Internet of Things (IoT) proliferation has not slowed down. In 2018, the number of IoT devices is expected to surpass the number of mobile phones.1 The U.S. government has been playing catch-up with its own increasing rollouts of proposed IoT regulations – all of which attempt to address some aspect of the increased security and safety risks inherent in the rise of IoT adoption.
The most recent government iteration is the Cyber Shield Act of 2017.2 The Cyber Shield Act is the first congressional bill to focus on the voluntary labeling of IoT devices with a security score. Through these labels, the proposed legislation aims to develop an informed market that it hopes will set an appropriate valuation for device security. One of the co-sponsors of the bill, Senator Edward Markey (D-Mass.), warned that without appropriate safeguards, “IoT will also stand for the Internet of Threats.”3
This Client Alert summarizes proposed legislation, analyzes its potential impact, and addresses the key criticisms lodged against the bill.