This May 2020 report was released by the National Institute of Standards and Technology (NIST). The report describes recommended activities related to cybersecurity that manufacturers should consider performing before their IoT devices are sold to customers. These “foundational cybersecurity activities” can help lessen the cybersecurity-related efforts needed by customers, which in turn can reduce IoT device compromises and attacks carried out using compromised devices. The topics include assessment of customer needs and goals, communication with customers, and device support issues. The report will be useful to manufacturers of IoT devices, engineers, technologists, and IoT system integrators.
Key words: communications, controls/sensors, audio/video, cybersecurity/privacy, software development, protocols and standards