NIST updates its IoT security guidelines SP 800-213 with stronger focus on product systems rather than individual devices and expands requirements based on five years of practical experience.
The NIST backlog results from strategic deficits and duplicate structures with CISA, with both agencies operating parallel vulnerability enrichment programs since May 2024 and wasting approximately $200,000 in funds.