The National Institute of Standards and Technology solicited comments from industry partners as it works on a set of cybersecurity standards for manufacturers and users of internet of things-based devices, Federal News Network reported Tuesday. NIST officials held a workshop at its Gaithersburg, Md.-based headquarters Tuesday to seek industry feedback on an IoT risk management report released in June.
Katerina Megas, program manager of cybersecurity for the IoT program at NIST, said the proposed IoT guidance seeks to help agencies address security issues related to tech adoption and that the agency is focused on coming up with a “core baseline” that would serve as a starting point for industry-specific standards.
“We had devices in place in federal agencies, in some cases, that had already been purchased,” Megas said. “We wanted to ensure what we provided some information to those operational entities that were already using IoT devices, understanding they had a range of capabilities.”
Other NIST officials also used the workshop as a venue to understand existing industry best practices as they work on the IoT guidance.