Boeckl, K.
, Fagan, M.
, Fisher, B.
, Lefkovitz, N.
, Megas, K.
, Nadeau, E.
, Piccarreta, B.
, O'Rourke, D.
and Scarfone, K.
(2019),
Considerations for Managing Internet of Things (IoT) Cybersecurity and Privacy Risks, NIST Interagency/Internal Report (NISTIR), National Institute of Standards and Technology, Gaithersburg, MD, [online], https://doi.org/10.6028/NIST.IR.8228, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=927432
(Accessed July 27, 2025)
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock (
) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
Considerations for Managing Internet of Things (IoT) Cybersecurity and Privacy Risks
Published
Author(s)
, , , , , , , ,
Abstract
The Internet of Things (IoT) is a rapidly evolving and expanding collection of diverse technologies that interact with the physical world. Many organizations are not necessarily aware of the large number of IoT devices they are already using and how IoT devices may affect cybersecurity and privacy risks differently than conventional information technology (IT) devices do. The purpose of this publication is to help federal agencies and other organizations better understand and manage the cybersecurity and privacy risks associated with their individual IoT devices throughout the devices' lifecycles. This publication is the introductory document providing the foundation for a planned series of publications on more specific aspects of this topic.Citation
NIST Interagency/Internal Report (NISTIR) - 8228
Report Number
8228
NIST Pub Series
Pub Type
NIST Pubs
Download Paper
Keywords
cybersecurity risk, Internet of Things (IoT), privacy risk, risk management, risk mitigation
Citation
Issues
If you have any questions about this publication or are having problems accessing it, please contact [email protected].
Created June 24, 2019, Updated October 12, 2021