Considerations for Managing Internet of Things (IoT) Cybersecurity and Privacy Risks

Kaitlin R. Boeckl; Michael J. Fagan; William J. Fisher; Naomi B. Lefkovitz; Katerina N. Megas; Ellen M. Nadeau; Benjamin M. Piccarreta; Danna G. O'Rourke; Karen A. Scarfone

doi:http://dx.doi.org/10.1002/https://doi.org/10.6028/NIST.IR.8228

Considerations for Managing Internet of Things (IoT) Cybersecurity and Privacy Risks

Published: June 25, 2019

Author(s)

Kaitlin R. Boeckl, Michael J. Fagan, William J. Fisher, Naomi B. Lefkovitz, Katerina N. Megas, Ellen M. Nadeau, Benjamin M. Piccarreta, Danna G. O'Rourke, Karen A. Scarfone

Abstract

The Internet of Things (IoT) is a rapidly evolving and expanding collection of diverse technologies that interact with the physical world. Many organizations are not necessarily aware of the large number of IoT devices they are already using and how IoT devices may affect cybersecurity and privacy risks differently than conventional information technology (IT) devices do. The purpose of this publication is to help federal agencies and other organizations better understand and manage the cybersecurity and privacy risks associated with their individual IoT devices throughout the devices' lifecycles. This publication is the introductory document providing the foundation for a planned series of publications on more specific aspects of this topic.

Citation: NIST Interagency/Internal Report (NISTIR) - 8228

Report Number:

8228

NIST Pub Series: NIST Interagency/Internal Report (NISTIR)

Pub Type: NIST Pubs

Download Paper

https://doi.org/10.6028/NIST.IR.8228

Keywords

cybersecurity risk, Internet of Things (IoT), privacy risk, risk management, risk mitigation

Cybersecurity

Created June 25, 2019, Updated June 25, 2019

Considerations for Managing Internet of Things (IoT) Cybersecurity and Privacy Risks

Share

Author(s)

Abstract

Download Paper

Keywords