1. Home
  2. |Insights
  3. |These Are a Few of Our Favorite IoT: NIST Finalizes Internet of Things Cyber Guidance

These Are a Few of Our Favorite IoT: NIST Finalizes Internet of Things Cyber Guidance

Client Alert | 1 min read | 07.02.19

NIST has finalized Internet of Things (IoT) risk management guidance, which derived from a draft publication.  The guidance informs government agencies how to understand and manage IoT risks throughout device lifecycles.  Industry can anticipate government focus on three high-level goals:

  1. Device security;
  2. Data security; and
  3. Individual privacy.

The publication highlights three differences between managing risks for IoT devices and conventional information technology devices:

  1. IoT devices interact with the physical world differently than conventional devices;
  2. IoT devices cannot be accessed and monitored the same as conventional devices; and
  3. The availability and effectiveness of cybersecurity and privacy capabilities are different for IoT devices than conventional devices.

While not mandatory, the guidance provides useful considerations for IoT cybersecurity and privacy risk management.

Insights

Client Alert | 6 min read | 07.17.25

Code of Practice for General-Purpose AI Models Published: Compliance Just Got Clearer (Participation Still Optional)

On 11 July 2025, the European Commission published the final version of its Code of Practice for General-Purpose Artificial Intelligence (GPAI). This Code is meant to serve as a tool for GPAI model providers, helping them to comply with the transparency, copyright and security provisions governing general-purpose AI models as set out in the AI Act (arts. 53 and 55), which will become applicable on 2 August 2025. Adherence to the Code is on a voluntary basis....