Skip to main content

California passes bill that regulates security for Internet of Things devices

A home full of Internet-connected devices can spur privacy concerns, and California plans to do something to help keep them from arising. The California State Legislature passed a first-of-its-kind bill on Internet of Things (IoT) security titled SB-327 Information Privacy: Connected Devices. and sent it to the governor for his signature. The bill introduces regulations for all connected devices sold in the United States.

A quick read-through shows the bill leaves a lot to be desired. Specific guidelines are not established, and many features that need to be included in a bill centered around security are not present. For example, manufacturers should be required to perform a security audit on components purchased from overseas.

Recommended Videos

Despite not being complete, this legislation is a step toward much-needed oversight of security measures. Manufacturers like Google and Amazon place strong security protocols on their products, but even these can be broken by a determined hacker or via a weak link in a connected system. A bill like this will place pressure on American manufacturers to ensure all connected devices provide device-level protection against attacks.

A connected device is defined as any device that connects to the Internet and has an IP or Bluetooth address. As anyone could might, a lot of different products meet that definition. Here’s the exact wording of the legislation:

1798.91.04. (a) A manufacturer of a connected device shall equip the device with a reasonable security feature or features that are all of the following:

(1) Appropriate to the nature and function of the device.

(2) Appropriate to the information it may collect, contain, or transmit.

(3) Designed to protect the device and any information contained therein from unauthorized access, destruction, use, modification, or disclosure.

(b) Subject to all of the requirements of subdivision (a), if a connected device is equipped with a means for authentication outside a local area network, it shall be deemed a reasonable security feature under subdivision (a) if either of the following requirements are met:

(1) The preprogrammed password is unique to each device manufactured.

(2) The device contains a security feature that requires a user to generate a new means of authentication before access is granted to the device for the first time.

Patrick Hearn
Patrick Hearn writes about smart home technology like Amazon Alexa, Google Assistant, smart light bulbs, and more. If it's a…
Google’s Gemini AI can now control your smart home devices
The Google Nest Learning Thermostat in stainless steel.

After spending a bit of time in Public Preview, Google is rolling out its Google Home extension for the Gemini app to everyone. This will allow you to control smart home devices using Gemini, including tasks like turning on smart lights, checking your smart thermostat, or adjusting the volume on your speakers.

The Google Home Extension will be rolling out over the next few weeks, and once you've made the update, any compatible devices synced to your Google account will be accessible via Gemini. If you try using commands in the Gemini app that aren’t supported, your smartphone will automatically launch the Google Home app to complete the command (such as accessing camera actions and smart lock features).

Read more
Samsung SmartThings appliances will soon work as motion sensors
A diagram showing how SmartThings will use ambient sensing.

Samsung recently held its highly anticipated Unpacked 2025 event, pulling back the curtain on the Galaxy S25 smartphone lineup. The event wasn't all about phones, however, as we also learned about plans to turn SmartThings appliances into motion sensors. Driving the change is Home AI -- a feature that’ll gather insights from your daily habits to build personalized experiences to create a smarter smart home.

Planned to roll out through 2025 and into 2026, Home AI is bringing ambient sensing to a variety of SmartThings devices. Doing this will allow the platform to understand how it can better serve you, as it’ll monitor activities like cooking, exercising, and sleeping to gather important details about your lifestyle.

Read more
Pawport shows off new smart pet door security features at CES 2025
The Pawport pet door installed outside next to a pet mat.

Most smart home gadgets are designed for humans, but the Pawport Smart Pet Door is a bit different. While you can control most of its functions manually, it’s built from the ground up to give your pet an easy way to get in or out of your home -- all while keeping out unwanted guests that might sneak in with traditional pet doors. At CES 2025, the company expanded the system to include a new exterior pet door, creating a two-door system that’s among the most secure pet doors on the market.

Originally shown off at CES 2024, Pawport is a smart pet door that actuates when your pet is trying to leave or enter your home. Using a lightweight waterproof tracker tag and motion sensing, the door (which is installed inside your home) will automatically open when your pet approaches. When it’s not nearby, the door will close to prevent pests, animals, or bad weather from getting inside. The Pawport Smart Pet Door can be mounted indoors over existing pet doors, making it an easy addition to most homes.

Read more