It is designed to ensure there is better security around devices such as baby monitors, televisions and speakers that are linked to the internet. These gadgets can pose a risk because cyber-criminals use them to hack into home networks and steal private data. The government said the new law should give consumers "peace of mind".
The risks have ballooned in recent years as our houses have filled with more and more web-linked smart devices - from games consoles to fitness trackers, doorbells and even dishwashers, also sometimes referred to as the "internet of things" (IoT).
Until now, manufacturers were expected to follow security guidelines, but the new law makes three new requirements:
- that password procedures are more secure, including ensuring any set by the manufacturer are not left blank or using easy-to-guess choices like "12345" or "admin"
- that there is clarity around how to report "bugs" or security problems that arise
- that manufacturers and retailers inform customers how long they will receive support, including software updates, for the device they are buying
Failure to meet these minimum requirements, known as the Product Security and Telecommunications Infrastructure (PSTI) regime, can trigger fines.
No comments:
Post a Comment