Bain uses cookies to improve functionality and performance of this site. More information can be found in our Privacy Policy. By continuing to browse this site, you consent to the use of cookies.

We have limited Spanish content available. View Spanish content.

American Bar Association Journal

California imposes new regulations on ‘internet of things’ devices

California imposes new regulations on ‘internet of things’ devices

While many see it as a step in the right direction, others think the law doesn’t go far enough to secure these technologies.

  • diciembre 10, 2018
  • min read

American Bar Association Journal

California imposes new regulations on ‘internet of things’ devices

While California’s move marks a shift toward legislating device security, the technology’s problems go far beyond the need for passwords, says Syed Ali, an Expert Vice President at the Bain & Company. Since the devices are smaller and have weaker computing power, they often can’t run security software and meet their core competencies at the same time. Academic and industry researchers are creating more secure, “lightweight” operating systems and hardware to help improve security, but these solutions won’t work for every application nor will every company adopt them, according to Ali.

Digging deeper, Ali says, there are oversight shortcomings in the sourcing of hardware and software used in these tools. This means that without a company knowing, backdoors could be placed in a device and provide a way to access its contents regardless of a password.

American Bar Association Journal