Memfault recently introduced its IoT compliance toolkit, offering customers streamlined access to technology designed to facilitate compliance with both current and emerging global regulations. With Memfault, customers can address key compliance challenges, such as vulnerability detection in deployed devices and the management of OTA updates.
The hardware industry is striving to produce more secure products, yet connected devices have long been seen as a vulnerability within the cybersecurity ecosystem. Governments and regulatory bodies are increasingly aware of this issue and are implementing measures to safeguard the estimated 18 billion connected devices in use globally. For instance, the European Cyber Resilience Act (CRA) will require stricter cybersecurity standards for all digital products sold in the EU by 2027. Similarly, in the US, voluntary initiatives such as the FCC’s Cyber Trust Mark and NIST’s Cybersecurity Framework are anticipated to set new benchmarks.
Though global regulatory frameworks may vary, they share key priorities: ensuring visibility into vulnerabilities and field issues, facilitating end-user reporting, and enabling secure OTA update capabilities for rapid problem resolution. Memfault provides the essential tools to meet these crucial compliance needs, helping companies avoid potential legal challenges, hefty fines, and restrictions on market access.
Memfault’s compliance features include:
- Vulnerability detection: Monitors the entire fleet of devices to identify anomalies and understand their impact
- Deployed device and software inventory: Tracks every deployed device, including hardware components, software bill of materials, and the active software version
- Issuing vulnerability fixes: Automatically and securely deploys OTA security updates to devices in the field, with an audit log for each action
- Compliant data collection: Gathers monitoring data securely and in line with both existing and new regulatory requirements
“IoT compliance regulations will encourage hardware companies to prioritise security measures at every stage of product development, from production through end-of-life, resulting in more secure devices and a stronger security ecosystem,” said François Baldassari, CEO of Memfault. “Memfault has been building a standardised approach to help customers meet many of the key requirements from existing and future frameworks, making it easier to meet accreditations and compliance requirements from day one.”
All Memfault customers, both current and future, have access to the compliance toolkit, with additional updates underway to ensure continued support for evolving regulatory needs.
There’s plenty of other editorial on our sister site, Electronic Specifier! Or you can always join in the conversation by commenting below or visiting our LinkedIn page.