Privacy & Security

Senators propose bill to boost IoT cybersecurity

Sector is expected to include more than 20 billion devices by 2020, and officials want to make sure they are secure.
By Bernie Monegain
August 01, 2017
04:46 PM

With the goal of improving the cybersecurity of Internet-connected devices, legislators have introduced the Internet of Things (IoT) Cybersecurity Improvement Act of 2017.

The bill calls for devices purchased by the government to meet specified minimum security requirements. Senators Mark R. Warner, D-Virginia, and Cory Gardner, R-Colorado, co-chairs of the Senate Cybersecurity Caucus, along with Senators Ron Wyden, D-Washington, and Steve Daines, R-Montana, introduced the bipartisan legislation on Tuesday.

The bill calls for vendors who supply the government with IoT devices to ensure their devices are patchable, do not include hard-coded passwords that can’t be changed and are free of known security vulnerabilities.

The lawmakers consulted with technology and security experts before drafting the bill.

The legislation promotes security research by encouraging the adoption of coordinated vulnerability disclosure policies by federal contractors and giving legal protections to security researchers who adhere to those policies.

IoT expected to include more than 20 billion devices by 2020. It comes with benefits and dangers as IoT devices can represent a weak point in a network’s security.

The devices and the data they collect and transmit offer big benefits to consumers and industry. However, the relative insecurity of many devices come with enormous challenges, the legislators point out. 

Sometimes shipped with factory-set, hardcoded passwords and often unable to be updated or patched, IoT devices can represent a weak point in a network’s security, leaving the rest of the network vulnerable to attack.

Over the past year, IoT devices have been used to launch Distributed Denial of Service attacks against websites, web-hosting servers, and internet infrastructure providers. 

The bill has endorsements from the Atlantic Council, the Berklett Cybersecurity Project at Harvard University’s Berkman Klein Center for Internet & Society, the Center for Democracy and Technology, Mozilla, Cloudflare, Neustar, the Niskanen Center, Symantec, TechFreedom, and VMware.

Twitter: @Bernie_HITN
Email the writer: bernie.monegain@himssmedia.com

Like Healthcare IT News on Facebook and LinkedIn

Topics: 
Connected Health, Government & Policy, Medical Devices, Mobile, Privacy & Security

More regional news

Doctor smiles and waves into a laptop during a telehealth visit

VA plans to end telehealth copays and fund virtual care access in rural areas

By
Andrea Fox
November 14, 2024
HIT professional reviews information on a laptop outside a server room

ASPR seeks feedback on public health orgs' cybersecurity needs

By
Andrea Fox
November 13, 2024
Gabriel Jones of Proprio on AI

Artificial intelligence is enabling big advances in surgery

By
Bill Siwicki
November 13, 2024
Want to get more stories like this one? Get daily news updates from Healthcare IT News.
Your subscription has been saved.
Something went wrong. Please try again.

Top Story

Doctor smiles and waves into a laptop during a telehealth visit
VA plans to end telehealth copays and fund virtual care access in rural areas

Most Read

Providence's inpatient telemedicine programs pack a powerful punch
The Light Collective amplifies its call for patient data rights
Atrium Health responds to new social engineering attack
Clinical IT leaders on meeting CMS' mandate for patient data access
Epic and Oracle Health sign on to Veteran Interoperability Pledge
Vendor Notebook: New cybersecurity and EHR performance upgrades 

Research

White Papers

More Whitepapers

Patient Engagement
Patient Engagement
Financial/Revenue Cycle Management

Webinars

More Webinars

Imaging
Interoperability
Artificial Intelligence

Video

Andrea Hsu at National Science and Technology Council_HIMSS24 APAC
Fostering health IT innovation through academic-industrial collaborations
Valerie Rogers at HIMSS_Global Health Equity Week 2024
Technology and policy have a role to play in improving maternal health
Mike Relli at Knight Consulting_Global Health Equity Week 2024
New approaches to improving healthcare access for justice-impacted individuals
Jill Brewer at HIMSS_Healthcare Cybersecurity Forum 2024
What's the weakest link in organizational cybersecurity? Not what you might think

More Stories

Bird's eye view of Nashville during the day
Oracle seeks to address health disparities with new collaborative
Marjorie Rosen at HIMSS_Global Health Equity Week 2024
HIMSS chapters offer a powerful channel for healthcare advocacy
Returning service member with daughter
HIMSS launches veterans health IT workforce program
Morgan L. Waller, RN, of Children's Mercy Kansas City on telemedicine
Deep dive: Exploring one of the most advanced telemedicine programs in the U.S.
Person on laptop at kitchen table with another who holds up prescription bottle for telehealth doctor
ATA calls on Congress to beat the telehealth deadline, as it preps for Trump's term
Anurag Mehta at Omega Healthcare_Physician working on laptop Photo by Dzonsli/E+/Getty Images
Clinician burnout can be reduced by virtual nursing
Healthcare worker and patient watching doctor on screen
Discover the potential ROI of bedside telehealth
HKUST Provost professor Guo Yike presenting their new health LLMs
Hong Kong university to test four genAI models in...