After passing the House and Senate, H.R. 1668 or the IoT Cybersecurity Improvement Act of 2020 was signed by US President Donald Trump last December 4, 2020. The law requires federal agencies to have cybersecurity requirements to all controlled and owned IoT devices.
The bill had 26 co-sponsors with an almost equal number of Democrats and Republicans backing it. The IoXT Alliance was also involved in giving industry-input to develop the legislation.
Under the new law, the National Institute of Standards and Technology (NIST) must release standards and guidelines for federal agencies on the use of IoT devices. NIST must also take into account relevant best practices developed by agencies, the private sectors, and public-private collaborations. In addition, NIST is required to parent with cybersecurity researchers, industry experts, and the Department of Homeland Security (DHS) in releasing guidelines on security vulnerability.
Source: Trend Micro