The Online Trust Alliance (OTA) updated the IoT Trust Framework, a comprehensive global initiative that provides guidance for device manufacturers and developers to enhance the security, privacy and sustainability of connected home devices, wearable fitness and health technologies, and the data they collect.
The newest version includes U.S. and international feedback from more than 100 companies and organizations ranging from major retailers and device manufacturers to security and privacy subject matter experts including Underwriters Laboratories, the National Association of Realtors, the Center for Democracy and Technology, the International Telecommunications Union (ITU) and the European Union Agency for Network and Information Security.
“As someone with a long career in the technology industry and as an entrepreneur, I know firsthand how quickly technologies have developed to become critical to our daily lives,” said Congresswoman Suzan DelBene (WA-01), who co-chairs the Congressional IoT Caucus. “We’re in the dawn of a new innovation era, with everything from cars to wristbands connecting to the Internet. But we don’t want to wake up one morning to find ourselves asking, ‘Who hacked my coffeemaker?’ Lawmakers and industry leaders like the OTA need to work together to ensure we’re protecting consumers while also enabling these new technologies to thrive.”
After releasing an early draft for public comment in August, OTA received worldwide feedback from organizations, individuals, NGOs and government entities supporting the Framework’s goals and recognizing the global need for concrete IoT guidelines. Industry support includes AVG Technologies, DigiCert, Identity Guard, LifeLock, Mark Monitor, Microsoft, SiteLock, Symantec, TRUSTe, Verisign and others.
“The Trust Framework represents a significant level of international collaboration. Organizations, advocate groups and NGOs through the world have recognized the importance and criticality of developing a baseline Framework to help protect consumers, businesses and the associated data,” said Craig Spiezle, Executive Director and President of the Online Trust Alliance. “Unfortunately, in this rush to market we have witnessed the perils of the lack of robust security and responsible privacy practices. The Trust Framework has been designed to address these issues and represents a significant step forward to protect consumers and their data today and in the years ahead.”
The improvements to the newly revised Framework further advance OTA’s key objectives:
- Deliver guidance to manufacturers and developers to help reduce attack surface and vulnerabilities, and adopt responsible privacy and data stewardship practices.
- Drive the adoption of “privacy and security by design” as a model for a voluntary, yet enforceable code of conduct.
- Provide positive affirmation and recognition to companies, products, and retailers who embrace the code of conduct and meet minimum standards.
- Publish the criteria and mechanisms leading an enforceable code of conduct and certification program.