The whole subject of cybersecurity, especially concerning IoT, is still very much a gray area. We don’t have enough regulations to help people stay safe. As a user, you need to know who’s liable in case of breached security, and whether or not you can seek help from the manufacturer or a developer. In other words, trust in this context is all about reliance — whether or not you can rely on the device or its manufacturer to protect you. To be able to do that, any commitments, contracts, liabilities, etc. need to be regulated using legal means.