NIST Publishes Draft IoT Cybersecurity Guidelines for Public Feedback

The National Institute of Standards and Technology (NIST) has released an initial public draft of Special Publication 800-213 Revision 1, focusing on IoT product cybersecurity guidelines for federal organizations. This update aims to establish cybersecurity requirements and reflects the evolving risk landscape associated with IoT products. NIST emphasizes the importance of considering IoT products as integral elements within risk management processes. The public feedback period is open until August 24, 2026, allowing organizations to contribute insights on the draft. The revision clarifies the role of IoT products, shifting focus from devices to systems to ensure comprehensive risk assessments. NIST encourages referencing related publications for a holistic approach to integrating IoT products into information systems.

Key Points: • NIST released SP 800-213 Revision 1 draft for IoT cybersecurity guidelines. • Public feedback is open until August 24, 2026, for organizations to provide input. • The update emphasizes the need to treat IoT products as integral system elements.