Proposes baseline security spec, plus stickers to prove thing-makers have complied
http://www.theregister.co.uk/Design/graphics/icon/linkedin_alt.png 23 May 2017 at 05:02, Richard Chirgwin European network and infosec agency ENISA has taken a look at Internet of Things security, and doesn't much like what it sees.
So it's mulling a vendor's nightmare that the US and UK dared not approach: security regulation - at least the minimal regulation of testing and certification.
In a position paper published Monday, the group says there is “no level zero defined for the security and privacy of connected and smart devices,” no legal guidelines for IoT device and service trust, and no “precautionary requirements in place.”
In other words, to readers familiar with the woe The Register has chronicled over the years, it's an Internet of S**t.
Full Article