The Federal Communications Commission (FCC) has announced a government initiative focused on improving cybersecurity standards for common smart home devices, and Crestron is pleased to see this government effort
Aug. 9, 2023 - The exponential growth of connected home devices — and consumers' increasing interest in shopping for smart home solutions — have led to increased concern about consumers' digital security. Crestron understands the importance of secure technology for individuals and entities of all types, and we have been addressing those concerns for decades in both residential and commercial settings.
While Crestron's residential solutions are sold and supported by a knowledgeable network of technology integrators, there are literally thousands of other manufacturers who sell off-the-shelf smart home options that consumers can purchase directly. It's a dizzying array — and begs the question: How can consumers know if they're purchasing secure devices and solutions?
The U.S. Government Steps In
The Biden-Harris Administration recently announced the "U.S. Cyber Trust Mark" program, which would implement voluntary cybersecurity certification and labeling standards. The proposed program, an initiative of the Federal Communications Commission (FCC), is intended to increase cybersecurity across smart home devices commonly found in U.S. households, such as refrigerators, TVs, thermostats, and more.
According to the Administration's press release:
As proposed, the program would leverage stakeholder-led efforts to certify and label products based on specific cybersecurity criteria published by the National Institute of Standards and Technology (NIST) that, for example, require unique and strong default passwords, data protection, software updates, and incident detection capabilities.
The release continues:
The Administration—including the Cybersecurity and Infrastructure Security Agency—would support the FCC in educating consumers to look for the new label when making purchasing decisions, and encouraging major U.S. retailers to prioritize labeled products when placing them on the shelf and online.
As far as Crestron's concerned, this is a rising tide that will lift all boats. A well-planned effort to focus manufacturers on security issues will inspire greater confidence in smart home solutions as a whole and be a benefit to consumers and the entire industry.
"From what we know, we believe the goal of the U.S. Cyber Trust Mark program is starting with good security principles, and we're excited to see how this program will evolve — we think it could be a big step in the right direction," says Brad Hintze, EVP of global marketing for Crestron.
Crestron pays close attention to all developments on the security front — it's simply good business, Hintze notes: "Thousands of companies across hundreds of industries, government agencies, universities, and more have standardized on Crestron products. They trust and rely on Crestron technology to make their homes, offices, and education environments not only work but work securely."
Making Sure the System is Secure
A secure system, of course, doesn't just happen. There are many considerations that need to be accounted for throughout the product development process, including a robust, Secure Software Development Lifecycle (S-SDLC) and a robust testing protocol. You can learn more about Crestron's Commitment to Security here.
Across enterprise business and residential properties, there's a growing need to manage cybersecurity risks. Crestron products are designed with security in mind and are subject to extensive testing. In addition to building security features directly into our products, Crestron makes available resources and documentation, such as Security Reference Guides, to assist customers and authorized dealers and integrators in understanding the options for secure installation of individual devices.
In fact, certain Crestron products have received approval from the Joint Interoperability Test Command (JITC) of the U.S. Department of Defense Information Systems Agency (DISA) and have been added to the Unified Capabilities (UC) Approved Products List (APL). Crestron also offers AV-over-IP solutions that have received Common Criteria Certification granted by the National Information Assurance Partnership (NIAP).
"Crestron will continue to monitor developments as more details about the U.S. Cyber Trust Mark program become available," says Hintze. "In the interim, we will continue to strive to bring secure products to market to meet our customers' needs. It's yet another aspect of our commitment to best-in-class quality."