FCC Planning Cybersecurity Smart Device Labeling Regime

U.S. Cyber Trust Mark would help consumers "make smart choices about the devices they bring into their homes, just like the Energy Star program did when it was created to bring attention to energy-efficient appliances and encourage more companies to produce them in the marketplace." The agency said the draft NPRM lays out a voluntary labeling program that uses National Institute of Standards and Technology cybersecurity criteria. It said the NPRM asks questions ranging from the scope of devices for sale in the U.S. that should be eligible for inclusion in the labeling program and who should oversee and manage the program to developing the security standards and demonstrating compliance. CTIA and its members support “voluntary, flexible and harmonized efforts” on enhanced IoT security based on industry certification programs, such as CTIA’s IoT Cybersecurity Certification Program, CTIA said. “We look forward to working with the White House and other stakeholders to ensure that the White House labeling program is implemented based on the NIST Core Baseline using existing industry certifications, that the program provides a safe harbor for companies that participate, provides a consistent application of IoT security capabilities at the federal level, and enhances consumer understanding of the importance of IoT security,” the group said.