Internet-connected devices being sold in California will need stronger passwords from 2020. The state’s Information Privacy: Connected Devices bill mandates that default and easy-to-guess passwords, such as “admin” and “password,” will no longer be allowed, reports the BBC. Instead, all devices must be given a unique password when they are made.
The bill’s purpose is to force electronics manufacturers to better secure their products through unique and complex passwords or by initiating a start-up process where users are forced to set their own credentials. Companies that do not comply can be sued for damages by device users who have been harmed.
Although it’s a step forward, some believe it’s a missed opportunity, saying that a bigger problem is the manufacture of devices that can’t be updated.
Read the full story on BBC.co.uk