Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Vulnerabilities

IoT Security Foundation Launches

The Internet of Things Security Foundation (IoTSF), a collaborative initiative aimed at addressing concerns regarding the security of IoT, launched publicly in London this week.

The Internet of Things Security Foundation (IoTSF), a collaborative initiative aimed at addressing concerns regarding the security of IoT, launched publicly in London this week.

The foundation’s executive board includes security experts and several technology organizations, including BT, Vodafone, Imagination Technologies, Royal Holloway University of London, Copper Horse Solutions, Secure Thingz, NMI and PenTest Partners. 

Industry veteran John Haine was appointed inaugural chairman.

IoT Security Foundation LogoIoTSF’s creation is the result of an eight month investigative and consultative process, the foundation said, explaining that Its initial focus will be on “promoting excellence in IoT security”, in order to make devices safe to connect. The organization will also make a self-certification for product developers available.

The Foundation was created as a non-profit, technology neutral body and is not a standards body, thoug it plans on collaborating with existing standards and will initially target technology providers, systems adopters and end users.

“The formation of the Internet of Things Security Foundation has been through a rigorous process to make sure it is fit for purpose. With so many concerns and a new complexity of security in IoT, it is important that we now start the necessary work in earnest to address known, yet not always addressed, and emerging vulnerabilities,” John Moor, VP Segment Development at NMI and IoTSF Director said.

“The scale and scope of the issues are formidable and as such they require a formidable response. This can only be achieved effectively by working together, so I am delighted to announce IoTSF is open for business and invite organizations to back the mission and join us. Together we can raise standards and make it harder for criminals, adversaries and rogues of all denominations to exploit us,” he added. 

IoTSF is funded by a low-cost membership model,, but the organization also accepts donations from entities interested in supporting its mission. Membership is now open to stakeholder organizations worldwide.

The organization also announced plans for its inaugural conference, scheduled to take place on Dec. 1 at the recently refurbished Savoy Place in London.

Advertisement. Scroll to continue reading.

The IoT market is still in its infancy and, as it grows, it opens all companies around the world to new security risks, as Agiliance’s Torsten George explains in a recent SecurityWeen column. According to an HP study, 70% of IoT devices are vulnerable to digital attacks.

Learn About IoT Security at the 2015 ICS Cyber Security Conference

Written By

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Vulnerabilities

Less than a week after announcing that it would suspended service indefinitely due to a conflict with an (at the time) unnamed security researcher...

Data Breaches

OpenAI has confirmed a ChatGPT data breach on the same day a security firm reported seeing the use of a component affected by an...

IoT Security

A group of seven security researchers have discovered numerous vulnerabilities in vehicles from 16 car makers, including bugs that allowed them to control car...

Vulnerabilities

A researcher at IOActive discovered that home security systems from SimpliSafe are plagued by a vulnerability that allows tech savvy burglars to remotely disable...

Risk Management

The supply chain threat is directly linked to attack surface management, but the supply chain must be known and understood before it can be...

Cybercrime

Patch Tuesday: Microsoft calls attention to a series of zero-day remote code execution attacks hitting its Office productivity suite.

Vulnerabilities

Patch Tuesday: Microsoft warns vulnerability (CVE-2023-23397) could lead to exploitation before an email is viewed in the Preview Pane.

Vulnerabilities

The latest Chrome update brings patches for eight vulnerabilities, including seven reported by external researchers.