General Atomics

Cyber agencies unveil new guidelines to secure edge devices

Cyber security chiefs in the UK and their international allies have issued a new set of guidelines to help manufacturers of edge devices make their products more secure and easier to investigate if a compromise occurs.



Image by Doucefleur / copyright Shutterstock

Published by GCHQ’s National Cyber Security Centre (NCSC) and cyber security agencies in Australia, Canada, New Zealand and the US, the new guidance highlights an increasing number of sophisticated malicious actors targeting vulnerabilities in edge devices.

Edge devices are internet-connected devices that sit at the ‘edge’ of a network, acting as entry points for data between local networks and the wider internet. Examples include routers, smart appliances, IoT devices, sensors and cameras, which can be particularly vulnerable to hackers as they often handle important data and connect directly to external networks.

The new guidelines encourage device manufacturers to include and enable standard logging and forensic features that are robust and secure by default, so that network defenders can more easily detect malicious activity and investigate following an intrusion.

They also set out the minimum standards for forensic visibility to help network defenders in securing organisational networks, both proactively and in response to a compromise.

NCSC Technical Director Ollie Whitehouse said: “In the face of a relentless wave of intrusions involving network devices globally our new guidance sets what we collectively see as the standard required to meet the contemporary threat.
    
“In doing so we are giving manufacturers and their customers the tools to ensure products not only defend against cyber attacks but also provide investigative capabilities require post intrusion.
    
“Alongside our international partners, we are focused on nurturing a tech culture that bakes security and accountability into every device, while enabling manufacturers and their customers to detect and investigate sophisticated intrusions.”

The guidance is part of a coordinated series of complementary publications on edge device security, released today in collaboration with agencies in Australia, New Zealand, Canada and the US, with input from the NCSC.

Earlier this year, the NCSC highlighted an Ivanti advisory about a critical security vulnerability in their remote access product, which enables employees to work from home and acts as an edge device to protect against external threats.

Related

Venetz Aerospace secures UK CAA design approval for electric propulsion
Venetz Aerospace
Venetz Aerospace secures UK CAA design approval for electric propulsion
Venetz Aerospace has received UK CAA Part 21 Design Organisation Approval for electric motors and propellers for uncrewed and crewed aircraft applications.
Aerospace Defence

8 Jul 2026

ZeroAvia and Marshall Aerospace target hydrogen-electric defence aircraft
ZeroAvia and Marshall Aerospace sign hydrogen-electric defence aircraft collaboration agreement
ZeroAvia and Marshall Aerospace target hydrogen-electric defence aircraft
ZeroAvia and Marshall Aerospace have signed a collaboration agreement to explore hydrogen-electric propulsion and power systems for defence aircraft.
CRP Group launches UniqTrust for additive manufacturing traceability
CRP Group has launched CRP UniqTrust, a digital identity system designed to improve traceability and authentication for components made using its Windform composites.
CRP Group launches UniqTrust for additive manufacturing traceability
CRP Group has launched CRP UniqTrust, a digital identity system designed to improve traceability and authentication for components made using its Windform composites.
£180 million RAF Brize Norton runway overhaul gets underway
£180 million RAF Brize Norton runway overhaul gets underway
£180 million RAF Brize Norton runway overhaul gets underway
A £180 million infrastructure programme has begun at RAF Brize Norton, replacing the runway and upgrading critical airfield systems to support UK air mobility operations.
Defence

8 Jul 2026

Venetz Aerospace secures UK CAA design approval for electric propulsion
Venetz Aerospace
Venetz Aerospace secures UK CAA design approval for electric propulsion
Venetz Aerospace has received UK CAA Part 21 Design Organisation Approval for electric motors and propellers for uncrewed and crewed aircraft applications.
Aerospace Defence

8 Jul 2026

ZeroAvia and Marshall Aerospace target hydrogen-electric defence aircraft
ZeroAvia and Marshall Aerospace sign hydrogen-electric defence aircraft collaboration agreement
ZeroAvia and Marshall Aerospace target hydrogen-electric defence aircraft
ZeroAvia and Marshall Aerospace have signed a collaboration agreement to explore hydrogen-electric propulsion and power systems for defence aircraft.
CRP Group launches UniqTrust for additive manufacturing traceability
CRP Group has launched CRP UniqTrust, a digital identity system designed to improve traceability and authentication for components made using its Windform composites.
CRP Group launches UniqTrust for additive manufacturing traceability
CRP Group has launched CRP UniqTrust, a digital identity system designed to improve traceability and authentication for components made using its Windform composites.
Airbus UK to build Aeolus-2 weather satellite for Europe’s next forecasting leap
Aeolus 2 by Airbus UK
Airbus UK to build Aeolus-2 weather satellite for Europe’s next forecasting leap
Airbus Defence and Space UK has been authorised to begin building Aeolus-2, a next-generation ESA and EUMETSAT weather satellite designed to deliver global wind measurements for more accurate forecasting, aviation operations and climate monitoring.
Space

6 Jul 2026

BAE Systems’ Endura demos radiation-hardened capability for space missions
BAE Systems’ Endura demos radiation-hardened capability for space missions
BAE Systems has successfully demonstrated the ability of its Endura system-on-chip (Soc) space processor…
Space

29 Jun 2026

CRP Group launches UniqTrust for additive manufacturing traceability
CRP Group has launched CRP UniqTrust, a digital identity system designed to improve traceability and authentication for components made using its Windform composites.
CRP Group launches UniqTrust for additive manufacturing traceability
CRP Group has launched CRP UniqTrust, a digital identity system designed to improve traceability and authentication for components made using its Windform composites.
Logiq launches DISX Isolate for high-assurance defence operations
Logiq launches DISX Isolate for secure defence operations
Logiq launches DISX Isolate for high-assurance defence operations
Logiq has launched DISX Isolate, a standalone secure workspace designed for organisations handling sensitive information in deliberately disconnected environments.
Police leadership overhaul puts UK security capability under the spotlight
College of Policing image showing officers on the beat
Police leadership overhaul puts UK security capability under the spotlight
A major review of police leadership in England and Wales has warned that future UK security capability will depend on stronger leadership, skills and workforce planning as public safety organisations respond to more complex threats.
Security

7 Jul 2026