The Trustable Technology Mark should help customers determine if IoT security needs of a device are in accordance with strict requirements.
Mozilla and ThingsCon have teamed up to create an IoT security certification mark. The mark, called the Trustable Technology Mark, was launched in early December and is designed to assist customers in determining if a device was made with strict privacy and security features.
The launch included proof of concept in two categories, toys and voice assistants. So far, one item in each category-a voice assistant from France called snips.ai and a German toy called Vai Kai-have qualified for the mark.
According to the companies’ announcement, in order to be awarded a Trustable Technology Mark, the device must be evaluated by five criteria:
- Privacy & Data Practices: Is the product designed using state-of-the-art data practices and respectful of user rights?
- Transparency: Is it made clear to users what the device does and how data might be used?
- Security: Is it designed and built using state-of-the-art security practices and safeguards?
- Stability: How robust is the device and how long of a life cycle can a consumer reasonably expect?
- Openness: How open are both the device and the manufacturer’s processes? Is open data used or generated?
Devices that successfully pass the assessment are allowed to display the mark on their packaging and marketing materials. Manufacturers can also self-certify, with the caveat that those assessments be published publically and made available for the community to read.
“IoT devices are only becoming more widespread and more advanced — they live in our kitchens and bedrooms, and they access our calendars and our conversations,” ThingsCon co-founder and Mozilla fellow Peter Bihr said. “As a result, consumers should have answers to important questions like What personal data does this product collect? How is that data stored? Who has access to that data? And can I easily export that data?”