To inform NIST's Cybersecurity for Internet of Things (IoT) Guidance, the U.S. Commerce Department’s National Institute of Standards and Technology (NIST) will host a workshop on April 22, 10:00 a.m.-4:00 p.m. EST to focus on public comments provided on public draft documents. ANSI encourages relevant stakeholders to participate.
NIST's latest IoT effort stems from Internet of Things Cybersecurity Improvement Act of 2020, which requires NIST and the Office of Management and Budget (OMB) to take specified steps to increase cybersecurity for IoT devices. IoT includes the extension of internet connectivity into physical devices and everyday objects.
To that end, the bill requires NIST to "develop and publish standards and guidelines for the federal government on the appropriate use and management by agencies of IoT devices owned or controlled by an agency and connected to information systems owned or controlled by an agency, including minimum information security requirements for managing cybersecurity risks associated with such devices."
In May 2020, NIST published a core baseline of IoT cybersecurity capabilities, and in December issued drafts of a number of complementary documents for public comment.
The public workshop will discuss themes in the comments provided to the cybersecurity for IoT public draft documents and the paths forward for those documents. Ultimately, the purpose of the workshop is to take themes from the comments and gather additional input from stakeholders through facilitated discussions open to all workshop participants around key questions that can help the documents move forward.
NIST’s recent blog post captures some of the document themes, including risk and assessment, and how the publications relate to international and industry standards.
Register for the NIST virtual event via NIST's workshop webpage.
Read more about the NIST's Workshop on Federal IoT Devices and federal and congressional updates in ANSI's Government Relations and Public Policy Monthly Update, a publication exclusive to ANSI members.