Xiaomi has published a new set of proposed global standards to support and reassure consumers about the security of their data while using IoT products.
The guideline entitled "Cyber Security Baseline for Consumer Internet of Things Device Version 2.0" aims to protect security and user privacy with a comprehensive set of requirements covering guidelines from device hardware, device software to device communication. It also states the requirements on data security and privacy, which include communication security, authentication and access control, secure boot, data deletion, etc. It is a security baseline that all Xiaomi smart devices should follow.
The guideline of Xiaomi meets the need of the consumer IoT industry as there is no such general standard that can be publicly queried and implemented. Now companies can use this guide to avoid some basic security and privacy protection risks, and to quickly improve the security and privacy protection capabilities of their IoT products. Xiaomi owns the world's leading consumer AIoT platform.
As of November 2021, Xiaomi's AIoT platform has connected more than 400 million devices, excluding smartphones and laptops, and there are more than 8 million users with 5 or more Xiaomi IoT devices around the world, claims Xiaomi.
The guideline comes as the British Standards Institution (BSI) confirmed that Xiaomi Mesh System AX3000 has obtained the BSI IoT Kitemark Certificate, which has undoubtably proved the high degree of consistency between the Cyber Security Baseline for Consumer Internet of Things Device of Xiaomi and the international IoT security standards held by BSI.
The BSI IoT Kitemark is a product and service quality certification owned and operated by BSI. It conducts technical testing and security audits for IoT systems, giving consumers reassurance and confidence of secure and trust-worthy IoT devices under the highest standards. Obtaining the BSI IoT Kitemark Certificate means that Xiaomi products are in compliance with multiple cybersecurity standards, including the ETSI/EN303645 standard issued by European Telecommunications Standards Institute (ETSI), as well as the Open Web Application Security Project (OWASP) Top 10 security requirements.
David Mudd, BSI Global Digital and Connected Product Certification Director
By achieving the BSI Kitemark for IoT Devices for its product and having its systems regularly and independently tested and monitored, Xiaomi is demonstrating to consumers their commitment to safeguarding information. Congratulations to the team at Xiaomi for this achievement.
Cui Baoqiu, Xiaomi Vice President and Chairman of Xiaomi Security and Privacy Committee
Over the years, we have made great efforts to protect users' security and privacy. I'm confident and proud to say that Xiaomi is in the leading position of IoT security policies and practices in the world, and we will continue to work hard to build a better IoT ecosystem for our users." said .
