In recent years, IoT products have developed rapidly. IoT has difficulty in managing diversity and faces security and privacy issues. There have been many major incidents of capital security resulting in major losses. Governments and agencies have also proposed regulations in response to countermeasures. This article focuses on the security and privacy of IoT. On the security issue, the IoT top 10 proposed by OWASP organizations most cited the lack of security and privacy of IoT. The United States, the United Kingdom and other countries have also proposed to respond to the security regulations. In regard to IoT security issues, The TAICS also proposed the general security code for the Internet of Things. Our country is in first range of introducing IoT security norms in the world. The purpose is to improve IoT security and the right of privacy and reduce losses.