sb-as logo
Story image

NCC Group chosen to help improve IoT security standards for all sectors

NCC Group has been chosen as an Authorised Lab by the IoXt Alliance, tasked with improving security standards for internet of things (IoT) right from the product development phase.

IoXt Alliance is an industry group dedicated to enhancing multi-stakeholder security and privacy requirements, product compliance programs, and public transparency when it comes to IoT.

NCC Group will provide third-party validation and testing of relevant products for the Alliance’s Certification Program, which ensures adherence to the recommended security practices.

More specifically, as an Authorised Lab, NCC Group is responsible for conducting the comprehensive technical security testing required for devices to earn the ioXt Certification Mark.

This is given when a device meets the minimum requirements across each of the eight ioXt Pledge Principles in its designated product profile.

While organisations are permitted to self-certify through a baseline layer, many choose to retain an Authorized Lab to conduct the certification, the company states.

According to the company, NCC Group is uniquely qualified to perform this critical function as it is specifically focused on security.

As such, it presents an advantage for those seeking to go beyond the baseline ioXt profiles, which cover common vulnerabilities such as inadequate password security practices which allow botnets to take down websites and other crucial business foundations.

For its part, NCC Group has amassed extensive experience in IoT security in recent years, working with enterprises in a wide range of industries, building and implementing IoT devices (through its hardware and embedded security services practice), as well as backend services and IoT infrastructure.

This brings a holistic view to each IoT-related engagement. In particular, NCC Group has long worked with product developers to embed security early in the process to provide benefits to the user community at low cost.

NCC Group technical VP Rob Wood says, “At NCC Group, security is in our DNA and that's why we're excited to work with the ioXt Alliance in raising security standards within the IoT ecosystem.

“We look forward to applying our expertise to help ensure that security is embedded early in the IoT product development process, and that all companies are able to comply with the security requirements that are developed.”

IoXt CTO Brad Ree says, “I am excited to have NCC Group join the ioXt Alliance Authorised Lab program.

“They have a long and outstanding history in product and compliance testing, along with great cybersecurity expertise on a global scale that will undoubtedly serve our program well and further support our mission moving forward.”

Story image
Gartner recognises Pulse Secure for Zero Trust Network Access solution
In the market guide, Gartner states that ZTNA augments traditional VPN technologies for application access, and removes the excessive trust once required to allow employees and partners to connect and collaborate. More
Story image
APAC parents hide internet activity from children more than cyber attackers
A new report from Kaspersky has turned a modern trope - that teens have things to hide in their internet history - on its head, by proving the opposite is also true.More
Download image
Crypto-of-Things: Mobile device security with cryptography at its heart
It’s a method that’s as safe as traditional airgapped hardware security modules, but it doesn’t compromise on software usability.More
Story image
Inteview: Mimecast security expert on why email attacks are more successful than ever
Techday spoke to Mimecast Australia principal technical consultant Garrett O’Hara, who walks through why security experts are becoming increasingly pessimistic about email-borne attacks.More
Story image
Rackspace and Cloudflare join forces for managed edge security
Rackspace and Cloudflare join forces for managed edge security The solution includes a web application firewall, DDoS protection, DNS services and a global content delivery network, backed by 24/7 support.More
Story image
Why DX is not complete without a transformed security architecture
Secure Access Services Edge (SASE) is the process by which core WAN edge capabilities like SD-WAN, routing, and WAN optimisation at branch locations are integrated with cloud-based security services like secure web gateways, firewall-as-a-service, cloud access security brokers, and more.More