Device Manufacturers Urged to Prioritize Security in Edge Devices
A new set of guidelines has been released to help device manufacturers improve the security of their edge devices. The guidelines, led by the Australian Signals Directorate’s Australian Cyber Security Centre and the US Cybersecurity and Infrastructure Security Agency, provide a framework for securing, hardening, and managing edge devices.
The guidelines aim to reduce the risk of edge devices being compromised by malicious actors. Edge devices are internet-exposed, difficult to monitor, and can access other assets on the network, making them an attractive target for hackers.
Device manufacturers are encouraged to follow minimum levels of observability and digital forensics baselines to detect and identify malicious activity. They should also establish a baseline of standard features to include in the architecture of network devices and appliances, facilitating forensic analysis for network defenders.
The guidelines also emphasize the importance of Secure by Design principles, which prioritize the security of customers as a core business requirement. Companies should implement these principles during the design phase of a product’s development lifecycle to significantly decrease the number of exploitable flaws.
If device manufacturers comply with these requirements, it could be a major step forward in securing edge devices. The guidelines provide a roadmap for manufacturers to improve the security of their products and reduce the risk of compromise.