New laws has been proposed to protect IOT, also known as Internet of Things. By the end of 2019, there will be 14.2 billion internet connected devices worldwide, according to market analysts Gartner. This includes smart speakers, home appliances with internet connectivity and connected TVs. These devices become the targets for hackers who use them to spy on users, steal personal data or take control of the device to misuse them.
The legislation, launched by Digital Minister Margot James, also introduced a labeling system to inform consumers how to secure a product that is connected to the internet. Ms. James stated that it was part of the United Kingdom's bid to be the global leader in online safety.
Retailers who will sell products without the labels will be barred from selling. To be able to get a label and enter the market, the devices need to come with a unique password by default, it should offer a public point of contact that any security vulnerabilities will be disclosed and it should state clearly for how long the security updates will be available.
The law follows a voluntary code of practice for the internet of things manufacturers that was published in the United Kingdom last year.
"Serious security problems in consumer IoT devices, such as pre-set unchangeable passwords, continue to be discovered - and it's unacceptable that these are not being fixed by manufacturers," said the technical director of the UK's National Cyber Security Centre (NCSC), Ian Levy.
Cyber-security expert Ken Munro, who was responsible to expose the flaws in devices that are connected to the internet, said in an interview that the legislation that was proposed was a "positive step forward, helping to fix the mess that is consumer smart product security".
"It's important that government doesn't allow the proposed regulation to be watered down during consultation. The proposals are limited, but a good start," he said.
"I'm particularly pleased to see product security labeling being proposed so that buyers can make informed decisions."
Hackers that misuse IOTs are growing by the year, this law is proposed to decrease and eventually prevent his from happening in the future.