New Program May Help You Choose More Cyber-Secure Devices

Do you know how secure your smart device is from cyber criminals? The Federal Communications Commission (FCC) aims to help with that.

The agency voted this week to create a voluntary cybersecurity labeling program to help consumers identify smart devices that meet widely accepted security and privacy standards.

The aim is help people make informed purchasing decisions, differentiate trustworthy products in the marketplace and create incentives for manufacturers to meet higher cyber security standards, the FCC said.

Subscribe to Kiplinger’s Personal Finance

Be a smarter, better informed investor.

Save up to 74%

Sign up for Kiplinger’s Free E-Newsletters

Profit and prosper with the best of expert advice on investing, taxes, retirement, personal finance and more - straight to your e-mail.

Profit and prosper with the best of expert advice - straight to your e-mail.

Sign up

Under the program, a new shield logo entitled “U.S. Cyber Trust Mark” will appear on products meeting the cybersecurity standards. The logo will appear on packaging alongside a QR code that can be scanned for the details on the product's security, including the timeline for security support and whether software patches and security updates are automatic, the FCC said.

“Just like the ‘Energy Star’ logo helps us know which devices are energy efficient, the Cyber Trust Mark will help us make informed choices about the security and privacy of Internet of Things products we bring into our homes and businesses,”  FCC Chair Jessica Rosenworcel said in a statement.

The FCC said it is also seeking public comment on additional potential disclosure requirements. This includes information on whether software or firmware in the products is developed or deployed by a company that is located in a country that presents national security concerns and whether customer data is collected by the product and sent to servers located in such a country.

Smart device numbers multiply

The move comes as the number of smart devices is skyrocketing, with some groups estimating that more than 25 billion connected devices will be in operation by 2030, the FCC said. In the first six months of 2021, there were an estimated 1.5 billion-plus cyberattacks against smart devices.

Based on criteria developed by the Commerce Department’s National Institute of Standards and Technology, the program builds on significant public and private sector work already underway concerning smart device cybersecurity and labeling.

Last July, the Biden administration announced plans to launch the program, saying that it would raise cybersecurity standards across common devices including smart refrigerators, microwaves, televisions, climate control systems and fitness trackers.

Several electronics, appliance and consumer product manufacturers, retailers and trade associations have already made voluntary commitments to increase cybersecurity for their products, the administration said. These include Amazon, Best Buy, Google, LG Electronics U.S.A., Logitech and Samsung Electronics.

•  Roku Breach Affects Thousands of Accounts
• 23andMe Sees Backlash for Updating Service Terms Before Massive Data Breach
• Truepill Data Breach Exposes Personal Information of 2.3 Million Patients
•  Is Identity Theft Protection Worth It?