+ All Categories
Home > Documents > Do you comply with Government’s Digital Initiative? · 2020. 12. 7. · 2 Do you comply with the...

Do you comply with Government’s Digital Initiative? · 2020. 12. 7. · 2 Do you comply with the...

Date post: 26-Feb-2021
Category:

Documents
Upload: others
View: 1 times
Download: 0 times
Download Report this document
Share this document with a friend
1
2 Do you comply with the Government’s new Digital Initiative? “Secure by Design” - Improve IoT Security 2 2 2 2 2 “Secure by Design” specifies the “What?”, if you need help with the “How?”, contact us: [email protected] No default passwords Passwords unique to each device 2 Implement a Vulnerability disclosure policy Provide a public contact to liaise with security researchers Keep software updated Ensure your IoT devices can be securely updated 3 4 Securely store credentials All security credentials must be securely stored with the service and on devices 6 Minimise exposed attack surfaces Devices should operate on the principle of least privilege 5 Communicate securely Security related or sensitive data should be encrypted during transit Ensure software integrity Device software must be verified using a secure bootloader 7 8 Protect Personal Data Comply with General Data Protection Regulations (GDPR) 9 Resilient systems Systems and devices should be resilient and remain functional through outages 10 Monitor system telemetry data Monitor the data for anomalies Consumers control their data Ensure that consumers are informed how to delete personal data 11 12 Easy installation and maintenance Minimal steps required by the consumer to install and maintain device security 13 Validate inputs Validate all data via user and application interfaces 1
Transcript
Page 1: Do you comply with Government’s Digital Initiative? · 2020. 12. 7. · 2 Do you comply with the Government’s new Digital Initiative? “Secure by Design” - Improve IoT Security

2

Do you comply with the Government’s new Digital Initiative?

“Secure by Design” - Improve IoT Security

2

2

2

2

2

“Secure by Design” speci�es the “What?”, if you need help with the “How?”,

contact us: [email protected]

No default passwordsPasswords unique to each device

2Implement a Vulnerability disclosure policyProvide a public contact to liaise with security

researchers

Keep software updatedEnsure your IoT devices can be securely updated3

4Securely store credentials

All security credentials must be securely stored with the service and on devices

6Minimise exposed attack surfacesDevices should operate on the principle of least

privilege

5 Communicate securelySecurity related or sensitive data should be encrypted during transit

Ensure software integrityDevice software must be verified using a secure bootloader

7

8Protect Personal Data

Comply with General Data Protection Regulations (GDPR)

9 Resilient systemsSystems and devices should be resilient and remain functional through outages

10Monitor system telemetry data

Monitor the data for anomalies

Consumers control their dataEnsure that consumers are informed how to delete personal data

11

12Easy installation and maintenance

Minimal steps required by the consumer to install and maintain device security

13Validate inputsValidate all data via user and application interfaces

1

Recommended
Lunches in Stirling Council Primary Schoolsbtckstorage.blob.core.windows.net/site1884/Menus/New...In January 2015 we will introduce the Scottish Government’s initiative to ensure

Lunches in Stirling Council Primary Schoolsbtckstorage.blob.core.windows.net/site1884/Menus/New...In January 2015 we will introduce the Scottish Government’s initiative to ensure

Documents

Government’s Key People

Government’s Key People

Documents

AfricanMedia Development Initiative - BBCdownloads.bbc.co.uk/worldservice/trust/pdf/AMDI/...The research was funded by a generous grant from the UK Government’s Department for International

AfricanMedia Development Initiative - BBCdownloads.bbc.co.uk/worldservice/trust/pdf/AMDI/...The research was funded by a generous grant from the UK Government’s Department for International

Documents

Whole of Community Engagement Initiative Final … of Community Engagement Initiative Final Report 3 Acknowledgements The WCE initiative was funded by the Australian Government’s

Whole of Community Engagement Initiative Final … of Community Engagement Initiative Final Report 3 Acknowledgements The WCE initiative was funded by the Australian Government’s

Documents

MALAYSIA’ GOVERNMENT’S GREEN ICT INITIATIVE : TOWARDS … · 2010-10-18 · MALAYSIA’ GOVERNMENT’S GREEN ICT INITIATIVE : ... HIGH IMPACT GREEN ICT PROJECTS One Government

MALAYSIA’ GOVERNMENT’S GREEN ICT INITIATIVE : TOWARDS … · 2010-10-18 · MALAYSIA’ GOVERNMENT’S GREEN ICT INITIATIVE : ... HIGH IMPACT GREEN ICT PROJECTS One Government

Documents

Community Development Policy Initiative · 2007-09-10 · 2 The Community Development Policy does not supercede Government’s legislated responsibilities and regulatory requirements.

Community Development Policy Initiative · 2007-09-10 · 2 The Community Development Policy does not supercede Government’s legislated responsibilities and regulatory requirements.

Documents

Public Disclosure Authorized - World Bank · 2016. 7. 15. · FTE Full-time equivalent . FTI Fast-Track Initiative . GBAR Government’s Policy Framework for Budget Management. GDP

Public Disclosure Authorized - World Bank · 2016. 7. 15. · FTE Full-time equivalent . FTI Fast-Track Initiative . GBAR Government’s Policy Framework for Budget Management. GDP

Documents

New Zealand’s broadband network - The Beehive · 2017-09-24 · Rural Broadband Initiative phase two Under the second round of the Government’s Rural Broadband Initiative, more

New Zealand’s broadband network - The Beehive · 2017-09-24 · Rural Broadband Initiative phase two Under the second round of the Government’s Rural Broadband Initiative, more

Documents

Annex 1 - Global Reporting Initiative Content Index 2018...The 2018 Global Reporting Initiative (GRI) content index has been prepared to comply with the GRI ... all Standards in the

Annex 1 - Global Reporting Initiative Content Index 2018...The 2018 Global Reporting Initiative (GRI) content index has been prepared to comply with the GRI ... all Standards in the

Documents

Department of Innovation, Trade and Rural Development Briefing to Labrador conference Government’s Broadband Initiative (GBI) October.

Department of Innovation, Trade and Rural Development Briefing to Labrador conference Government’s Broadband Initiative (GBI) October.

Documents

Recovering the Government’s Authority to Make DecisionsRecovering the Government’s Authority to Make Decisions Fellow citizens, The confiscation of the government’s authority

Recovering the Government’s Authority to Make DecisionsRecovering the Government’s Authority to Make Decisions Fellow citizens, The confiscation of the government’s authority

Documents

A Team-based Approach to Continuous Improvement in Program, Project and Portfolio Management: The U. S. Government’s Global Threat Reduction Initiative

A Team-based Approach to Continuous Improvement in Program, Project and Portfolio Management: The U. S. Government’s Global Threat Reduction Initiative

Business

The U.S. Government’s Global Health Initiative

The U.S. Government’s Global Health Initiative

Documents

Government’s equity imperative

Government’s equity imperative

Documents

ILO CONVENTION 81 Report to the ILO Committee of … · Bangladesh Government’s Compliance with the Labour Inspection Convention ... guidance to employers on how to comply with

ILO CONVENTION 81 Report to the ILO Committee of … · Bangladesh Government’s Compliance with the Labour Inspection Convention ... guidance to employers on how to comply with

Documents

The Welsh Government’s funding of Carmarthenshire Energy ... · The Welsh Government’s funding of Carmarthenshire Energy ... was funded from the Welsh Government’s Renewable

The Welsh Government’s funding of Carmarthenshire Energy ... · The Welsh Government’s funding of Carmarthenshire Energy ... was funded from the Welsh Government’s Renewable

Documents

The Government’s Purpose

The Government’s Purpose

Documents

Behavioral Foundations of Microcredit: Experimental and ...communities. SHG expansion has been driven by an initiative of the government’s National Bank for Agriculture and Rural

Behavioral Foundations of Microcredit: Experimental and ...communities. SHG expansion has been driven by an initiative of the government’s National Bank for Agriculture and Rural

Documents