Chinese consumer electronics giant Xiaomi has proposed global common standards to tackle IoT security problems.

The company has released Cyber Security Baseline for Consumer IoT Device Version 2.0, a global standards guideline on IoT. It has also announced that its AX3000 mesh system has obtained the BSI IoT Kitemark certificate.

Xiaomi, which has established a consumer AIoT platform, has published the proposed global standards to support and reassure consumers about the security of their data while using IoT products.

The guidelines aim to protect security and user privacy with a set of requirements covering guidelines from device hardware and software to device communication. It also states the requirements on data security and privacy, which include communication security, authentication and access control, secure boot, and data deletion. It is a security baseline that all Xiaomi smart devices should follow.

The guidelines are said to meet the need of the consumer IoT industry as there is no such general standard that can be publicly queried and implemented. Now companies can use this guide to avoid some basic security and privacy protection risks, and to improve the security and privacy protection capabilities of their IoT products.

As of November 2021, Xiaomi’s AIoT platform has connected more than 400 million devices, excluding smartphones and laptops, and there are more than eight million users with five or more Xiaomi IoT devices.

“Users’ security and privacy is the top priority of Xiaomi, and we promise that this applies to all markets where we operate,” said Cui Baoqiu, Xiaomi vice president. “I’m delighted to see that Xiaomi mesh system AX3000 has also successfully joined the BSI Kitemark certification. Over the years, we have made great efforts to protect users’ security and privacy. I’m confident and proud to say that Xiaomi is in the leading position of IoT security policies and practices in the world, and we will continue to work hard to build a better IoT ecosystem for our users.”

David Mudd, BSI digital and connected product certification director, added: “Connected devices can bring huge benefits to society, but it is imperative that their function and security can be trusted throughout the required device life. By achieving the BSI Kitemark for IoT devices for its product and having its systems regularly and independently tested and monitored, Xiaomi is demonstrating to consumers their commitment to safeguarding information.”

The BSI IoT Kitemark is a product and service quality certification owned and operated by BSI, which conducts technical testing and security audits for IoT systems, giving consumers reassurance and confidence of secure and trustworthy IoT devices. Obtaining the Kitemark means Xiaomi products are in compliance with multiple cyber-security standards, including Etsi EN303645 and the Open Web Application Security Project (OWASP) top-ten security requirements.

This is the third time Xiaomi products have received this international security accreditation, following Mi 360˚ Home Security Camera 2K and Xiaomi Home App, which achieved BSI Kitemark certificates in July 2021.

In the future, Xiaomi plans to improve its IoT security framework, while strengthening its security management and technical testing capabilities.

Xiaomi was founded in 2010 and is a consumer electronics and smart manufacturing company with smartphones and smart hardware connected by an IoT platform at its core. The company’s share in terms of smartphone shipments was ranked third globally in the third quarter of 2021. Xiaomi products are present in more than 100 countries and regions around the world.