South Korea Plans to Enforce Security of Internet of Things

Bloomberg Law: Privacy & Data Security brings you single-source access to the expertise of Bloomberg Law’s privacy and data security editorial team, contributing practitioners,...

By James Lim

Nov. 4 — The South Korea Ministry of Science, ICT (information and communications technology) and Future Planning Nov. 3 announced a new policy road map for establishing a secure environment by 2018 for the development of the Internet of things (IoT).

“This information security road map will implement essential infrastructure support and technology components by 2018 to provide a safe environment for the use of the Internet of things,” the ministry said in a statement.

“In the IoT environment, in which people, things and data are connected together with each other, threats in the existing cyberspace can spread to the real world,” Hong Jin-bae, director of the Cyber Security Policy Division at the ministry, told Bloomberg BNA Nov. 4.

Built-In Security

The ministry will require built-in security for Internet of things products and services in the areas of: smart home devices; health care and food safety; transportation; environmental protection and disaster management; factory automation; construction; and energy.

Data security standards will be developed for risk management throughout the entire supply chain from product and service design to deployment and maintenance, while security certification schemes will be introduced to help consumers and businesses make informed decisions on smart devices and services.

A national computer emergency response team will be developed, separate from the existing system of handling cyberthreats to the Internet, with the exclusive aim of providing anti-hacking solutions based on information sharing and analysis of vulnerabilities specific to Internet of things products and services.

Real-World Applications

The road map will serve as a platform for developing data security and privacy protection policy programs in each target area of the Internet of things between 2015 and 2018, the ministry said.

In the area of home-based Internet of things, built-in security should prevent unauthorized access to service robots and intelligent appliances, according to the plan.

Unauthorized system access is a threat to telemedicine, ground and air traffic control, factory automation and intelligent building management, while data breaches can pose a risk to smart grid technology, the plan said.

To contact the reporter on this story: James Lim in Seoul at

To contact the editor responsible for this story: Katie W. Johnson at


Request Bloomberg Law: Privacy & Data Security