California's IoT Security Law Causing Confusion
California's IoT Security Law Causing Confusion
Morrison & Foerster partner Christine E. Lyon spoke to DARKReading about California’s Internet of Things security law, which goes into effect on January 1, 2020.
The way the law is written seems “specific to authentication,” Chris notes, adding that authentication “seems sufficient, but what I suspect will happen over time is that we will see more specificity around the required security features.”
The law applies to all devices sold in the state regardless of where they are made. Chris states that “the impact of the law will likely be national” and “because the law’s requirements are not onerous, and because it is time consuming to create a special version of products just for the Californian market, companies will probably implement these changes across all their products.”
Practices