JUL 02, 2020 | GLOBAL
BSA Releases Policy Principles to Help Secure and Build Trust in the Internet of Things
Global harmonization of IoT policies is needed from all levels of government
WASHINGTON – July 2, 2020 –The Internet of Things (IoT) is dramatically increasing in size and scope, with almost 14.7 billion machine-to machine connections predicted by 2023. This growth has profound and global cybersecurity impacts for businesses, governments, and individual consumers. The COVID-19 pandemic makes concrete action to promote security in IoT devices even more urgent; while IoT printers, headsets, and other devices empower employees to work remotely, these devices can also bring increased risk of exposure to vulnerabilities in the IoT ecosystem.
Poorly secured IoT technologies pose considerable cybersecurity risks and could compromise sensitive data, affect the delivery of essential services like healthcare and utilities, and threaten the global resilience of the internet. BSA | The Software Alliance’s Policy Principles for Building a Secure and Trustworthy Internet of Things offers twelve responsible, risk-based steps that governments around the world can take to address these challenges and build trust in the IoT.
“BSA is eager to engage with policymakers at the national, state, and local level on the crucial issue of IoT security. We need flexible policy approaches that are based on an understanding of how the entire IoT ecosystem works, seamlessly integrating security capabilities across devices, cloud services, and networks,” said Victoria Espinel, President and CEO of BSA | The Software Alliance. “The global pandemic has underscored the need for strong security as so many people, businesses, and government agencies now rely on technology to work and operate remotely. For the Internet of Things to continue to evolve in innovative and secure ways, governments must create consistent, internationally operable policies for IoT security. BSA stands ready to engage in this process, and we hope that these principles will help spur thoughtful discussions.”
When developing IoT security policies, governments must:
- Account for the IoT ecosystem’s diversity and complexity
- Define key concepts and requirements clearly
- Secure the whole IoT ecosystem, not just devices
- Distinguish between consumer IoT and industrial IoT (IIoT)
- Build on industry best practices
- Incentivize security throughout the IoT life cycle
- Embrace multi-stakeholder processes
- Seek national and international policy harmonization
- Support the development and use of internationally recognized IoT standards
- Establish baseline security requirements as necessary and appropriate
- Integrate security into IoT acquisition
- Include IoT in incident response
These steps will help consumers and industry harness the power of the rapidly expanding universe of IoT to inspire innovation and boost the economy, while guarding against potential pitfalls. To read BSA’s full recommendations, visit: https://www.bsa.org/policy-filings/bsa-policy-principles-for-building-a-secure-and-trustworthy-internet-of-things
소프트웨어 연합(BSA | The Software Alliance, 이하 BSA)(www.bsa.org)은 각국 정부를 대상으로 세계 시장에서 전 세계 소프트웨어 업계를 대변하고 옹호하는 선도적 연합체입니다. 세계의 가장 혁신적 기업들이 회원사로 참여하며 경제에 활기를 불어 넣고 현대의 생활을 향상시키는 소프트웨어 솔루션을 만들어 내고 있습니다.
워싱턴 DC에 본부를 두고, 30개국이 넘는 국가들에서 운영되는 BSA는, 합법적 소프트웨어 사용을 증진시키고 기술 혁신을 촉진하며 디지털 경제의 성장을 추진하는 공공 정책을 지지하는 준법 프로그램들을 선도합니다.