SlideShare a Scribd company logo

Bridgera enterprise IoT security

R
Ron Pascuzzi

The document discusses the evolution of security in the context of the Internet of Things (IoT), emphasizing that achieving 100% security is impossible and highlighting the new risks introduced by connecting smart devices. It outlines essential security measures and engineering constraints relevant to IoT solutions, such as the need for unique device passwords, firmware updates, and cloud security practices. The document concludes by urging proactive threat identification and mitigation to help secure IoT environments effectively.

Technology
Related topics:
IT SecurityIoT Security Focus Internet of Things
1 of 33
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
Enterprise IoT: Security Turning a prototype into a viable solution © 2017. All Rights Reserved
What is Security? How does it apply to the Internet of Things? © 2017. All Rights Reserved
© 2017. All Rights Reserved Security Fact 100% Secure from 100% of Threats is 100% Impossible
© 2017. All Rights Reserved Therefore, security is …
© 2017. All Rights Reserved In the beginning … (Before 1990) People had personal computers (PC) … Security concern was physical theft of the PC
© 2017. All Rights Reserved By 1990 Security evolved to a warning ... May contain viruses
© 2017. All Rights Reserved In the Early 1990’s We then connected computers in a local network … Physical theft still remained the primary concern …
© 2017. All Rights Reserved Early 1990’s … and yes, unscrupulous floppy disks still contained viruses! May contain viruses
© 2017. All Rights Reserved In the Late 1990’s AOL introduced people to the internet … But CxO’s feared the internet and refused employee access.
© 2017. All Rights Reserved In the Mid 2000’s Thanks to AOL and software sales reps, CxO’s began seeing value in what the internet offered …
© 2017. All Rights Reserved In the late 2000’s IT Security profession evolved to create … Guidelines and Standards • SSAE16 • ISO 27001 • NIST • FEDRAMP • DFAR
© 2017. All Rights Reserved Today We now have an entire industry providing IT security as a service … • IDS/IPS – Intrusion Detection System, Intrusion Prevention System • DDOS – Distributed Denial of Service • SOC/NOC – Security Operations Center, Network Operations Center • SIEM – Security Information and Event Management
© 2017. All Rights Reserved What does this have to do with IoT?
© 2017. All Rights Reserved Smart Devices are Everywhere In our homes In our offices In our factories In our vehicles
© 2017. All Rights Reserved Smart Devices are Everywhere In our homes In our offices In our factories In our vehicles Like PC’s in the 1990’s, security is to prevent theft and physical harm
© 2017. All Rights Reserved Now we want smart devices connected
© 2017. All Rights Reserved Connecting devices introduces new risks
© 2017. All Rights Reserved Connecting devices introduces new risks We need new standards, tools, and services
© 2017. All Rights Reserved Challenges Is the device physically secure? Can the device encrypt data? Can the device password be remotely changed? Can the device firmware be updated? Can the device be controlled remotely?
© 2017. All Rights Reserved When people demanded internet access… we figured it out. We will figure out how to secure IoT devices. Until then …
Don’t make it easy for bad things to happen © 2017. All Rights Reserved SoftwareInternetThings
© 2017. All Rights Reserved What Bad Could Happen? Unwanted access / use Unwanted change Inability to access Availability
For each potential threat: 1. Weigh Impact • Safety of people • Protection of physical assets • Protection of data • Compliance with regulations • Cost of a breach 2. Assess Probability 3. Prioritize what to mitigate 4. Put appropriate controls in place • Include risk mitigation into the design specification © 2017. All Rights Reserved Establish Priority
© 2017. All Rights Reserved Thing Development: Hardware/Device ENGINEERING CONSTRAINTS: COST | POWER | SIZE
© 2017. All Rights Reserved Thing Development: Hardware/Device ENGINEERING CONSTRAINTS: COST | POWER | SIZE
© 2017. All Rights Reserved Internet: Communication Channel DRIVEN BY DEVICE CONSTRAINTS: COST | POWER | SIZE + DISTANCE LTE 3G LoRaWiFi Sigfox TCP CoAP MQTT REST Network Mode of transporting data Internet Protocol Packaging data for transport over a network
© 2017. All Rights Reserved Internet: Communication Channel DRIVEN BY DEVICE CONSTRAINTS: COST | POWER | SIZE + DISTANCE LTE 3G LoRaWiFi Sigfox TCP CoAP MQTT REST Network Mode of transporting data Internet Protocol Packaging data for transport over a network
© 2017. All Rights Reserved Software: Cloud Capabilities Connect Devices Enable Applications Process Data ENGINEERING CONSTRAINTS: DATA FLOW (3V’S) | RELIABILITY | PROCESSING
© 2017. All Rights Reserved Software: Cloud Capabilities Connect Devices Enable Applications Process Data ENGINEERING CONSTRAINTS: DATA FLOW (3V’S) | RELIABILITY | PROCESSING
© 2017. All Rights Reserved IoT System Security Controls (examples) Device Level Application LevelConnectivity Level • SSL certificates • Unique device passwords • Whitelisted IP addresses • Whitelist phone number (SMS) • Checksum algorithms (delivery reliability) • OTA firmware Updates • SSL/TLS between platform and device • VPN to securely send SMS text messages using SMPP gateways • Manage and frequently change device passwords • Manage firmware updates • Standard cloud security (DDOS, IPS/IDS, …) • Authentication, authorization to access the platform and applications • Database encryption • VPC (Virtual Private Cloud) zone protected by a firewall (or an equivalent concept)
© 2017. All Rights Reserved Security – What can you do today? Identify potential threats early and continuously Assess Impact and Probability Put appropriate controls in place Apply best practices where they exist 100% secure from 100% of threats is 100% impossible, but … Don’t make it easy for bad things to happen.
Questions? Learn more at Bridgera.com/IOT © 2017. All Rights Reserved Ron Pascuzzi Ron.Pascuzzi@bridgera.com 919-757-1941
© 2017. All Rights Reserved Bridgera IoT One Platform to Accelerate Your Enterprise IoT Solution Connect Devices Enable Applications Process Data

More Related Content

PDF
Bridgera enterprise IoT Software Solutions
Ron Pascuzzi
 
PPTX
Talk To Your Things
Jordan Eller
 
PDF
ARM Bryan Lawrence at Smart Homes 2013 Cambridge
Justin Hayward
 
PDF
MILCOM 2013 Keynote Presentation: Larry Payne
AFCEA International
 
PDF
IoT Panel- Cisco and Intel
Bessie Wang
 
PPTX
Internet of everything
Jayesh Pai
 
DOCX
Ipx explained
AaronTAYLOR05
 
PDF
Keepler | IoT Analytics & AI on Edge Computing
Keepler Data Tech
 
Bridgera enterprise IoT Software Solutions
Ron Pascuzzi
 
Talk To Your Things
Jordan Eller
 
ARM Bryan Lawrence at Smart Homes 2013 Cambridge
Justin Hayward
 
MILCOM 2013 Keynote Presentation: Larry Payne
AFCEA International
 
IoT Panel- Cisco and Intel
Bessie Wang
 
Internet of everything
Jayesh Pai
 
Ipx explained
AaronTAYLOR05
 
Keepler | IoT Analytics & AI on Edge Computing
Keepler Data Tech
 

What's hot (20)

PDF
The State of Edge Computing for IoT
Ian Skerrett
 
PDF
Developing Enterprise-Level IoT Solutions by Fariz Saracevic
Bosnia Agile
 
PDF
Sensinode ARM Smart Homes & Cleanpower 2013 Cambridge, UK via CIR www.hvm-uk.com
Justin Hayward
 
PDF
Delivering the IoT ecosystem
Telefónica IoT
 
PDF
WSO2 Platform Introduction
WSO2
 
PDF
Connect, Secure & Automate the Distribution Grid with CISCO SCADA RTU - Eximp...
Bosnia Agile
 
PPTX
Cisco Connect 2018 Indonesia - Delivering intent for data center networking
NetworkCollaborators
 
PPTX
Eclipse IoT for Industry 4.0
Ian Skerrett
 
PDF
Accelerating Digital Leadership
M2M Alliance e.V.
 
PPTX
IOTprotocols and overview (SSI)
Dania Rashid
 
PDF
Wearables and IoT Strategy
AllSeen Alliance
 
PDF
Creating an Internet of Everything
AllSeen Alliance
 
PDF
Industries On Transformation
Telefónica IoT
 
PPTX
IoT Platform with MQTT and Websocket
Sofian Hadiwijaya
 
PPTX
IoT Security
Peter Waher
 
PDF
Neotel
Cisco Case Studies
 
PDF
Final----News-Release----LEC-and-Distrix-Partner-to-Enhance-IIoT-Security----...
Thomas Mehlhorn
 
PDF
The Case for an Open IoT ‘Data Fabric’ for Smart Buildings Integration
Memoori
 
PPT
Physical Security, IoT & The Role of Open Standards
Memoori
 
PDF
Jisc cloud services: helping our members deliver their cloud strategies
Jisc
 
The State of Edge Computing for IoT
Ian Skerrett
 
Developing Enterprise-Level IoT Solutions by Fariz Saracevic
Bosnia Agile
 
Sensinode ARM Smart Homes & Cleanpower 2013 Cambridge, UK via CIR www.hvm-uk.com
Justin Hayward
 
Delivering the IoT ecosystem
Telefónica IoT
 
WSO2 Platform Introduction
WSO2
 
Connect, Secure & Automate the Distribution Grid with CISCO SCADA RTU - Eximp...
Bosnia Agile
 
Cisco Connect 2018 Indonesia - Delivering intent for data center networking
NetworkCollaborators
 
Eclipse IoT for Industry 4.0
Ian Skerrett
 
Accelerating Digital Leadership
M2M Alliance e.V.
 
IOTprotocols and overview (SSI)
Dania Rashid
 
Wearables and IoT Strategy
AllSeen Alliance
 
Creating an Internet of Everything
AllSeen Alliance
 
Industries On Transformation
Telefónica IoT
 
IoT Platform with MQTT and Websocket
Sofian Hadiwijaya
 
IoT Security
Peter Waher
 
Neotel
Cisco Case Studies
 
Final----News-Release----LEC-and-Distrix-Partner-to-Enhance-IIoT-Security----...
Thomas Mehlhorn
 
The Case for an Open IoT ‘Data Fabric’ for Smart Buildings Integration
Memoori
 
Physical Security, IoT & The Role of Open Standards
Memoori
 
Jisc cloud services: helping our members deliver their cloud strategies
Jisc
 
Ad

Similar to Bridgera enterprise IoT security (20)

PDF
Cybersecurity in the Age of IoT - Skillmine
Skillmine Technology Consulting
 
PPTX
Iot(security)
Shreya Pohekar
 
PPTX
Security Testing for IoT Systems
Security Innovation
 
PDF
The Internet of Things: the 4 security dimensions of smart devices
Wavestone
 
PDF
[TestWarez 2017] Securing the Internet of Things
Stowarzyszenie Jakości Systemów Informatycznych (SJSI)
 
PDF
CIS 2015 How to secure the Internet of Things? Hannes Tschofenig
CloudIDSummit
 
PDF
An Internet of Things Reference Architecture
Symantec
 
PPTX
All The Things: Security, Privacy & Safety in a World of Connected Devices
John D. Johnson
 
PPTX
IoT security
YashKesharwani2
 
PDF
Drobics trustworthy io-t-for-industrial-applications
Mario Drobics
 
PPTX
IoT Security: Debunking the "We Aren't THAT Connected" Myth
Security Innovation
 
PDF
How Secure are you Around “IoT”_.pdf
Anil
 
PDF
逃避可恥還沒有用- 你不可不知的物聯網安全問題與挑戰(Ashley Shen & Belinda Lai)
HITCON GIRLS
 
PDF
Internet of things (IoT) Architecture Security Analysis
Daksh Raj Chopra
 
PDF
Io t security defense in depth charles li v1 20180425c
Charles Li
 
PPTX
Thought Leadership Webinar - Internet of things (IoT): The Next Cyber Securit...
ClicTest
 
PDF
Protecting your home and office in the era of IoT
Marian Marinov
 
PPTX
Security aspect of IOT.pptx
PrinceGupta789219
 
DOCX
Final Research Project - Securing IoT Devices What are the Challe.docx
tjane3
 
DOCX
Final Research Project - Securing IoT Devices What are the Challe.docx
lmelaine
 
Cybersecurity in the Age of IoT - Skillmine
Skillmine Technology Consulting
 
Iot(security)
Shreya Pohekar
 
Security Testing for IoT Systems
Security Innovation
 
The Internet of Things: the 4 security dimensions of smart devices
Wavestone
 
[TestWarez 2017] Securing the Internet of Things
Stowarzyszenie Jakości Systemów Informatycznych (SJSI)
 
CIS 2015 How to secure the Internet of Things? Hannes Tschofenig
CloudIDSummit
 
An Internet of Things Reference Architecture
Symantec
 
All The Things: Security, Privacy & Safety in a World of Connected Devices
John D. Johnson
 
IoT security
YashKesharwani2
 
Drobics trustworthy io-t-for-industrial-applications
Mario Drobics
 
IoT Security: Debunking the "We Aren't THAT Connected" Myth
Security Innovation
 
How Secure are you Around “IoT”_.pdf
Anil
 
逃避可恥還沒有用- 你不可不知的物聯網安全問題與挑戰(Ashley Shen & Belinda Lai)
HITCON GIRLS
 
Internet of things (IoT) Architecture Security Analysis
Daksh Raj Chopra
 
Io t security defense in depth charles li v1 20180425c
Charles Li
 
Thought Leadership Webinar - Internet of things (IoT): The Next Cyber Securit...
ClicTest
 
Protecting your home and office in the era of IoT
Marian Marinov
 
Security aspect of IOT.pptx
PrinceGupta789219
 
Final Research Project - Securing IoT Devices What are the Challe.docx
tjane3
 
Final Research Project - Securing IoT Devices What are the Challe.docx
lmelaine
 
Ad

Recently uploaded (20)

PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PPTX
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PDF
Encapsulation theory and applications.pdf
gurumoop
 
PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PDF
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Encapsulation theory and applications.pdf
gurumoop
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 

Bridgera enterprise IoT security

  • 1. Enterprise IoT: Security Turning a prototype into a viable solution © 2017. All Rights Reserved
  • 2. What is Security? How does it apply to the Internet of Things? © 2017. All Rights Reserved
  • 3. © 2017. All Rights Reserved Security Fact 100% Secure from 100% of Threats is 100% Impossible
  • 4. © 2017. All Rights Reserved Therefore, security is …
  • 5. © 2017. All Rights Reserved In the beginning … (Before 1990) People had personal computers (PC) … Security concern was physical theft of the PC
  • 6. © 2017. All Rights Reserved By 1990 Security evolved to a warning ... May contain viruses
  • 7. © 2017. All Rights Reserved In the Early 1990’s We then connected computers in a local network … Physical theft still remained the primary concern …
  • 8. © 2017. All Rights Reserved Early 1990’s … and yes, unscrupulous floppy disks still contained viruses! May contain viruses
  • 9. © 2017. All Rights Reserved In the Late 1990’s AOL introduced people to the internet … But CxO’s feared the internet and refused employee access.
  • 10. © 2017. All Rights Reserved In the Mid 2000’s Thanks to AOL and software sales reps, CxO’s began seeing value in what the internet offered …
  • 11. © 2017. All Rights Reserved In the late 2000’s IT Security profession evolved to create … Guidelines and Standards • SSAE16 • ISO 27001 • NIST • FEDRAMP • DFAR
  • 12. © 2017. All Rights Reserved Today We now have an entire industry providing IT security as a service … • IDS/IPS – Intrusion Detection System, Intrusion Prevention System • DDOS – Distributed Denial of Service • SOC/NOC – Security Operations Center, Network Operations Center • SIEM – Security Information and Event Management
  • 13. © 2017. All Rights Reserved What does this have to do with IoT?
  • 14. © 2017. All Rights Reserved Smart Devices are Everywhere In our homes In our offices In our factories In our vehicles
  • 15. © 2017. All Rights Reserved Smart Devices are Everywhere In our homes In our offices In our factories In our vehicles Like PC’s in the 1990’s, security is to prevent theft and physical harm
  • 16. © 2017. All Rights Reserved Now we want smart devices connected
  • 17. © 2017. All Rights Reserved Connecting devices introduces new risks
  • 18. © 2017. All Rights Reserved Connecting devices introduces new risks We need new standards, tools, and services
  • 19. © 2017. All Rights Reserved Challenges Is the device physically secure? Can the device encrypt data? Can the device password be remotely changed? Can the device firmware be updated? Can the device be controlled remotely?
  • 20. © 2017. All Rights Reserved When people demanded internet access… we figured it out. We will figure out how to secure IoT devices. Until then …
  • 21. Don’t make it easy for bad things to happen © 2017. All Rights Reserved SoftwareInternetThings
  • 22. © 2017. All Rights Reserved What Bad Could Happen? Unwanted access / use Unwanted change Inability to access Availability
  • 23. For each potential threat: 1. Weigh Impact • Safety of people • Protection of physical assets • Protection of data • Compliance with regulations • Cost of a breach 2. Assess Probability 3. Prioritize what to mitigate 4. Put appropriate controls in place • Include risk mitigation into the design specification © 2017. All Rights Reserved Establish Priority
  • 24. © 2017. All Rights Reserved Thing Development: Hardware/Device ENGINEERING CONSTRAINTS: COST | POWER | SIZE
  • 25. © 2017. All Rights Reserved Thing Development: Hardware/Device ENGINEERING CONSTRAINTS: COST | POWER | SIZE
  • 26. © 2017. All Rights Reserved Internet: Communication Channel DRIVEN BY DEVICE CONSTRAINTS: COST | POWER | SIZE + DISTANCE LTE 3G LoRaWiFi Sigfox TCP CoAP MQTT REST Network Mode of transporting data Internet Protocol Packaging data for transport over a network
  • 27. © 2017. All Rights Reserved Internet: Communication Channel DRIVEN BY DEVICE CONSTRAINTS: COST | POWER | SIZE + DISTANCE LTE 3G LoRaWiFi Sigfox TCP CoAP MQTT REST Network Mode of transporting data Internet Protocol Packaging data for transport over a network
  • 28. © 2017. All Rights Reserved Software: Cloud Capabilities Connect Devices Enable Applications Process Data ENGINEERING CONSTRAINTS: DATA FLOW (3V’S) | RELIABILITY | PROCESSING
  • 29. © 2017. All Rights Reserved Software: Cloud Capabilities Connect Devices Enable Applications Process Data ENGINEERING CONSTRAINTS: DATA FLOW (3V’S) | RELIABILITY | PROCESSING
  • 30. © 2017. All Rights Reserved IoT System Security Controls (examples) Device Level Application LevelConnectivity Level • SSL certificates • Unique device passwords • Whitelisted IP addresses • Whitelist phone number (SMS) • Checksum algorithms (delivery reliability) • OTA firmware Updates • SSL/TLS between platform and device • VPN to securely send SMS text messages using SMPP gateways • Manage and frequently change device passwords • Manage firmware updates • Standard cloud security (DDOS, IPS/IDS, …) • Authentication, authorization to access the platform and applications • Database encryption • VPC (Virtual Private Cloud) zone protected by a firewall (or an equivalent concept)
  • 31. © 2017. All Rights Reserved Security – What can you do today? Identify potential threats early and continuously Assess Impact and Probability Put appropriate controls in place Apply best practices where they exist 100% secure from 100% of threats is 100% impossible, but … Don’t make it easy for bad things to happen.
  • 32. Questions? Learn more at Bridgera.com/IOT © 2017. All Rights Reserved Ron Pascuzzi Ron.Pascuzzi@bridgera.com 919-757-1941
  • 33. © 2017. All Rights Reserved Bridgera IoT One Platform to Accelerate Your Enterprise IoT Solution Connect Devices Enable Applications Process Data