IoT Cybersecurity Act of 2017: A Necessary But Insufficient Approach

Author: 
Publication Date: 
August 2017
Description: 

ISACA Now Blog

Project: 
A Multi-stakeholder Approach to Cybersecurity Risk Management
Document Type: 
Articles and Op-Eds

The Mirai botnet attack on the DYN network in October 2016 highlighted to many policymakers the potential problems associated with IoT devices. The compromise and concerted use of thousands of webcams and DVRs to disrupt key Internet services focused attention on the poor implementation of security controls on millions of devices newly connected to the Internet.

The introduction of the IoT Cybersecurity Improvement Act of 2017 by a bipartisan group of US senators seeks to address the inherent threat IoT devices pose to federal government services. This bill builds on recent efforts, including the Trump administration’s new executive order on cyber security for federal networks and critical infrastructure.

Read more