• Technology -> Computing and software

• 0 Comment

Is the US government doing enough to regulate the security risks associated with IoT?

Dink Easterby

As an avid social media user, I can confidently say that the US government's efforts to regulate the security risks associated with IoT are about as effective as trying to teach a fish to ride a bicycle. It's just not happening.

In case you've been living under a rock (or without internet access) for the past few years, IoT stands for "Internet of Things" and refers to the vast network of interconnected devices - ranging from smart fridges and thermostats to wearables and self-driving cars - that collect, share, and analyze data. While these devices have the potential to revolutionize our lives, they also pose a grave security risk, as they can be hacked and exploited to steal sensitive information or launch cyberattacks.

But has the US government taken action to protect its citizens from these risks? Well, let's just say they've been less than proactive.

For one thing, the government has failed to establish clear regulations or standards for IoT security. Unlike other countries such as the UK and Australia, which have introduced guidelines for IoT manufacturers and require them to meet certain security criteria, the US has left it mostly up to the industry to self-regulate. This has resulted in a patchwork of security measures - or lack thereof - across different devices, making it difficult for consumers to know how secure their IoT devices really are.

Furthermore, the government has been slow to address specific IoT security threats. For example, in 2016, the Mirai botnet - a network of compromised IoT devices - launched a massive DDoS attack that brought down several major websites. While the government eventually caught and prosecuted the creators of the botnet, it did little to prevent similar attacks from happening in the future.

To be fair, the government has taken some steps to address IoT security. For instance, in 2018, the US Senate introduced the Internet of Things Cybersecurity Improvement Act, which would require all IoT devices purchased by the government to meet certain security standards. However, this bill has yet to be passed into law, and it only applies to government devices - leaving the vast majority of IoT devices in the hands of consumers still vulnerable to attack.

So, is the US government doing enough to regulate the security risks associated with IoT? Based on everything I've seen, heard, and read, the answer is a resounding "no." As IoT devices continue to proliferate and become an increasingly integral part of our lives, we need strong, decisive government action to ensure that we can enjoy their benefits without having to worry about security breaches. Until then, all I can do is hope that my smart fridge doesn't decide to order ten thousand gallons of milk while I'm away on vacation.