The State of California has approved the first IoT security bill. While this act is historic, it may not prove to be as productive as originally hoped. The reason for this is that securing the IoT is a complex task that will always remain in a state of constant evolution. Even the most competent security experts express concerns with keeping up with the volume and the sophistication of the IoT threat landscape. Lawmakers have only the most superficial understanding of the security issues facing the IoT. As such, the law cannot addresses the real threats in any meaningful way. In the near term this law will no doubt create additional expense for vendors and manufacturers – and one can safely assume that these costs will ultimately be passed along to their end user customers.
The first Internet of Things (IoT) security bill in the US has been approved in California at the end of August and has now reached the Governor’s desk to be signed into law.
The bill, SB-327, was introduced in February 2017 and was the first legislation of its kind in the US.