The Australian Cyber Security Centre publishes manufacturer IoT guide
The Australian Cyber Security Centre issued an Internet of things (IoT) guide for manufacturers titled Code of Practice: Securing the Internet of Things for Consumers. The guide aims to help manufacturers offer secure IoT devices for consumers. It includes 13 principles and provides examples of how to implement them. The principles address: creating strong passwords; vulnerability disclosure policies; software security updates; storing credentials; protecting personal data, minimising exposed attack surfaces, ensuring communication security, ensuring software integrity, making systems resilient to outages, monitoring system telemetry data, enabling consumers to delete personal data, installing and maintaining devices, and validating input data.