Home
|Insights
|These Are a Few of Our Favorite IoT: NIST Finalizes Internet of Things Cyber Guidance

These Are a Few of Our Favorite IoT: NIST Finalizes Internet of Things Cyber Guidance

Client Alert | 1 min read | 07.02.19

NIST has finalized Internet of Things (IoT) risk management guidance, which derived from a draft publication. The guidance informs government agencies how to understand and manage IoT risks throughout device lifecycles. Industry can anticipate government focus on three high-level goals:

Device security;
Data security; and
Individual privacy.

The publication highlights three differences between managing risks for IoT devices and conventional information technology devices:

IoT devices interact with the physical world differently than conventional devices;
IoT devices cannot be accessed and monitored the same as conventional devices; and
The availability and effectiveness of cybersecurity and privacy capabilities are different for IoT devices than conventional devices.

While not mandatory, the guidance provides useful considerations for IoT cybersecurity and privacy risk management.

Contacts

Cheryl A. Falvey
Partner
- Washington, D.C.
  - D | +1.202.624.2675
Y2ZhbHZleUBjcm93ZWxsLmNvbQ==
Evan D. Wolff
Partner
He/Him/His
- Washington, D.C.
  - D | +1.202.624.2615
ZXdvbGZmQGNyb3dlbGwuY29t
Michael G. Gruden
Counsel
- Washington, D.C.
  - D | +1.202.624.2545
bWdydWRlbkBjcm93ZWxsLmNvbQ==

Insights

Client Alert | 3 min read | 04.25.24

JUST RELEASED: EPA’s Bold New Strategic Civil-Criminal Enforcement Collaboration Policy

The Environmental Protection Agency’s (EPA’s) Office of Enforcement and Compliance Assurance (OECA) just issued its new Strategic Civil-Criminal Enforcement Policy, setting the stage for the new manner in which the agency manages its pollution investigations. David M. Uhlmann, the head of OECA, signed the Policy memorandum on April 17, 2024, in order to ensure that EPA’s civil and criminal enforcement offices collaborate efficiently and consistently in cases across the nation. The Policy states, “EPA must exercise enforcement discretion reasonably when deciding whether a particular matter warrants criminal, civil, or administrative enforcement. Criminal enforcement should be reserved for the most egregious violations.” Uhlmann repeated this statement during a luncheon on April 23, 2024, while also emphasizing the new level of energy this collaborative effort has brought to the enforcement programs....

Client Alert | 6 min read | 04.25.24
OMB Final Rule Rewrites the Uniform Guidance for Grants, Cooperative Agreements, and Other Federal Financial Assistance
Client Alert | 3 min read | 04.24.24
Digging Deeper: “American Made” Claims From the Tenth Circuit’s Decision in I DIG Texas v. Kerry Creager Diverge from FTC Guidance
Client Alert | 2 min read | 04.24.24
FTC Continues Focus on Tracking Technologies and Personal Health Data

View All Insights