency/Internal Report (NISTIR), National Institute of Standards and Technology, Gaithersburg, MD, [online], https://doi.org/10.6028/NIST.IR.8350, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=960692 (Accessed November 26, 2025)

Issues

If you have any questions about this publication or are having problems accessing it, please contact [email protected].

Created November 25, 2025
Was this page helpful?