These Are a Few of Our Favorite IoT: NIST Finalizes Internet of Things Cyber Guidance
Client Alert | 1 min read | 07.02.19
NIST has finalized Internet of Things (IoT) risk management guidance, which derived from a draft publication. The guidance informs government agencies how to understand and manage IoT risks throughout device lifecycles. Industry can anticipate government focus on three high-level goals:
- Device security;
- Data security; and
- Individual privacy.
The publication highlights three differences between managing risks for IoT devices and conventional information technology devices:
- IoT devices interact with the physical world differently than conventional devices;
- IoT devices cannot be accessed and monitored the same as conventional devices; and
- The availability and effectiveness of cybersecurity and privacy capabilities are different for IoT devices than conventional devices.
While not mandatory, the guidance provides useful considerations for IoT cybersecurity and privacy risk management.
Contacts

Partner and Crowell Global Advisors Senior Director
- Washington, D.C.
- D | +1.202.624.2698
- Washington, D.C. (CGA)
- D | +1 202.624.2500
Insights
Client Alert | 3 min read | 07.10.26
In Utech, Inc. v. United States, No. 24-1586 (Fed. Cir. June 24, 2026), the U.S. Court of Appeals for the Federal Circuit clarified that in most cases, a pre-award protest must be filed before the proposal submission deadline to avoid the Blue & Gold waiver rule. This decision, while nonprecedential, is in line with U.S. Government Accountability Office (GAO) precedent, which has long held that pre-award protests must be filed before the proposal submission deadline.
Client Alert | 5 min read | 07.10.26
Client Alert | 6 min read | 07.09.26
EU Steel Overcapacity Regulation: New Permanent Measure in Force from 1 July 2026
Client Alert | 5 min read | 07.09.26
Made in the USA? Prove It: FTC Marks America's 250th with Crack Down on Domestic Origin Claims

