Thursday, July 18 2024

What is Internet of Things?

Let’s try to understand by taking benefits and examples of the IoT technology in real life scenario. I would like to decipher IoT as how it looks like when the extraordinary can become the every day.

We can turn off our lights from anywhere in the world using our smart phone. Driver-less cars are just around the corner. We’re living in the future, one we thought was lifetimes away. It’s part of a new revolution. The Internet of Things. IoT is any physical object that you connect to the Internet. IoT is where physical systems and the information systems collide.

As a cyber security professional, I take all the new technologies suspiciously, and for the same fact I take IoT as intelligence smart devices that bring the risks and threats that we’ve always seen in the industrial and digital control system space, into the lives of real people.

Our fridges can remind us what to pick up at the store. Doctors can check on patient’s status from the other side of the world. Cities can monitor everything from trash cans to buses. The potential is seemingly endless. The advantages of the IoT and the data that it produces are going to be enormous, from a personal health issue, to the physical reliability of roads and bridges. We should be able to know, in advance Before roads, bridges, cars, whatever, our fail. It starts ordering books on Amazon or making phone calls to overseas locations. That might decide would be anonymous behavior for a light bulb that shouldn’t be permitted.

Manufacturers, vendors, suppliers, wholesalers, or whosoever is related to the IoT related product development or IT product supply chain management for the IT and Cybersecurity should spend their time thinking about how we, general public, industry, and individuals can best work together to tackle this new world.

However, amazing new biomedical advances like this one may come with their own risks. If we’re not careful. If we don’t think about the fact that that computing device can execute code and that visor, now or in the future when it becomes a fully functional bionic eye, can see a QR code. And then flip it into executing malicious code and then that person gets ransomware to get their eyesight back. That would be a shame. Putting a device out there where you don’t have an ability to secure and that it lasts for a very long time, that’s a very dangerous thing. Our digital lives have become natural extension of the physical world. We keep up with friends on social media. We control our home from our cell phones. If you leave your front door unlocked at home, odds are low that people are going to be stopping by to check. But in the cyber world, countless people are checking every door all the time. From botnet for instance, check these doors and when they found them easy to open, we’re able to infect webcams and digital video recorders. Hundreds of thousands, millions compromised. Compromised because of default username and passwords. And I’m not even talking about weak passwords, they’re default usernames and passwords. We’re moving so quickly. We’re innovating so quickly.

Connected Devices through IoT Technology

We don’t take the time to build in information security into new products. We don’t build in privacy. We have to find a way to do security differently, to build security in as opposed to slap it on in the end. And then there’s your data to consider. Whether it be my kid’s Barbie doll, to my car, to my HVAC, to all these sensors that are around me or with me. That give you my fully digital biological footprint. We must think about what that might mean, how do you deal with the privacy the implications of it, but also one of the ethical considerations on the use of that data. If we are going to go to a model where the data is being collected as we pass every garbage can and every traffic light think Americans who view the ability to go on the open road and drive down route 66 would be horrified and stand up and really argue against it. But with six and a half billion connected things in existence and 20 billion expected within only a couple of years, trying to live without using these connected devices gets tougher and tougher. You’re suddenly, you’re that guy in a wooden cabin in Montana generating your electricity from little stream that goes by and you know putting rabbits’ snares to eat. And that’s just the devices you get to choose. Many of today’s lifesaving devices are connected, and because of that are at risk for being hacked.

The National Cybersecurity Center of Excellence, industry, government and academia work side-by-side, developing practical solutions to some of industry’s Most pressing cyber security challenges. These medical infusion pumps are lifesaving devices connected to hospital networks. NIST and his partners looked at how to improve the security of these wireless pumps. One recommendation was to add digital certificate to the pump that would limit it to communicating only with specific servers. NIST publishes IT security guidelines based on this research. So that anyone in industry can pick them up and follow the guide as a proven method for addressing these risks. When I see the value in this is the convener. Bringing together true technical experts.

Internet of Things

Private sector and government and Manufacturers, developers, often other other technical, but also the policy side. It’s about whether my kids are going to live in a nice world in 15 years. And so, I’m looking to NIST to solve that problem for me. While NIST can’t solve the problem alone, by collaborating we can work towards a more secure IOT future. Where? What’s extraordinary today, can truly become the everyday.

Previous

What is Endpoint Security? Everything about Endpoint Security.

Next

Do you think you know what a cyber security analyst does? 10 things that they do a daily basis.

Check Also

Widget

Don’t Miss

Sevco Security Platform Product Review

Ellie Buscemi

What is the Sevco Security Platform? The Sevco Security Platform is a cyber asset attack service management (CAASM) product that focuses on aggregating and correlating data from across a company’s cybersecurity infrastructure to give cybersecurity professionals a better sense of what the company’s infrastructure looks like as a whole. The platform’s sources include a company’s […]

Cyber Deals: Huntress, Cyberhaven, and SpyCloud

CISOstack

Cybersecurity Surge: Top Funding Rounds and Strategic Acquisitions Fuel Growth in AI, Cloud Security, and Threat Prevention Solutions

Fidelis Elevate: A Deep Dive

Ellie Buscemi

What is Fidelis Elevate? Fidelis Elevate is an open extended detection and response (open XDR) solution focusing on network protection, endpoint security, and cyber attacker deception. The platform aims to protect various elements of a company’s infrastructure, such as devices and servers while tracking suspicious behavior and preventing access to cyber criminals. What features does […]

Partially closed laptop screen

Best Extended Detection and Response (XDR) Solutions

Lara Oporto

What is Extended Detection and Response and how does it work? Extended Detection and Response (XDR) is a cybersecurity system that gathers information from different places like computers, networks and emails. Unlike other security tools that focus on one area like computers or networks, XDR looks at everything together. The comprehensive approach helps to find […]

Close up of computer chip

Best Managed Detection and Response (MDR) Solutions

Lara Oporto

What is Managed Detection and Response? Managed Detection and Response (MDR) is a cybersecurity service that provides continuous monitoring, threat detection and incident response capabilities. MDR achieves these capabilities through the deployment of advanced technologies such as machine learning and behavioral analytics as well as analysis from security professionals. MDR is a cybersecurity service that […]

Best Hyperconverged Infrastructure Software

Ellie Buscemi

What is Hyperconverged Infrastructure and how does it work? Hyperconverged infrastructure (HCI) is a software that provides computing, storage and network operations for a company from a single point on a company’s hardware. Originally, computing, storage and network operations were divided in a company’s hardware infrastructure and potentially provided by separate vendors with different management […]