10 December 2020 by Phillip Johnston • Last updated 15 August 2023 Note: This entry describes a core capability a defined in the NIST Cybersecurity for IoT Program. The IoT device can protect the data it stores and transmits from unauthorized access and modification. Common Elements The following elements are commonly used to achieve this capability: The ability to use demonstrably secure cryptographic modules for standardized cryptographic algorithms (e.g., encryption with authentication, crypto hashes, digital signature validation) to prevent the confidentiality and integrity of the device’s stored and transmitted data from being compromised. The ability for authorized entities to render …
Continue reading “Baseline Cybersecurity Capability: Data Protection”