Code of practice for IoT security in the UK

The UK department for Digital, Culture, Media and Sport and the National Cyber Security Centre (NCSC), in engagement with industry and consumer associations, and academia, published a Code of Practice for Internet of Things (IoT) security. The aim of the code is to ensure that products are secured by design. As such, it provides guidance mainly to device manufacturers, IoT service providers, mobile application developers, and retailers. The Code of Practice includes 13 outcome-focused guidelines, which are based on good practices in IoT security. The first draft of the code was published as part of the department’s secure by design report  from March 2018