November 4th, 2021: New Report on Industry Adoption of Vulnerability Disclosure Practice Published. The IoT Security Foundation has published its 4th report which examines the practice of vulnerability disclosure in Consumer IoT - with an extension into enterprise and the B2B model. The report is seen as a cybersecurity progress barometer of the sector
When directed to manage an IoT device or router using a browser, passwords and all communications are typically passed over an unencrypted connection. This is a security vulnerability which needs attention.
Today, UK's Department for Digital, Culture, Media and Sport (DCMS) published its response to the Secure by Design call for views in its quest to change the law to make ‘smart’ products - like televisions, cameras and household appliances that connect to the Internet - more secure for consumers to use.
With the support of the ManySecured project partners, the IoT Security Foundation has created a Special Interest Group (SIG) to facilitate Interoperable Security through Collaboration with stakeholders in the IoT ecosystem value chain.
As a new member of the IoT Security Foundation, we asked the CEO of Crypto Quantique, Dr Shahram Mossayebi, to tell us how they are offering silicon vendors a unique hardware IP solution and complementary software platform to solve a number of security challenges including scalability, identity and cost.
Today, the IoT Security Foundation (IoTSF) and FIDO Alliance announced that they are collaborating to improve the status of IoT security.
An online platform designed to help IoT vendors receive, assess, manage and mitigate vulnerability reports has been launched by the IoT Security Foundation (IoTSF). VulnerableThings.com aims to simplify the reporting and management of vulnerabilities whilst helping IoT vendors comply with new consumer IoT security standards and regulations.
The IoT Security Foundation has today announced that Ollie Whitehouse from NCC Group has joined the IoTSF steering board which seeks to 'make it safe to connect' in the era of IoT.
Just 13% of Consumer IoT Firms Allow Vulnerability Reporting Despite Incoming Laws and International Standards
An analysis of 330 consumer IoT device manufacturers has revealed five of every six companies (86.7%, 286) don’t allow for vulnerability reporting. This would see them fall foul of new international standards and recently announced plans for a British IoT security law; as well as proposed Australian code of practice and recommendations from the US Dept of Homeland Security.
Release Date: 12th November 2019 The IoT Security Foundation (IoTSF) is pleased to announce that IAR Systems and Secure Thingz are the headline sponsors for the 5th Annual IoTSF Conference. The IoT Security Foundation Conference is a one-day event that will entertain and educate 300+ delegates with best practice, next-practice and