Logo Header Menu

What do the new UK IoT security regulations mean for companies?

The UK government have established new regulations for security of connected IoT devices, but what does this mean for companies? What do the new UK IoT security regulations mean for companies? image

The new regulations involve ensuring that all connected IoT devices are secure and protected against cyber attacks.

Laid out by the Department for Digital, Culture, Media and Sport (DCMS), the regulations mean that companies must adhere to the following requirements:

  • All passwords for devices connected to the Internet must be unique and not resettable to factory settings;
  • Device manufacturers must publicly provide contact details so that vulnerabilities can be reported and acted on ‘in a timely manner’;
  • Device manufacturers must explicitly state minimum time frames for security updates either in store or online.

“We want to make the UK the safest place to be online with pro-innovation regulation that breeds confidence in modern technology,” said digital minister Matt Warman.

“Our new law will hold firms manufacturing and selling internet-connected devices to account and stop hackers threatening people’s privacy and safety.

Integrating IoT with blockchain: a trust and security game changer

Integrating IoT with blockchain sounds complex, perhaps unnecessary? But, with the right use cases, the combination of the technologies could be a security game changer. Read here

“It will mean robust security standards are built in from the design stage and not bolted on as an afterthought.”

Cracking down

The UK government had previously brought in a ‘Secure by Design Code of Practice’ for IoT device providers, but this was voluntary and had no penalties for those who didn’t comply.

“The Government’s voluntary code of practice announced in October 2018 was a step in the right direction at improving IoT security but being voluntary its influence was always likely to be limited, particularly given that so many devices are manufactured outside of the UK,” said CTO of Redscan, Mark Nicholls. “Enshrining a core set of IoT security requirements now is undoubtedly positive, but more will need to be done over the longer term, particularly at an international level, for improvements to be more extensive.

“Due to the fact that the majority of IoT devices are small, many are shipped with software written in common languages such as C or C++. As a result of this, devices can be more susceptible to problems like memory leakage.

“Many organisations that use IoT devices also risk a failure to comply with data protection laws. Many IoT devices have limited on-board processing capabilities and rely on transferring data to the cloud for analysis.

“In specific relation to the GDPR, use of IoT devices creates complications around data processing, consent, the ‘right to be forgotten’ and breach reporting.”

It’s predicted that 75 billion IoT devices will be in use globally by 2025.

Security policies need a rethink

Due to the change in regulations, companies can’t afford to take the security of their data out of their hands, and may need to rethink their security policies to ensure that they are compatible with the new regulations.

The comprehensive IT security guide for CIOs and CTOs

Information Age’s IT security guide for CIOs, covering everything from how to implement an effective cyber security strategy to how to respond to the security skills crisis. Read here

“The implication for companies that use IoT is that any project or deployment may need to include a robust security policy and a rigorous process to track activities and potential breaches, in line with enterprise security best practice already in place for Wide Area and Local Area Networks,” said Nick Sacke, head of products and IoT at Comms365.

“It shows that IoT technology is receiving proper scrutiny and advancing to becoming an integral part of everyday business operations, with all the opportunities and risks that this entails.”

This article is tagged with: Cyber Security, IoT, UK Government

Sign up for Information Age Newsletters

Latest news

divider
Cybersecurity
The advantages of a cloud-first approach to modern security

The advantages of a cloud-first approach to modern security

14 August 2020 / The security needs of modern businesses have evolved significantly in recent years. While digital transformation [...]

divider
IoT and M2M
How eSIM is changing the IoT landscape

How eSIM is changing the IoT landscape

14 August 2020 / From connected technology in the office or warehouse, to kitchen gadgets and AI assistants, IoT [...]

divider
Releases & Updates
AWS announces general availability of Amazon Braket

AWS announces general availability of Amazon Braket

14 August 2020 / Amazon Braket aims to help developers and researchers in academia and industry begin to explore [...]

divider
Education
STEM A-Level results show encouraging signs for prospective talent

STEM A-Level results show encouraging signs for prospective talent

13 August 2020 / With students receiving their A-Level results today, analysis from NTT DATA UK has found that [...]

divider
Major Contracts
Targus and Samsung partner to deliver device accessories worldwide

Targus and Samsung partner to deliver device accessories worldwide

13 August 2020 / Targus, a current member of the Samsung Mobile Accessory Partnership Program (SMAPP), will support the [...]

divider
Cloud & Edge Computing
In the rush to public cloud, businesses could be making big mistakes

In the rush to public cloud, businesses could be making big mistakes

13 August 2020 / In December 2019, Cloud Industry Forum research indicated that 34% of workloads resided on the [...]

divider
Digital Transformation
The future of the workplace, in the eyes of Capita’s chief growth officer

The future of the workplace, in the eyes of Capita’s chief growth officer

12 August 2020 / Hosting a virtual Digital Transformation Expo (DTX) talk, Capita chief growth officer Ismail Amla spoke [...]

divider
Research
UK business leaders say success and technology background linked

UK business leaders say success and technology background linked

12 August 2020 / The majority of business leaders in the UK, according to the VMware study, say that [...]

divider
Telecoms
Four business telecoms trends set to revolutionise the mobile workforce

Four business telecoms trends set to revolutionise the mobile workforce

12 August 2020 / Technology has come a long way in the past decade, and the telecoms industry is [...]

Do NOT follow this link or you will be banned from the site!

Pin It on Pinterest