Jul 19, 2023 15:05:00

Biden Administration Announces New Security Standards Compliance Label 'US Cybertrustmark' for IoT Devices

The Biden administration has announced a cybersecurity certification and labeling program to help consumers make better product choices by certifying IoT and smart home devices that meet certain safety standards. As a result, devices that meet the security standards of the U.S. National Institute of Standards and Technology (NIST) will be given a certification label called the ' US Cybertrust Mark .'

Biden-Harris Administration Announces Cybersecurity Labeling Program for Smart Devices to Protect American Consumers | The White House

https://www.whitehouse.gov/briefing-room/statements-releases/2023/07/18/biden-harris-administration-announces-cybersecurity-labeling-program-for-smart-devices-to-protect-american- consumers/

The Biden administration announces its new smart home cybersecurity label - The Verge
https://www.theverge.com/2023/7/18/23798153/fcc-cyber-trust-mark-biden-security

Internet of Things Labeling Initiative - YouTube


The security labeling program is expected to start in 2024. According to the announcement, devices with unique and strong default passwords, data protection, software updates, and incident detection features will be eligible for the program. Devices that meet certain requirements will be marked with a Cybertrust mark resembling a shield and a QR code.

When consumers scan a QR code, they can access a page that shows the product's security and privacy practices. An example from the Federal Communications Commission (FCC) shows a page that specifies information such as how the audio collected by a smart home device's microphone will be used and whether the data will be shared.

Also, according to the example, the label and QR code will be displayed on the online mail order site as well. By explicitly displaying this information to consumers, it becomes easier for consumers to understand how manufacturers acquire and use personal information.

The program includes smart home devices such as security cameras, baby monitors, and smart TVs, as well as smart fitness trackers. Anne Neuberger, Deputy National Security Advisor for Cyber Security at the National Security Council, was asked in an interview, 'What is considered an IoT product?' Citing the NIST

report on which the The entire device, including a custom hub, is considered an IoT product.'

The FCC, which has pushed forward with this initiative, is considering 'annual recertification,' but at the time of the announcement, the program had not yet been enacted and was at the stage of accepting public comments on its deployment. It has not been decided whether

'This label is necessary by design to push the market to make safer products,' Neuberger said. 'By design, this label is necessary to push the market to make safer products. Companies can be differentiated with a label like this, so they can avoid higher costs for better security.' There will be no resistance to paying

In addition, Amazon, Best Buy, Google, LG Electronics USA, Logitech, and Samsung are said to be working to promote this program.