Built on the DCMS 'Secure by Design' Code of Practice, this survey will help us identify weaknesses in the security of your product or service. In taking this 10 question survey you may be eligible for a FREE Initial Security Assessment*.
*Subject to availability.

Question Title

* 1. Is your IoT device’s password unique and not resettable to any universal factory default value?

Question Title

* 2. Do you provide a public point of contact as part of a vulnerability disclosure policy for your organisation’s internet-connected device and/or service?

Question Title

* 3. Are the software components in your organisation’s internet-connected devices securely updateable?

Question Title

* 4. Are credentials stored securely within your services or on your devices?

Question Title

* 5. Is security-sensitive data, including any remote management and control encrypted when transiting (moving across) the internet?

Question Title

* 6. Are you aware if your devices and services operate on the “principle of least privilege”?

Question Title

* 7. Is the software on your organisation’s IoT devices verified using secure boot mechanisms?

Question Title

* 8. Where your organisation’s devices and/or services process personal data, is this in accordance with data protection law?

Question Title

* 9. Are your devices and services configured in such a way that personal data can easily be removed when there is a transfer of ownership?

Question Title

* 10. Does the installation and maintenance of your organisation’s IoT devices employ minimal steps and follow security best practice on usability?

( Privacy & Cookie Notice

T