On October 22, 2018, in its 53rd meeting, the SCC approved a resolution titled “Requirements Governing the Internet of Things on NIN.” The preamble states that its aim is to provide definitions and requirements related to emerging technologies in order to achieve the goal of preserving and governing cyberspace.
Article 1 defines technical terms and specifies that based on it, the body is pursuing the establishment of a connection between the user (any entity using the Internet of Things, IoT) and the entity (any natural or legal person, process, object, or system on the IoT that can be independently identified).
Article 2 states that the general requirements of the IoT must meet the following conditions:
1- Paying attention to the principles and values governing society, especially the preservation of human dignity and position in the development of various dimensions of the IoT
2- Promoting well-being and social justice, efficiency, and policies of resistance economy based on macro indicators
3- Legal requirements based on the role of objects and humans with each other and their interaction with each other should be developed
4- Development and transfer of technology to the country should be carried out for known applications and based on priority needs specified in higher-level documents to prevent the loss of national capital.
5- All entities within this system must be identifiable and verified (with respect to user privacy and public security).
6- Education, research, and training of human resources should be carried out based on the priority needs of the country. Furthermore, in public awareness campaigns, serious attention should be paid to the considerations of family-centeredness, collectivism, prevention of the decline of human relationships, emotional and mental dependence on technology, rationalization of presence in virtual space compared to physical space, and prevention of excessive thoughtlessness and inactivity in the face of IoT technology.
7- User safety principles in connecting to the IoT network should be taken into account to ensure personal and public security (in terms of physical and mental health, economic, security, social, cultural, and environmental aspects).
Article 3 has addressed the specific requirements that must be observed regarding the IoT:
- The entry of IoT should take into account the risks to the country’s vital infrastructure.
- The IoT ecosystem is only a platform for the NIN. Members present in this system must have an identification card (meaning that their registration and licensing has been done in relevant official and legal bodies). Non-governmental actors, especially in the data aggregation and business model layers, should also have a role.
- The system components of this system should be indigenized, taking into account strategic priorities and national interests. In this regard, “systematic indigenization” means moving according to a comprehensive roadmap that includes at least determining indigenization domains, priorities, roles, timing, necessary credits, and future outlook.
- IoT services should be hosted in a jurisdiction within the Islamic Republic of Iran’s governance.
- The aggregated big data from users are national assets and are subject to data protection requirements.
Article 4 requires the National Cyberspace Center to specify the priorities and distribution within six months and present the results to the SCC.
This legislation emphasizes that anything related to the IoT must be placed on the NIN, not the internet, and services related to the IoT should be provided in a way that allows the Islamic Republic of Iran to maintain control. Localizing the components of the IoT is also another emphasized point. Implementing these points together will result in the removal of foreign competitors and reducing global. Furthermore, not recognizing the internet as a network and replacing it with another deprives users of the ability to benefit from similar global services that currently exist and takes away their right to choose.
https://dotic.ir/news/1965