WASHINGTON (AP) — The Biden administration and major consumer technology players on Tuesday launched an effort to put a nationwide cybersecurity certification and labeling program in place to help consumers choose smart devices that are less vulnerable to hacking.
I’m not sure what the requirements are to qualify for the “U.S. Cyber Trust Mark” is, and I can’t find any actual requirements, so I’m not going to get my hopes up just yet. I like that they’ll have a qr code to get updated security info, but I didn’t see if that includes a software bill of sale which should hopefully be a requirement for that.
Given how quickly things change, and the prevalence of software supply chain attacks, it’s hard to know how this will be something people can trust.
If they end up certifying one of those phone-home cloud-enabled Nest cams or similar, then you can be sure it’s worthless.
My spidy sense is tingling, all government certified safe devices will have government certified back doors. I have no trust that our government will do anything altruistic.
