FCC Unveils US Cyber Trust Mark for Secure IoT Devices
The Federal Communications Commission (FCC) in the US has unanimously voted to launch a voluntary cybersecurity labeling program for consumer-focused IoT devices. This move follows a surge in IoT attacks and aims to empower consumers with informed purchasing decisions.
The new program, set to differentiate trustworthy IoT products, will see eligible devices bearing the 'US Cyber Trust Mark' and a QR code for detailed information. This follows a similar model in Germany, where the Federal Office for Information Security (BSI) oversees voluntary cybersecurity certification programs. In both cases, accredited third-party evaluators like TÜV Informationstechnik GmbH (TÜVIT) in Germany and approved administrators in the US will conduct independent testing and certification according to recognized standards such as ISO/IEC 17025.
Examples of eligible IoT products include home security cameras, voice-activated shopping devices, internet-connected appliances, fitness trackers, garage door openers, and baby monitors. The FCC, like the BSI, will coordinate with national and international bodies to ensure robust evaluation methodologies and criteria.
With over 1.5 billion attacks against IoT devices in the first half of 2021, the need for such a program is evident. By providing clear labeling and incentivizing higher cybersecurity standards, the FCC's program seeks to enhance consumer trust and safety in the IoT market.
