A group of lawmakers recently crafted legislation designed to enhance Internet-connected devices cybersecurity.
The Internet of Things (IoT) Cybersecurity Improvement Act of 2019 is being introduced in the Senate by Sens. Mark R. Warner (D-VA) and Cory Gardner(R-CO), co-chairs of the Senate Cybersecurity Caucus, along with Maggie Hassan (D-NH) and Steve Daines (R-MT). Reps. Robin Kelly (D-IL) and Will Hurd (R-TX) are introducing companion legislation in the House of Representatives.
The bill would require devices purchased by the government meet certain minimum security requirements, with officials noting The Internet of Things, the term used to describe the growing network of Internet-connected devices and sensors, is expected to include over 20 billion devices by 2020.
While devices and the data they collect and transmit present enormous benefits to consumers and industry, the relative insecurity of many devices presents enormous challenges.
“While I’m excited about their life-changing potential, I’m also concerned that many IoT devices are being sold without appropriate safeguards and protections in place, with the device market prioritizing convenience and price over security,” Warner, a former technology entrepreneur and executive and vice chairman of the Senate Select Committee on Intelligence, said. “This legislation will use the purchasing power of the federal government to establish some minimum security standards for IoT devices.”
Kelly said as the government continues to purchase and use more internet-connected devices, it must ensure the devices are secure.
“Everything from our national security to the personal information of American citizens could be vulnerable because of security holes in these devices,” Kelly said. “It’s estimated that by 2020 there will be 30 million internet-connected devices in use. As these devices positively revolutionize communication, we cannot allow them to become a backdoor to hackers or tools for cyberattacks.”