US mobile communications industry body, the CTIA has created a cyber security certification program for cellular and Wi-Fi connected IoT devices.
The program applies to any IoT device that “contains an IoT application layer that provides identity and authentication functionality and at least one communications module supporting either LTE or Wi-Fi.”
CTIA Cybersecurity Certification has three categories. The first identifies core IoT device security features, the second and third categories identify security elements of increasing device complexity, sophistication and manageability.
CTIA says the test plans aims to accept the widest adopted standards are used to ensure compatibility across cyber security systems.
It says the program was developed in collaboration with leading wireless operators, technology companies, security experts and test labs and builds upon IoT security recommendations from the National Telecommunications and Information Administration (NTIA) and the National Institute of Standards and Technology (NIST).
“By offering certification for IoT devices built from the ground up with cyber security in mind, the program will protect consumers and wireless infrastructure, while creating a more secure foundation for smart cities, connected cars, mHealth and other IoT applications,” CTIA said.
CTIA claims a long track record in device certification. “For more than 25 years, CTIA’s certification working groups have developed and managed product test plans and certification requirements for devices, networks and other wireless technologies, with over 70,000 certification requests handled to date by over 100 CTIA authorised test labs,” it says.
The CTIA IoT Cybersecurity Certification Program will begin accepting devices for certification testing starting in October 2018. The full plan is available here.
