General Atomics

Cyber agencies unveil new guidelines to secure edge devices

Cyber security chiefs in the UK and their international allies have issued a new set of guidelines to help manufacturers of edge devices make their products more secure and easier to investigate if a compromise occurs.



Image by Doucefleur / copyright Shutterstock

Published by GCHQ’s National Cyber Security Centre (NCSC) and cyber security agencies in Australia, Canada, New Zealand and the US, the new guidance highlights an increasing number of sophisticated malicious actors targeting vulnerabilities in edge devices.

Edge devices are internet-connected devices that sit at the ‘edge’ of a network, acting as entry points for data between local networks and the wider internet. Examples include routers, smart appliances, IoT devices, sensors and cameras, which can be particularly vulnerable to hackers as they often handle important data and connect directly to external networks.

The new guidelines encourage device manufacturers to include and enable standard logging and forensic features that are robust and secure by default, so that network defenders can more easily detect malicious activity and investigate following an intrusion.

They also set out the minimum standards for forensic visibility to help network defenders in securing organisational networks, both proactively and in response to a compromise.

NCSC Technical Director Ollie Whitehouse said: “In the face of a relentless wave of intrusions involving network devices globally our new guidance sets what we collectively see as the standard required to meet the contemporary threat.
    
“In doing so we are giving manufacturers and their customers the tools to ensure products not only defend against cyber attacks but also provide investigative capabilities require post intrusion.
    
“Alongside our international partners, we are focused on nurturing a tech culture that bakes security and accountability into every device, while enabling manufacturers and their customers to detect and investigate sophisticated intrusions.”

The guidance is part of a coordinated series of complementary publications on edge device security, released today in collaboration with agencies in Australia, New Zealand, Canada and the US, with input from the NCSC.

Earlier this year, the NCSC highlighted an Ivanti advisory about a critical security vulnerability in their remote access product, which enables employees to work from home and acts as an edge device to protect against external threats.

Related

NATS handles 241,141 flights in June as weather disruption rises
NATS air traffic controller working in Aberdeen
NATS handles 241,141 flights in June as weather disruption rises
NATS safely handled more than 241,000 flights in June, with UK air traffic increasing month on month as weather-related delays rose sharply.
Aerospace Member News

9 Jul 2026

Thales delivers AI milestone for RAF mission support system
Thales MD MSS
Thales delivers AI milestone for RAF mission support system
Thales, RAF Digital and the National Armaments Director Group have delivered AI and machine learning capability into the RAF’s Multi-Domain Mission Support System.
Aerospace Defence

9 Jul 2026

Bristow winch paramedic receives Billy Deacon SAR Memorial Trophy
Bristow winch paramedic wins Billy Deacon SAR Trophy
Bristow winch paramedic receives Billy Deacon SAR Memorial Trophy
James O’Neill, a Bristow Ireland winch paramedic based at Shannon, has received the Billy Deacon SAR Memorial Trophy for his role in rescuing 14 crew from a fishing vessel.
Aerospace

9 Jul 2026

Thales delivers AI milestone for RAF mission support system
Thales MD MSS
Thales delivers AI milestone for RAF mission support system
Thales, RAF Digital and the National Armaments Director Group have delivered AI and machine learning capability into the RAF’s Multi-Domain Mission Support System.
Aerospace Defence

9 Jul 2026

Royal Navy’s Hybrid Navy takes shape as drone boat is airdropped from A400M
Airdrop of Royal Navy drone from Airbus A400M with parachute
Royal Navy’s Hybrid Navy takes shape as drone boat is airdropped from A400M
Why the Royal Navy's parachute drop of K3 Scout sea-going drone is an important step onto its part to become a hybrid navy.
Defence

9 Jul 2026

ADS sectors add £46.8bn to UK economy but industry warns delivery must follow
Aerospace engineer GE UK
ADS sectors add £46.8bn to UK economy but industry warns delivery must follow
ADS says the UK’s aerospace, defence, security and space sectors remain resilient, but rising costs, finance pressures and supply chain constraints mean government commitments must now translate into action.
ADS sectors add £46.8bn to UK economy but industry warns delivery must follow
Aerospace engineer GE UK
ADS sectors add £46.8bn to UK economy but industry warns delivery must follow
ADS says the UK’s aerospace, defence, security and space sectors remain resilient, but rising costs, finance pressures and supply chain constraints mean government commitments must now translate into action.
CRP Group launches UniqTrust for additive manufacturing traceability
CRP Group has launched CRP UniqTrust, a digital identity system designed to improve traceability and authentication for components made using its Windform composites.
CRP Group launches UniqTrust for additive manufacturing traceability
CRP Group has launched CRP UniqTrust, a digital identity system designed to improve traceability and authentication for components made using its Windform composites.
Airbus UK to build Aeolus-2 weather satellite for Europe’s next forecasting leap
Aeolus 2 by Airbus UK
Airbus UK to build Aeolus-2 weather satellite for Europe’s next forecasting leap
Airbus Defence and Space UK has been authorised to begin building Aeolus-2, a next-generation ESA and EUMETSAT weather satellite designed to deliver global wind measurements for more accurate forecasting, aviation operations and climate monitoring.
Space

6 Jul 2026

ADS sectors add £46.8bn to UK economy but industry warns delivery must follow
Aerospace engineer GE UK
ADS sectors add £46.8bn to UK economy but industry warns delivery must follow
ADS says the UK’s aerospace, defence, security and space sectors remain resilient, but rising costs, finance pressures and supply chain constraints mean government commitments must now translate into action.
CRP Group launches UniqTrust for additive manufacturing traceability
CRP Group has launched CRP UniqTrust, a digital identity system designed to improve traceability and authentication for components made using its Windform composites.
CRP Group launches UniqTrust for additive manufacturing traceability
CRP Group has launched CRP UniqTrust, a digital identity system designed to improve traceability and authentication for components made using its Windform composites.
Logiq launches DISX Isolate for high-assurance defence operations
Logiq launches DISX Isolate for secure defence operations
Logiq launches DISX Isolate for high-assurance defence operations
Logiq has launched DISX Isolate, a standalone secure workspace designed for organisations handling sensitive information in deliberately disconnected environments.