Washington, D.C. – On Thursday, March 2, 2017, Rep. Jerry McNerney (CA-09) introduced H.R. 1324, the Securing IoT Act, which requires that Internet of Things (IoT) devices be certified to be in compliance with cybersecurity standards. The bill directs the Federal Communications Commission, in consultation with the National Institute of Standards and Technology, to develop standards that address cybersecurity throughout the lifecycle of the IoT device.
“The proliferation of IoT devices creates immense opportunities for our society, including new jobs and efficiencies in all aspects of our everyday lives. However, the security of these devices has not kept up with the rapid pace of innovation and deployment,” said Rep. McNerney. “Security vulnerabilities in IoT devices are likely to pose threats to our national security and endanger our nation’s economy. This is especially concerning given that at least 20 billion devices are anticipated to be in use by 2020. My legislation, the Securing IoT Act, helps to address this issue by requiring that security standards be established for IoT devices and that these devices be certified to meet those standards. The legislation will help strengthen this market and protect consumers, business, and all the benefits that IoT devices offer.”
Last fall, McNerney raised concerns about the distributed denial-of-service attack on Dyn’s servers, which resulted from security weaknesses in IoT devices, and he joined his Democratic colleagues on the House Energy and Commerce Committee in calling for a hearing to examine the matter.