Press release -

NCC Group named Authorized Lab by ioXt Alliance to enhance security standards in Internet of Things product development

NCC Group has been designated as an Authorized Lab by the ioXt Alliance, the Global Standard for IoT Security and the industry group dedicated to building confidence in Internet of Things products through multi-stakeholder security and privacy requirements, product compliance programs, and public transparency. NCC Group will provide third-party validation and testing of relevant products for the Alliance’s Certification Program, which ensures adherence to the recommended security practices.

“At NCC Group, security is in our DNA—and that’s why we’re excited to work with the ioXt Alliance in raising security standards within the IoT ecosystem,” said Rob Wood, Technical VP, NCC Group. “We look forward to applying our expertise to help ensure that security is embedded early in the IoT product development process, and that all companies are able to comply with the security requirements that are developed.”

As an Authorized Lab, NCC Group is responsible for conducting the comprehensive technical security testing required for devices to earn the ioXt Certification Mark, which is given when a device meets the minimum requirements across each of the eight ioXt Pledge Principles in its designated product profile. While organizations are permitted to self-certify through a baseline layer, many choose to retain an Authorized Lab to conduct the certification.

NCC Group is uniquely qualified to perform this critical function: Among the four companies recently designated as an Authorized Lab, this is the only one focused specifically on security. That represents a significant advantage for those seeking to go beyond the baseline ioXt profiles—which covers common vulnerabilities such as inadequate password security practices. These flaws freely allow botnets to take down even websites belonging to large corporations. As a result, some countries and U.S. states are advocating or implementing legislation to ban such products. This puts pressure on those manufacturers to adjust their product development practices to meet higher baseline standards.

For its part, NCC Group has amassed extensive experience in IoT security over the years. It has worked with enterprises in a wide range of industries, building and implementing IoT devices (through its Hardware and Embedded Security Services practice), as well as backend services and IoT infrastructure. It brings a holistic view to each IoT-related engagement, building on wide-ranging expertise and comprehensive capabilities. In particular, NCC Group has long worked with product developers to embed security early in the process to provide the greatest benefit to the user community and at the lowest cost.

“I am excited to have NCC Group join the ioXt Alliance Authorized Lab program,” said Brad Ree, CTO of ioXt. “They have a long and outstanding history in product and compliance testing, along with great cybersecurity expertise on a global scale that will undoubtedly serve our program well and further support our mission moving forward.”

To learn more about the ioXt Alliance, ioXt Certification Program and ioXt Authorized Labs, visit: https://www.ioxtalliance.org/.

Topics

  • Technology, general

Categories

  • cyber security
  • usa

About NCC Group

NCC Group exists to make the world safer and more secure.

As global experts in cyber security and risk mitigation, NCC Group is trusted by over 15,000 clients worldwide to protect their most critical assets from the ever-changing threat landscape.

With the company’s knowledge, experience and global footprint, it is best placed to help businesses identify, assess, mitigate and respond to the evolving cyber risks they face.

To support its mission, NCC Group continually invests in research and innovation, and is passionate about developing the next generation of cyber scientists.

With over 1,800 colleagues in 12 countries, NCC Group has a significant market presence in North America, continental Europe and the UK, and a rapidly growing footprint in Asia Pacific with offices in Australia and Singapore.

Contacts

Related content

  • Security impact of IoT on the Enterprise

    The way we use technology is becoming more integrated in all aspects of our daily lives and is steadily integrating within the enterprise environment. A core concern for businesses is therefore the risk of introducing Internet of Things (IoT) devices to the enterprise.

  • UK government announces plans for new IoT security law

    Today, the UK government's Department for Digital, Culture, Media and Sport (DCMS) has published its response to its call for evidence seeking feedback on proposals to regulate the cyber security of consumer smart products. Our global CTO, Ollie Whitehouse, responds to this announcement in this post.

  • Looking back to look forward: predictions for 2021

    ​With the new year just around the corner, we decided to stop and take stock of how legislative measures and cyber security research have advanced to keep pace with the rapidly evolving cyber landscape. To start this process, we’re looking back at some of our most recent predictions to see how they’ve progressed and whether our research is contributing to making the world safer and more secure.

  • 20 years of research at NCC Group

    NCC Group’s research forms a big part our mission to make the world safer and more secure. Today, we’re taking the opportunity to look back and point you to some of the research we’ve published over the last 20 years, and shine a light on some of the great outputs we have been excited and proud to showcase over the last year.

  • Lights, camera, what about security?

    Nearly two weeks ago, we released a technical advisory detailing how the TP-Link C200 IP camera could be exposed to the infamous Heartbleed bug. Today, Dale Pavey has released a full blog which delves into discoveries he made while assessing the security of popular Internet Protocol (IP) cameras.

  • Home is where the hack is?

    Smart products, such as doorbells, wireless cameras and alarms, have been increasingly popular purchases for consumers in recent years. The products can bring a range of efficiencies into the home, but a recent investigation from independent UK consumer body, Which?, shows that they could also present security and privacy risks.

  • Research spotlight: Hardware and embedded systems

    We recently published our annual research report – a look back at our work over the last year. In our follow up research spotlight series, we’re looking into some of the key areas in a little more detail – and in this instalment, we hear from Rob Wood, technical vice president at NCC Group, for more on our research into hardware and embedded systems.