General Atomics

Cyber agencies unveil new guidelines to secure edge devices

Cyber security chiefs in the UK and their international allies have issued a new set of guidelines to help manufacturers of edge devices make their products more secure and easier to investigate if a compromise occurs.



Image by Doucefleur / copyright Shutterstock

Published by GCHQ’s National Cyber Security Centre (NCSC) and cyber security agencies in Australia, Canada, New Zealand and the US, the new guidance highlights an increasing number of sophisticated malicious actors targeting vulnerabilities in edge devices.

Edge devices are internet-connected devices that sit at the ‘edge’ of a network, acting as entry points for data between local networks and the wider internet. Examples include routers, smart appliances, IoT devices, sensors and cameras, which can be particularly vulnerable to hackers as they often handle important data and connect directly to external networks.

The new guidelines encourage device manufacturers to include and enable standard logging and forensic features that are robust and secure by default, so that network defenders can more easily detect malicious activity and investigate following an intrusion.

They also set out the minimum standards for forensic visibility to help network defenders in securing organisational networks, both proactively and in response to a compromise.

NCSC Technical Director Ollie Whitehouse said: “In the face of a relentless wave of intrusions involving network devices globally our new guidance sets what we collectively see as the standard required to meet the contemporary threat.
    
“In doing so we are giving manufacturers and their customers the tools to ensure products not only defend against cyber attacks but also provide investigative capabilities require post intrusion.
    
“Alongside our international partners, we are focused on nurturing a tech culture that bakes security and accountability into every device, while enabling manufacturers and their customers to detect and investigate sophisticated intrusions.”

The guidance is part of a coordinated series of complementary publications on edge device security, released today in collaboration with agencies in Australia, New Zealand, Canada and the US, with input from the NCSC.

Earlier this year, the NCSC highlighted an Ivanti advisory about a critical security vulnerability in their remote access product, which enables employees to work from home and acts as an edge device to protect against external threats.

Related

Zenix Aerospace to make international airshow debut at Farnborough
Scott McLarty, CEO of Zenix Aerospace
Zenix Aerospace to make international airshow debut at Farnborough
Birmingham-headquartered Zenix Aerospace will make its first international airshow appearance as an independent company at Farnborough International Airshow 2026.
Aerospace Member News

11 Jul 2026

magniX expands aerospace power technology into energy solutions
magniX_expands_to_energy_solutions
magniX expands aerospace power technology into energy solutions
magniX is broadening the use of its electric aerospace powertrain technology into mission-critical energy applications including defence, space, data centres and mobility.
Apollo Global Management trumps Castlelake with £5.7 billion offer for easyJet
easyJet A320
Apollo Global Management trumps Castlelake with £5.7 billion offer for easyJet
With a rival offer now on the table, easyJet shareholders are facing a potential bidding war for control of the airline.
Aerospace

10 Jul 2026

magniX expands aerospace power technology into energy solutions
magniX_expands_to_energy_solutions
magniX expands aerospace power technology into energy solutions
magniX is broadening the use of its electric aerospace powertrain technology into mission-critical energy applications including defence, space, data centres and mobility.
Uplift360 wins Luxembourg defence framework for advanced materials
Uplift360 lab for advanced materials for europe
Uplift360 wins Luxembourg defence framework for advanced materials
Uplift360 has secured a multi-year framework agreement with Luxembourg’s Directorate of Defence to support a sovereign European supply chain for advanced materials.
Defence Member News

11 Jul 2026

The King opens UK Space and Defence Gateway at Harwell
The King opens UK Space and Defence Gateway at Harwell
The King opens UK Space and Defence Gateway at Harwell
The UK Space and Defence Gateway has officially opened at Harwell Science and Innovation Campus, creating a new hub for collaboration across government, industry, academia and investors.
Defence Member News Space

11 Jul 2026

York completes $300m acquisition of ALL.SPACE
York Space Systems completes acquisition of ALL.SPACE
York completes $300m acquisition of ALL.SPACE
York Space Systems has completed its acquisition of ALL.SPACE, bringing multi-orbit terminal technology together with space infrastructure and mission operations capability.
Member News Space

11 Jul 2026

magniX expands aerospace power technology into energy solutions
magniX_expands_to_energy_solutions
magniX expands aerospace power technology into energy solutions
magniX is broadening the use of its electric aerospace powertrain technology into mission-critical energy applications including defence, space, data centres and mobility.
The King opens UK Space and Defence Gateway at Harwell
The King opens UK Space and Defence Gateway at Harwell
The King opens UK Space and Defence Gateway at Harwell
The UK Space and Defence Gateway has officially opened at Harwell Science and Innovation Campus, creating a new hub for collaboration across government, industry, academia and investors.
Defence Member News Space

11 Jul 2026

ADS sectors add £46.8bn to UK economy but industry warns delivery must follow
Aerospace engineer GE UK
ADS sectors add £46.8bn to UK economy but industry warns delivery must follow
ADS says the UK’s aerospace, defence, security and space sectors remain resilient, but rising costs, finance pressures and supply chain constraints mean government commitments must now translate into action.
CRP Group launches UniqTrust for additive manufacturing traceability
CRP Group has launched CRP UniqTrust, a digital identity system designed to improve traceability and authentication for components made using its Windform composites.
CRP Group launches UniqTrust for additive manufacturing traceability
CRP Group has launched CRP UniqTrust, a digital identity system designed to improve traceability and authentication for components made using its Windform composites.
Logiq launches DISX Isolate for high-assurance defence operations
Logiq launches DISX Isolate for secure defence operations
Logiq launches DISX Isolate for high-assurance defence operations
Logiq has launched DISX Isolate, a standalone secure workspace designed for organisations handling sensitive information in deliberately disconnected environments.