The IoT Cybersecurity Improvement Act would require federal procurement and use of IoT devices to conform to basic security requirements. The act was unanimously passed by the House in September, and by the Senate earlier this week. The next step is for it to be sent to the president to be signed into law. Security experts praised the bill s alignment with existing standards and best practices, as well as its meaning for IoT devices. NIST has been developing considerations for manufacturer-based IoT security measures, which they have recommended since 2019.
Source: https://threatpost.com/iot-cybersecurity-improvement-act-passed/161396/