BSI drafts Internet of Things security recommendations

At last, influential policymakers are slowly becoming aware of the damages unsecured IoT devices can cause. Recent attacks on high profile targets, exploiting cameras and routers, have attracted a lot of attention. Some of the issues will not likely be solved until manufacturers improve the security of their systems. However, many attack vectors could be eliminated easily with appropriate precautionary measures. Currently, the Federal Office for Information Security (BSI) is drafting a new module to address IoT device security. Although it does not refer to specific manufacturers or technologies, the proposal includes concepts for securing IoT devices so that they cannot be manipulated or accessed without authorization to compromise data and IT security within an organization or to target other organizations.

Making IIoT Security More Robust

Once again Internet-connected gadgets, also known as the Internet of Things (IoT), are expected to be a gift for retailers this Christmas in helping them towards bumper sales. However, in many ways, the hyperbole surrounding consumer IoT is a mere side-show. According to McKinsey Global Institute, the real value of IoT lies with industry. McKinsey expects factories to be the top market for Industrial Internet of Things (IIoT), accounting for $3.7 trillion per year by 2025. Presently, IoT technology in general is relatively immature. Issues such as security and manufacturing standards are still the subject of much debate. However, the primary focus of the world’s professional engineering bodies is how to make IIoT more robust. In this respect, Virtual Private Network (VPN) technology has an important part to play by ensuring data traffic is secured at device-level and encrypted at all times.

IT security for Industrial Internet of Things

Vulnerabilities in the vision of industrial digitalization and networking

In the future, more and more devices, systems and equipment will be networked under the vision of Industrial Internet of Things (IIoT). The main thrust of digitalization and networking is increasing efficiency and flexibility in industrial processes. Almost the entire industrial value chain is saturated with complex IT infrastructures with mobile and stationary components.

​​IT security is one of the most critical factors in this area as damage caused by manipulation and illegal data access can quickly reach catastrophic proportions. Many manufacturers are choosing IT security made in Germany as an important quality factor.

With sensors everywhere, how can we keep data secure?

The idea behind the Internet of Things (IoT) is that everyday objects can connect to each other and exchange data via the Internet. Even the smallest components, such as sensors for measuring temperature, angle of inclination or acceleration can send information or accept commands via the network. Current and future systems are based on the Internet protocol and will probably soon include ipv6 support. They transmit data in an open and well-known format. Depending on the application, data will most likely be transmitted via public networks. This means that data is in principle open to everyone who is connected to the network. Subject to the type of data the consequences range from unpleasant to catastrophic, which is why confidentiality must be protected and safeguarded. There are many ways of achieving this, especially through encryption.

Smart buildings merit smarter security

Architects and city planners first began promoting the concept of Smart Buildings, or Building Automation Systems (BAS), around ten years ago. Smart buildings were meant to deliver untold benefits from energy efficiencies and greener lifestyles to cost savings and improved living standards for all. Early examples of IP-connected appliances, however, were not built to cope with the demands of an evolving threat landscape.