In 2016, the European Commission (EC) called for an IoT security labeling system, and for an approach to certifying IoT devices as having met a minimum set of security requirements. The EC also advocated for best practice security techniques for IoT security to be introduced, and for people to be incentivized to use those best practices.
In late 2017, ENISA released a set of Baseline Security Recommendations for the IoT. These are relatively high-level requirements that any IoT product developer would be advised to review—read them at https://www.enisa.europa.eu/publications/baseline-security-recommendations-for-iot.
As time progresses, European organizations may end up having to show that they meet ...