The Trustable Technology Mark should help customers determine if IoT security needs of a device are in accordance with strict requirements.
Mozilla and ThingsCon have teamed up to create an IoT security certification mark. The Trustable Technology Mark, launched in early December, helps customers determine whenever manufactures included strict privacy and security features in specific devices.
The launch included proof of concept in two categories: toys and voice assistants. So far, one item in each category — a voice assistant from France called snips.ai and a German toy called Vai Kai — have qualified for the mark.
To earn this mark, a device must fulfill the requirements of five criteria:
- Privacy & Data Practices: Is the product designed using state-of-the-art data practices and respectful of user rights?
- Transparency: Can users clearly identify the device’s uses and how companies might use the data it collects?
- Security: Did manufacturers design and build the device using state-of-the-art security practices and safeguards?
- Stability: Does the device appear robust, with a reasonable life cycle?
- Openness: Can consumers clearly pinpoint the device and manufacturer’s processes and determine whether the device uses or generates open data?
Devices that successfully pass the assessment earn the right to display the mark on their packaging and marketing materials. Manufacturers can also self-certify; however, they must publish those assessments publicly.
“IoT devices are only becoming more widespread and more advanced — they live in our kitchens and bedrooms, and they access our calendars and our conversations,” ThingsCon co-founder and Mozilla fellow Peter Bihr said. “As a result, consumers should have answers to important questions like What personal data does this product collect? How is that data stored? Who has access to that data? And can I easily export that data?”