Any clarity as to whether the forthcoming announcement should be interpreted to mean:
- “to use our ‘works with SmartThings’ label, device makers must up their game on IOT security”
- “we won’t let devices connect to your hub (and therefore our cloud) if it doesn’t meet our minimum security requirements”
Specifically, I’m asking whether community developed device handlers for devices nor specially approved for use with SmartThings are going away?
From Inside Cybersecurity:
“Samsung will be announcing soon, I can’t give you an exact date, security requirements for third-party devices and Samsung’s own devices to connect to that Smart Things cloud,” Godfrey said during a panel at the “State of Cybersecurity Conference” at Georgetown University’s School of Continuing Studies.
“If cybersecurity is like organic and gluten free, we want to throw the biggest and best party, and invite everyone to come,” Godfrey continued. “But to come to the party you have to bring an organic, gluten-free dish. We think this will move behavior, it is not a regulatory solution, it is an industry-led solution, but if the party is big enough and people want to be there, you’re going to do the right thing for cybersecurity.”