SCALING UP IOT SECURITY · 2019-04-16 · SCALING UP IOT SECURITY IoT Security Foundation...

Post on 12-Jun-2020

11 views 0 download

Preview:

Click to see full reader
Report this document
SHARE

transcript

SCALING UP IOT SECURITYIoT Security Foundation Conference December 2018

Leo Dorrendorf

Security architect

Diverse product

range

Multiple R&D teams

Different security

levels

Updated standards

and regulation

Supply chain

security

Evolving threat

intelligence

Rising attacks

The challenges of IoT security architecture

Rising attacks on IoT

Global Number of

IoT devices (Billions)Source: Statista

Number of detected malwares

Against IoT devicesSource: Kaspersky Lab

Number of reported

Infected devicesSource: VDOO Research

Auto-analyzed IoT

embedded systems

3,737Aggregated IoT

vulnerabilities

162,151 500-day

vulnerabilities

Our research

The state of IoT security

The problems with the manual approach

Quick Scalable Reusable Standardized

The advantages of the automated approach

Quick Scalable Reusable Standardized

The IoT security process

Training Requirements Design Implementation Release

1 2 3 4 65

Verification

Creating a requirements database

Internal research

Industry standards

Industry publications

Public threat intelligence

REQ.1

REQ.2

REQ.3

REQ.4

Linking related objects

REQ.1

REQ.2

REQ.3

REQ.4Industry standards

Attack methods

Device attributes

Scan results

Filtering relevant requirements

SD card

Wi-Fi

USB

Ethern

et

HW

RN

G

Relevant

RequirementsREQ.1

REQ.2

REQ.3

REQ.4

Integrating existing standards

https://xkcd.com/927

shared under the Creative Commons license by its author

https://xkcd.com/927
https://xkcd.com/927

Integrating existing standards

REQ.1

REQ.2

REQ.3

REQ.4

Mapping requirements

Filtering to a selected standard

REQ.1

REQ.2

REQ.3

REQ.4

Relevant

Requirements

Automatic scanning for requirement status

Device

firmware

Requirement

status

REQ.1

REQ.2

REQ.3

REQ.4

Security as part of continuous integration

v0.1 v0.5 v1.0

REQ.1

REQ.2

REQ.3

REQ.4

REQ.1

REQ.2

REQ.3

REQ.4

REQ.1

REQ.2

REQ.3

REQ.4

Post-release protection

Vulnerable

software

Fundamental fix

Countermeasures

Conclusion

01 What is the right security level for my product?

02 What do I already have in my product?

03 What gaps do I have?

04 How to bridge the gaps?

06 How can I maintain trust and security?

05 How can I be trusted by my customers?

Conclusion

Massive data set (over 20K firmwares)

THANK YOUleo@vdoo.com @leodorrendorf

Top related

IOT SECURITY: CHALLENGES, SOLUTIONS & FUTURE PROSPECTS · 2021. 2. 27. · This article considers IoT security challenges, security requirements for IoT architecture, current security
Documents
Scaling the Internet of Things at IoT & WSN Berlin 2014
Business
IoT SAFE: Robust IoT security at scale
Documents
Scaling presentation to IoT Europe conference
Software
Security in IoT
Engineering
Floodgate IoT Security Toolkit - Nohaunohau.eu/wp-content/uploads/IconLabs.pdf · The Floodgate IoT Security Toolkit provides engineers developing IoT devices a comprehensive security
Documents
Securing the Internet of Things (IoT) at the U.S ...Examples of VA Addressing the Security Challenges of IoT Scaling solutions enterprise-wide and establishing the capability for connected
Documents
Scaling IOT Solutionsedpsieee.ieeesiliconvalley.org/EDP2016/Papers/4-1 Ken... · 2019-04-14 · Placeholder Footer Copy / BU Logo or Name Goes Here Scaling IOT Solutions Ken Caviasca
Documents
IoT Security Testing - Deloitte United States · IoT Security Testing Benefits of IoT Security Testing Despite a complex IoT product architecture, IoT security testing (IST) is beneficial
Documents
Scaling IoT Deployments: DevOps for the Internet of Things
Technology
IoT Security - COIT · IoT Security Protect Your IoT Devices and Keep your Business Running ©2018 Check Point Software Technologies Ltd. 2 IoT Security Represent a New Frontier The
Documents
Scaling IoT
Technology
of THINGS (IoT) - FlipsCloud · 2017-09-18 · Title: Internet of Things (IoT) security and privacy issues Author: Flipscloud Inc Subject: IoT security Keywords: IoT security,Internet
Documents
GOTO Copenhagen 2016 - Scaling IoT
Technology
Opportunities and challenges with scaling IoT solutions, Rob van
Documents
Scaling Security for IoT - Meetupfiles.meetup.com/18611894/Scaling IoT Security v1.0.pdf•‘Jeep Hack’ of July 2015 in which vehicle forced off the road by hackers ( Chrysler recalled
Documents
Getting started with IoT security · IoT devices. The IoT Security Foundation has prepared an IoT Security Compliance Framework to provide pragmatic guidance to businesses developing
Documents
SECURE ELEMENTS FOR IOT SECURITY NICHOLAS VONDRAK ...€¦ · IoT Security of Things Event / 19th October ... SECURE ELEMENTS FOR IOT SECURITY NICHOLAS VONDRAK, MARKETING MANAGER
Documents
IoT Security: F5 IoT Solution · IoT Security: F5 IoT Solution Author: Matt Mooseles Created Date: 10/1/2018 8:18:05 PM ...
Documents
Security & Scaling at Microsoft
Technology

Copyright © 2018 DOCUMENTS