IoT on the Rise
IoT devices could include wearable fitness trackers, “smart” televisions, wireless infusion pumps, and cars—among many others. Internet-connected devices generally sense, collect, process, and transmit a wide array of data, ranging from consumer personally identifiable information to proprietary company data to infrastructure data used to make critical real-time decisions or to effect a change in the physical world.
Just as there are a variety of new uses, the IoT ecosystem’s nature brings new security considerations. These considerations include—but are not limited to—constrained power and processing; the ability to manage, update, and patch devices at scale; and a diverse set of new applications across consumer and industrial sectors.
Cybersecurity for IoT Program
Fostering security for devices and data in the IoT ecosystem, across industry sectors and at scale
Cultivate trust in the IoT and promote U.S. leadership through standards, guidance, and related tools
- Fundamental Research | including guidance and best practices that address IoT security.
- Applied Research | efforts are market-focused, driven by partnerships with industry verticals.
- Technology Transfer | providing industry with solutions, best practices, and guidance to enable technology advances and innovation.
- Standards Development | development and coordination to fill gaps and support international alignment.
Stakeholders & Collaborators
- Standards Development Organizations
- International bodies
NIST wants to hear from you! The Cybersecurity for IoT program is looking for feedback and potential collaborators.
Cybersecurity Considerations in IoT
NIST initiatives in IoT
The Cybersecurity for IoT program supports and builds off existing initiatives at NIST.
Lightweight Encryption | more
- Network of Things | more
- Connected Transportation
- Cybersecurity for Smart Grid Systems | more
- Cybersecurity for Cyber Physical Systems | more
- BLE Bluetooth | more
- Wireless Medical Infusion Pumps | more
- RFID Security Guidelines | more
- Guide to Industrial Control Systems (ICS) Security | more
- Supply Chain Risk Management | more
- Galois IoT authentication & PDS Pilot | more
- Cloud security | more
Cybersecurity Framework | more
- Cybersecurity Framework Profile for Manufacturing | more
- National Vulnerability Database | more
- Security of Interactive and Automated Access Management Using Secure Shell (SSH) | more
- Security Systems Engineering | more
- Digital Identity Guidelines | more
- Security Content Automation Protocol (SCAP) Standards and Guidelines | more
- Software Assessment Management Standards and Guidelines | more
- Cyber Threat Information Sharing | more
Please check back soon for upcoming events!
Cybersecurity Framework Workshop 2017
May 17, 2017 | Gaithersburg, Maryland | more
The Cybersecurity for IoT program had a panel and breakout session at NIST’s 2017 Cybersecurity Framework Workshop. For details, see section 4.12 (page 11) of the Cybersecurity Framework Workshop 2017 Summary.
Industry officials call for home IoT device standards at NIST framework meeting >> Inside Cybersecurity