Cloud Security Alliance outlines 13 steps to developing secure IoT products
The Cloud Security Alliance (CSA) has outlined a series of best practice guidelines to help IoT designers and developers understand various security measures.
Comprising a baker’s dozen of tips, the document ranges from protecting data, to implementing secure authentication, to secure key management. Naturally, these can be seen as fairly standard security tips, but the report notes that the guidance is not meant “as a substitute for understanding fundamental system security engineering methodologies and techniques, but instead aims to mitigate some of the more common issues that can be found with IoT device development.”
The full report lays out guidance on IoT device security challenges, a discussion on security options available for IoT development platforms, categorisation of IoT device types and a review of threats, as well as recommendations for secure device design and development processes.
“We hope to empower developers and organisations with the ability to create a security strategy that will help mitigate the most pressing threats to both consumer and business IoT products,” said Brian Russell, chair of the IoT working group and chief engineer of cyber security solutions with Leidos.
Naturally, the question of IoT security is one which continues to make headlines. “The next big cybersecurity issue has arrived,” argued Computer Business Review on Monday, while a day later TechRadar led with “IoT security must be tightened – or we’ll all face a world of hurt.” Speaking to this publication earlier this month Doug Zuckerman, conference chair of the IEEE Technology Time Machine event, discussed security threats on the IoT and emerging technologies.
“We just need to work on it,” he said. “I don’t think we’ll ever have anything that’s perfect, I think hackers will always be able to find a way in, but we have to do the best we can.”
You can find out more about the CSA report here.
Interested in hearing industry leaders discuss subjects like this and sharing their IoT use-cases? Attend the IoT Tech Expo World Series events with upcoming shows in Silicon Valley, London and Amsterdam to learn more.
- » KT to run 5G-based autonomous shuttle bus to prove commercial potential
- » IoT-related services revenue in APAC to hit $96bn by 2023, says GlobalData
- » Cisco is investing in Australian agricultural IoT firm Titan Class
- » FCC proposes splitting 5.9GHz spectrum for vehicle comms and WiFi
- » New trial for UK industrial IoT monitoring system FuseOhm is completed