{"id":190818,"date":"2017-08-07T12:58:28","date_gmt":"2017-08-07T10:58:28","guid":{"rendered":"https:\/\/businesstech.co.za\/news\/?p=190818"},"modified":"2017-08-07T12:58:28","modified_gmt":"2017-08-07T10:58:28","slug":"us-announces-first-laws-to-regulate-the-internet-of-things","status":"publish","type":"post","link":"https:\/\/businesstech.co.za\/news\/cloud-hosting\/190818\/us-announces-first-laws-to-regulate-the-internet-of-things\/","title":{"rendered":"US announces first laws to regulate the Internet of Things"},"content":{"rendered":"<p>On 1 August, several American senators unveiled a bipartisan\u00a0<strong><a href=\"https:\/\/www.scribd.com\/document\/355269230\/Internet-of-Things-Cybersecurity-Improvement-Act-of-2017\" target=\"_blank\" rel=\"noopener\">bill<\/a>\u00a0<\/strong>to mandate baseline cyber security requirements for internet-connected devices purchased by the federal government.<\/p>\n<p>The bill follows a number of\u00a0\u00a0recent attacks which demonstrated that connected devices, which make up the Internet of Things (\u201cIoT\u201d), can paralyze websites,\u00a0networks, and even components of\u00a0critical infrastructure.<\/p>\n<p>According to an analysis of the bill by Norton Rose attorneys David Navetta,\u00a0Boris Segalis\u00a0and\u00a0Anna Rudawski, the bill\u00a0proposes implementation of basic security requirements for interconnected devices purchased by the federal government.<\/p>\n<p>Under the proposed law, federal suppliers would be required to monitor and patch cyber security vulnerabilities.<\/p>\n<p>The bill would require that suppliers of internet connected devices to the federal government:<\/p>\n<ul>\n<li>Provide written certification that the product does not contain any known security vulnerabilities.<\/li>\n<li>Use software and components that can be updated and patched.<\/li>\n<li>Refrain from using hard-coded credentials or passwords.<\/li>\n<li>Notify the purchasing agency if any defects are discovered.<\/li>\n<li>Update software or replace components that create vulnerabilities.<\/li>\n<li>Repair new security vulnerabilities in a timely manner.<\/li>\n<li>Continue to support the device or provide the purchasing agency notice when cyber security support ends.<\/li>\n<\/ul>\n<p>&#8220;Recent events show that the IoT is an attractive vector for a cyber attack,&#8221; said Norton Rose.<\/p>\n<p>&#8220;By mandating that suppliers meet basic security requirements, the federal government is pushing the market to take cyber security considerations into account as early as the product and system design phases. Further, by requiring post-sale monitoring of vulnerabilities, the government is requiring entities to monitor and enhance a device\u2019s cyber security throughout its life-cycle.&#8221;<\/p>\n<p>&#8220;Given the federal government\u2019s purchasing power, this bill could move the entire IoT market toward better cyber security practices.&#8221;<\/p>\n<hr \/>\n<p><strong>Read:\u00a0<a href=\"https:\/\/businesstech.co.za\/news\/mobile\/181927\/vodacom-opens-narrowband-internet-of-things-lab\/\" target=\"_blank\" rel=\"noopener\">Vodacom opens Narrowband Internet of Things lab<\/a><\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"<p>On 1 August, American senators unveiled a bipartisan\u00a0bill\u00a0to mandate baseline cybersecurity requirements for internet connected devices purchased by the federal government.<\/p>\n","protected":false},"author":10,"featured_media":52147,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[33,9878],"tags":[5906],"class_list":["post-190818","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cloud-hosting","category-technology","tag-norton-rose"],"_links":{"self":[{"href":"https:\/\/businesstech.co.za\/news\/wp-json\/wp\/v2\/posts\/190818","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/businesstech.co.za\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/businesstech.co.za\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/businesstech.co.za\/news\/wp-json\/wp\/v2\/users\/10"}],"replies":[{"embeddable":true,"href":"https:\/\/businesstech.co.za\/news\/wp-json\/wp\/v2\/comments?post=190818"}],"version-history":[{"count":6,"href":"https:\/\/businesstech.co.za\/news\/wp-json\/wp\/v2\/posts\/190818\/revisions"}],"predecessor-version":[{"id":190850,"href":"https:\/\/businesstech.co.za\/news\/wp-json\/wp\/v2\/posts\/190818\/revisions\/190850"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/businesstech.co.za\/news\/wp-json\/wp\/v2\/media\/52147"}],"wp:attachment":[{"href":"https:\/\/businesstech.co.za\/news\/wp-json\/wp\/v2\/media?parent=190818"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/businesstech.co.za\/news\/wp-json\/wp\/v2\/categories?post=190818"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/businesstech.co.za\/news\/wp-json\/wp\/v2\/tags?post=190818"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}