Mexico: Implemented IFT Code of Best Practice for the Cybersecurity of Internet of Things (IoT) Devices

On 1 December 2022, the Mexican Federal Telecommunications Institute (IFT) implemented the Code of Best Practice for the Cybersecurity of Internet of Things (IoT) Devices. The Code is applicable to IoT Device Manufacturers, licensees and authorised parties providing internet access, as well as those providers of applications, content and/or service, and any other natural or legal person who develops and provides applications or services for IoT devices. The Code issues recommendations and best practices in cybersecurity for IoT devices in relation to passwords, vulnerability reporting, software updates, credentials and Sensitive Security Parameters and the use of safe communication methods. Further, the Code addresses surfaces exposed to attacks, the integrity of software, the protection of personal data, resilience to disruptions, telemetric data, the deletion of personal data, installation and maintenance as well as the validation of input data.