Standards and Regulatory Compliances for IoT Security

Abstract

The widespread deployments of IoT technologies and their applications present a number of significant challenges due to integration of a number of different categories of devices and technologies. Most importantly, this creates big challenges for the large global organizations in crafting security and access policies that span any region they operate in. As of now, the technical standards for specific IoT security components in the industry are only just starting to be addressed by established IT security standards bodies, consortium organizations, and vendor alliances. Most of government bodies and regulators are also finding it hard to develop globally accepted standards. This present work is concerned with identifying the most important challenges and opportunities with reference to security issues in IoT and identifies the role of standards and regulatory compliances for meeting these challenges at the global level. The available standards and regulations have been presented from practice and research perspectives. A review of the successful IoT standards have been presented, which has been accepted by the industry. At the same time, the most important country specific regulatory compliances have been presented, which have been made mandatory by the government.