- IoT For All
- Posts
- Just trust me, ok?
Just trust me, ok?
The FCC's "U.S. Cyber Trust Mark" could undermine its own goals.
IoT For All
January 16, 2025
In partnership with
Last week, the FCC and White House officially launched the “U.S. Cyber Trust Mark.” The new cybersecurity label is designed to go on certified pieces of consumer IoT gear, ideally letting buyers know which baby monitors are less likely to be hacked, or which security cameras are less likely to be viewable by random strangers on the internet. The FCC likens the program to Energy Star, in hopes it can educate consumers, incentivize more secure products, and make the world a better and brighter place.
It could very well have the opposite effect.
Energy Star certification signals something very practically useful to prospective buyers: “This product is more energy efficient than the one you already have, and the upgrade will put money back in your pocket!” But cybersecurity is a much murkier value proposition. The very best outcome of good security is that nothing happens. Also you may have to do some digital chores like installing updates and changing passwords to keep it that way.
And the Cyber Trust Mark’s flagship feature does not aim to minimize or eliminate those chores. Instead, it provides a todo list. As the FCC explains:
Once the U.S. Cyber Trust Mark label is on products, it will be accompanied by a QR code that you can scan with your wireless phone to read easy-to-understand, security-related information about that particular product. This information will include:
▪ How to change the default password
▪ How to configure the device securely
▪ Whether updates/patches are automatic and if not, how consumers can access them
▪ The product's minimum support period end date or a statement that the device is not supported by the manufacturer and the consumer should not rely on the manufacturer to release security updates
As security experts have pointed out, this approach not only fails to bolster the baseline security of products out of the box, but also allows the mark to be used on products with wildly different levels of default protection. Devices with bare-minimum security measures can sit on the shelf bearing the same label as their infinitely more secure competitors just because they disclose their deficiencies behind a QR code. The result? A very false sense of security.
The U.S Cyber Trust Mark addresses a very real need. Poorly secured IoT devices are routinely enlisted into malicious botnets and the security profile of any given product can be incredibly opaque to the people who are using them. But the program, at best, will only ameliorate a small sliver of the problem while potentially sweeping other aspects further under the rug.
The first devices bearing the U.S Cyber Trust Mark are expected to start cropping up as early as this year. But the first high-profile security breach involving one of those same products might not be too far behind.
📖 Top Articles
Technology has a habit of getting smaller, and IoT devices are no different. Computers shrink to fit in our pockets; chunky GPS receivers give way to dime-sized tracking tags. Here’s why a multi-band antenna could be the best choice for design teams facing size constraints and the need for flexible connectivity in the same IoT device.
 In the coming years, artificial intelligence (AI) will transition from being a mix of hype and incremental advancements to a transformative force reshaping entire industries. Manufacturing will be no exception. By streamlining processes and optimizing workflows, AI will empower manufacturers to produce innovative products at an unparalleled pace and scale. |  The printed Circuit Board (PCB), which serves as the electronic backbone of IoT devices, is central to meeting these demands. Selecting the right materials for PCBs is a critical step in determining a product's success or failure in the competitive IoT market. In this guide, we will discuss crucial considerations and best practices for choosing PCB materials tailored to IoT applications. |
🔥 Rapid Fire
Com4 and Kigen announce secure, scalable iSIM technology
Nordic Semiconductor and Kigen accelerate Massive IoT at CES 2025
Eseye predicts 2025 will redefine IoT connectivity
Sustainable Carbon Nanomaterial Gii could transform IoT energy storage
An entirely new way to present ideas
Gamma’s AI creates beautiful presentations, websites, and more. No design or coding skills required. Try it free today.
🎙️ The IoT For All Podcast
This week, we spoke to Chris Ricciuti, Founder and CEO of Noteworthy AI about how computer vision and AIoT are helping utilities ensure grid reliability, resiliency, and safety. The conversation covers the evolution of computer vision, the challenges faced by utilities, such as aging infrastructure, extreme weather events, and increased demand from electric vehicles and data centers, real-world examples of how computer vision improves grid management, and advice for organizations on adopting AIoT.
🗓️ Events & Webinars
 | Doppelio | Virtual From January 6, 2025 |