New technologies such as the Internet of Things (IoT) are developing rapidly and are a key driver of innovation and economic growth. IoT's technological and economic opportunities go hand in hand with digital threats to economic growth, security and freedom. The Cyber Security Council (CSR) is particularly concerned about the manageability of the IoT when it comes to cybersecurity and privacy and has prepared the advisory "Towards a securely connected digital society; Advice on the cybersecurity of the Internet of Things (IoT)" on this subject.
On Thursday, January 11, at 3:15 p.m., the CSR will hand over the advisory report in person to the Minister of Justice and Security Prof. F.B.J. (Ferdinand) Grapperhaus and the Secretary of State for Economic Affairs and Climate Mr. M.C.G. (Mona) Keijzer. In addition, the advice is presented in writing to the State Secretary of the Interior and Kingdom Relations drs. R.W. (Raymond) Knops as well as support for the advice to the chairman of VNO-NCW, drs. J. (Hans) de Boer.
The advisory contains six strategic solution directions to address the challenges posed by IoT: certification, labels, access requirements, transparency, awareness, product liability, intermediary responsibilities and strengthening enforcement.
Targeted action needed
The reason for this CSR advice is the realization that if no measures are taken, IoT can have far-reaching consequences in the physical and digital world and thus for the top digital position of the Netherlands. It is important that security and privacy risks are addressed in order to minimize and prevent damage. To take advantage of the opportunities offered by IoT, space must also be provided for new developments and innovation in a secure manner. This requires targeted action by the Ministries of Economic Affairs and Climate Change, the Interior and Kingdom Relations, and Justice and Security, among others.
Among other things, the CSR recommends a "labeling system" in the context of awareness. Stickers on the packaging of IoT products should inform consumers about, among other things, the level of security of the device in question and whether the device can be disconnected from the Internet while retaining 'regular' functionality. An information campaign and a simple manual on the new 'labeling system' are also part of the CSR recommendation.
Cross-border issue
By definition, IoT is a cross-border issue that needs to be addressed at the EU level. The European Union is an important player in the field of standardization, laws and regulations and Digital Single Market. In an EU context, security requirements can be more easily enforced. The council endorses the importance of the European Commission's proposal to establish a European framework for cyber security certification for ICT products and services.
Click here to view the publication "Towards a securely connected digital society.
