U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Trusted IoT Device Network-Layer Onboarding and Lifecycle Management

As with any other device, an IoT device needs appropriate credentials in order to connect to a network securely. The process of provisioning these credentials to the device is called network-layer onboarding.

Approaches to trusted network-layer onboarding of IoT devices over IP networks and lifecycle management of the devices

The NCCoE, in collaboration with industry, is committed to providing actionable cybersecurity solutions to help strengthen the security of IoT devices and their networks through trusted network-layer onboarding over IP networks and lifecycle management.
Status: Seeking Collaborators

Industry participants and other interested parties are invited to participate in the Trusted IoT Device Network-Layer Onboarding and Lifecycle Management project. Please review the requirements identified in the Federal Register Notice. Anyone interested in becoming a collaborator should request and complete a Letter of Interest. The NCCoE considers participants who have submitted a completed Letter of Interest on a first-come, first-served basis.

 

Project DescriptionDocument Version Project Description

Project Abstract

Network-layer onboarding for an IoT device means provisioning network credentials to that device. The current lack of trusted IoT device onboarding processes leaves many networks vulnerable to having unauthorized devices connect to them. It also leaves devices vulnerable to being taken over by networks that are not authorized to onboard them.

This NCCoE project will focus on approaches to trusted network-layer onboarding for IoT devices and lifecycle management of those devices. The NCCoE will build a trusted network-layer onboarding solution example using commercially available technology that will address a set of cybersecurity challenges aligned to the NIST Cybersecurity Framework. This project will result in a freely available NIST Cybersecurity Practice Guide.

The current lack of trusted IoT device onboarding processes leaves many networks vulnerable to having unauthorized devices connect to them.

Supplemental Resources

Cybersecurity Paper: Trusted Internet of Things (IoT) Device Network-Layer Onboarding and Lifecycle Management 

This document provides background information on trusted IoT device network-layer onboarding and lifecycle management and defines a taxonomy of onboarding characteristics that can be used to discuss potential onboarding solutions in product-agnostic terms. This document in conjunction with the Virtual Workshop on Trusted IoT Device Network-Layer Onboarding and Lifecycle Management informed the development of the project description.

Read the paper
Metal arrow pointing upward

Join the Community of Interest

A Community of Interest (COI) is a group of professionals and advisors that share business insights, technical expertise, challenges, and perspectives to guide NCCoE projects. COIs often include experts, innovators, and everyday users of cybersecurity and privacy technologies. Members typically meet monthly by teleconference. Share your expertise and consider becoming a member of this project's COI.

Request to join
Employee speaking on video call with colleagues on online briefing with laptop at home