General Atomics

Cyber agencies unveil new guidelines to secure edge devices

Cyber security chiefs in the UK and their international allies have issued a new set of guidelines to help manufacturers of edge devices make their products more secure and easier to investigate if a compromise occurs.



Image by Doucefleur / copyright Shutterstock

Published by GCHQ’s National Cyber Security Centre (NCSC) and cyber security agencies in Australia, Canada, New Zealand and the US, the new guidance highlights an increasing number of sophisticated malicious actors targeting vulnerabilities in edge devices.

Edge devices are internet-connected devices that sit at the ‘edge’ of a network, acting as entry points for data between local networks and the wider internet. Examples include routers, smart appliances, IoT devices, sensors and cameras, which can be particularly vulnerable to hackers as they often handle important data and connect directly to external networks.

The new guidelines encourage device manufacturers to include and enable standard logging and forensic features that are robust and secure by default, so that network defenders can more easily detect malicious activity and investigate following an intrusion.

They also set out the minimum standards for forensic visibility to help network defenders in securing organisational networks, both proactively and in response to a compromise.

NCSC Technical Director Ollie Whitehouse said: “In the face of a relentless wave of intrusions involving network devices globally our new guidance sets what we collectively see as the standard required to meet the contemporary threat.
    
“In doing so we are giving manufacturers and their customers the tools to ensure products not only defend against cyber attacks but also provide investigative capabilities require post intrusion.
    
“Alongside our international partners, we are focused on nurturing a tech culture that bakes security and accountability into every device, while enabling manufacturers and their customers to detect and investigate sophisticated intrusions.”

The guidance is part of a coordinated series of complementary publications on edge device security, released today in collaboration with agencies in Australia, New Zealand, Canada and the US, with input from the NCSC.

Earlier this year, the NCSC highlighted an Ivanti advisory about a critical security vulnerability in their remote access product, which enables employees to work from home and acts as an edge device to protect against external threats.

Related

Vertical Aerospace to fly eVTOL at the Farnborough International Airshow
Vertical Aerospace VX4 will perform at Farnborough Airshow
Vertical Aerospace to fly eVTOL at the Farnborough International Airshow
Vertical Aerospace will bring its piloted eVTOL prototype to the Farnborough flying display, marking a first for the international airshow.
Aerospace

17 Jul 2026

UKEF and GE Aerospace introduce finance solution for regional UK shop visits
GE Aerospace CFM LEAP engine in an MRO shop
UKEF and GE Aerospace introduce finance solution for regional UK shop visits
In partnership with GE Aerospace, UK Export Finance (UKEF) is providing up to $1 billion (£742m) in financing over the next five years in a first-of-its-kind programme that will underpin a banking solution for engine overhauls and support airlines' UK flight operations.
Aerospace Member News

17 Jul 2026

Rolls-Royce partners with Boeing and Lufthansa to test fuel-saving and noise-reduction technologies
Boeing eco Demonstrator Explorer Lufthansa 787-9
Rolls-Royce partners with Boeing and Lufthansa to test fuel-saving and noise-reduction technologies
Rolls-Royce, Boeing and Lufthansa are launching a flight-test campaign using a 787-9 to evaluate technologies that improve fuel efficiency and reduce noise.
UK commits £255m to prepare Ukraine for Saab Gripen E fighters
Saab Gripen E for Ukraine
UK commits £255m to prepare Ukraine for Saab Gripen E fighters
The package will fund training, simulators, spare parts and logistics for Ukraine’s future Gripen E fleet while supporting around 5,000 jobs across the UK defence supply chain.
Defence Most Read

17 Jul 2026

Storm Fighter to lead new RAF collaborative combat aircraft family
BAE Systems Tempest with loyal wingman drones
Storm Fighter to lead new RAF collaborative combat aircraft family
Why the RAF is now racing do develop not only a high-end CCA called Storm Fighter, but also a complementary family of smaller autonomous aircraft to fly alongside crewed fighters.
Defence Most Read

17 Jul 2026

RAF awards Boeing £127m E-7 sustainment contract as first aircraft nears service
RAF E-7 Wedgetail AEW&C aircraft
RAF awards Boeing £127m E-7 sustainment contract as first aircraft nears service
The £127.5 million sustainment award will support around 180 jobs in Scotland as the first RAF Wedgetail completes final testing and a second aircraft begins flying.
Defence Insights Most Read

16 Jul 2026

UK space sector punches above its weight but struggles to scale
United kingdom from space by NASA
UK space sector punches above its weight but struggles to scale
Britain captures around 5% of the global space market despite accounting for approximately 1% of government space spending worldwide. However, the UK Space Agency’s final annual report warns that the country has yet to solve its persistent scale-up challenge.
Space

17 Jul 2026

Serco awarded ESA contract to support FLEX Earth observation mission
Earth observation satellite
Serco awarded ESA contract to support FLEX Earth observation mission
The European Space Agency (ESA) has contracted Serco to manage and deliver FLEX satellite data products to its users.
Member News Space

17 Jul 2026

ESA selects Keysight to develop 5G NTN anomaly detection
6G network
ESA selects Keysight to develop 5G NTN anomaly detection
Keysight will serve as the prime contractor, collaborating with Sateliot to support key technical development and satellite mission integration.
Member News Space

16 Jul 2026

Critical UK sectors targeted by Russian cyber actors
A hacker at a computer as government urges organisations to improve cyber security
Critical UK sectors targeted by Russian cyber actors
A new advisory has been issued by the National Cyber Security Centre (NCSC) and international partner agencies, urging the UK and its allies to defend against Russian state cyber actors’ global exploitation of poorly configured routers, as the UK sanctions Russian state and criminal networks for cyber and hybrid operations and calls out the FSB for a reckless attack on Poland’s energy grid.
Security

17 Jul 2026

UK defence SMEs unite under new Spearhead delivery collective
Spearhead SME member representatives
UK defence SMEs unite under new Spearhead delivery collective
Twenty-eight UK-owned defence and security SMEs have formed Spearhead, offering government and prime contractors access to specialist capability through one contract and one accountable delivery team.
Lockheed Martin Ventures opens London office with $100m UK and Europe fund
Lockheed Martin Ventures
Lockheed Martin Ventures opens London office with $100m UK and Europe fund
Lockheed Martin Ventures has chosen London for its first office outside the United States, with at least $100 million earmarked for UK and European defence technology start-ups.