Commerce Dept. ‘green paper' on IoT backs risk-based security approaches

The federal government should “proactively support and promote” cybersecurity policy for the Internet of Things by encouraging risk-based approaches, security by design, and the ability to “patch” vulnerabilities, according to a new Commerce Department “green paper” seen as offering a “path forward” on IoT policy.

The green paper, released Thursday, encourages strong encryption of IoT services and products to address security concerns, and calls for a government-industry collaboration to educate consumers on how to better protect themselves from cyber...