Abstract image of a woman sitting on books and studying on a laptop

The Internet of things paradox

Download as PPTX, PDF
Golden Locksmith, profile picture
Golden Locksmith

This document discusses the security risks of internet-connected home security devices. It notes that Gartner forecasts nearly 25 billion internet-connected devices by 2020. The top vulnerabilities identified include privacy concerns over data collection, weak authentication through default usernames/passwords, and unauthorized access to live video feeds through hacked cloud or mobile accounts. The document recommends incorporating security into device design, using strong unique passwords, and limiting access to trusted users only.

Education
Related topics:
Internet of Things Home Security
1 of 9
Download to read offline
1
2
3
4
5
6
7
8
9
The Home Security: Internet of Things Paradox Presented by: Golden LocksmithSurvey by: HP Is home security really secure?
Gartner, Ins. Forecasts that 4.9 billion connected things will be in use in 2015, up 30 percent from 2014, and will reach 25 billion by 2020. Deficiencies Include:  Authentication  Authorization  Cloud Interfaces  Mobile Interfaces  Privacy
The Internet of things paradox
Vulnerable To Account Harvesting  Unrestricted account enumeration: The ability to determine whether a specific account is valid on a system.  Weak Password Policy: The lack of a policy and/or the presence of a weak policy.  Lack of account lockout mechanism: The failure to lock out an account after a certail number of failed access attempts.
Account Harvesting is exacerbated when video access is granted to additional users such as family members or neighbors.
Top 5 Vulnerable Categories Identified  Privacy (100%) – raised privacy concerns regarding the collection of names, addresses, dates of birth, phone numbers, and even credit card numbers. Video image leaks are also an area of concern.  Authorization (100%) – an attacker can use vulnerabilities such as weak passwords, insecure password recovery mechanisms, and poorly protected credentials to gain access to a system.  Insecure Cloud (70%) – cloud-based web interfaces exhibit account enumeration concerns.  Insecure Mobile (50%) have enumeration concerns with their mobile application interface.  Insecure software/fireware (60%) – did not include obvious update capabilities
Are You The Only One Monitoring Your Home? If video streaming is available through a cloud-based web or mobile application interface, then video can be viewed by an internet-based attacker from hacked accounts anywhere in the world.
Three Action To Mitigate Risks  Include security in feature considerations when evaluating potential IoT product purchases  Avoid using system defaults for usernames and passwords whenever possible, and choose good passwords, when the option is available.  Don’t share account access with anyone outside your immediate family and stress secure password practices with those who have access.
The Federal Trade Commission (FTC) recommends that IoT device manufactures incorporate security into the design of connected products.

More Related Content

PDF
Why Your Mobile Device Isn’t As Secure As You Think
Blue Coat
 
PDF
Mobile app security
whitecryption
 
PDF
Ensuring Mobile Device Security
Quick Heal Technologies Ltd.
 
PPTX
Mobile security
CyberoamAcademy
 
PPTX
Mobile Security Research Projects Help
Network Simulation Tools
 
PDF
CyberSecurity - UH IEEE Presentation 2015-04
Kyle Lai
 
PDF
Android security a survey of issues, malware penetration, and defenses
LeMeniz Infotech
 
PDF
Security and Your Business
All Covered
 
Why Your Mobile Device Isn’t As Secure As You Think
Blue Coat
 
Mobile app security
whitecryption
 
Ensuring Mobile Device Security
Quick Heal Technologies Ltd.
 
Mobile security
CyberoamAcademy
 
Mobile Security Research Projects Help
Network Simulation Tools
 
CyberSecurity - UH IEEE Presentation 2015-04
Kyle Lai
 
Android security a survey of issues, malware penetration, and defenses
LeMeniz Infotech
 
Security and Your Business
All Covered
 

What's hot (20)

PPTX
Ms810 assignment viruses and malware affecting moblie devices
rebelreg
 
PPTX
Threats of Public Wi-Fi
The TNS Group
 
PPTX
Cyber Security - Moving Past "Best Practices"
Billtrust
 
PPTX
Authentication service security
Prachi Gulihar
 
PPTX
CYBER SECURITY
harsh arora
 
PDF
NormShield 2018 Cyber Security Risk Brief
NormShield
 
PPTX
Mobile security
Tapan Khilar
 
PPTX
Mobile security
Himmatsingh Rajpurohit
 
PDF
Top Seven Risks of Enterprise Mobility - How to protect your business
Symantec
 
PDF
MobileCON 2013 – Attacks Aginst MDM Solutions (and What You Can Do About It)
Lacoon Mobile Security
 
PDF
Mobile Security: The 5 Questions Modern Organizations Are Asking
Lookout
 
PDF
Cybersecurity Series - Cyber Defense for Internal Auditors
Jim Kaplan CIA CFE
 
PDF
The Seven Kinds of Security
Veracode
 
PPTX
Mobile security
home
 
PPTX
Digital Security
MCMAUP01
 
PPTX
Gaining A Foothold
Claranet UK
 
PPTX
How Does a Data Breach Happen?
Claranet UK
 
PPTX
Mobile security in Cyber Security
Geo Marian
 
PPTX
Cyber security awareness for end users
NetWatcher
 
PPTX
Cyber security
Dr. Kishor Nikam
 
Ms810 assignment viruses and malware affecting moblie devices
rebelreg
 
Threats of Public Wi-Fi
The TNS Group
 
Cyber Security - Moving Past "Best Practices"
Billtrust
 
Authentication service security
Prachi Gulihar
 
CYBER SECURITY
harsh arora
 
NormShield 2018 Cyber Security Risk Brief
NormShield
 
Mobile security
Tapan Khilar
 
Mobile security
Himmatsingh Rajpurohit
 
Top Seven Risks of Enterprise Mobility - How to protect your business
Symantec
 
MobileCON 2013 – Attacks Aginst MDM Solutions (and What You Can Do About It)
Lacoon Mobile Security
 
Mobile Security: The 5 Questions Modern Organizations Are Asking
Lookout
 
Cybersecurity Series - Cyber Defense for Internal Auditors
Jim Kaplan CIA CFE
 
The Seven Kinds of Security
Veracode
 
Mobile security
home
 
Digital Security
MCMAUP01
 
Gaining A Foothold
Claranet UK
 
How Does a Data Breach Happen?
Claranet UK
 
Mobile security in Cyber Security
Geo Marian
 
Cyber security awareness for end users
NetWatcher
 
Cyber security
Dr. Kishor Nikam
 
Ad

Similar to The Internet of things paradox (20)

PDF
Unicom Conference - Mobile Application Security
Subho Halder
 
PDF
Cybersecurity Practices to Adopt in 2025_ An All-inclusive Guide for Business...
kavinrajk1209
 
PDF
LIFT OFF 2017: IoT and MSS Deep Dive
Robert Herjavec
 
PPTX
itmsday2.pptx
santoshmohanthy2
 
PDF
Cn35499502
IJERA Editor
 
PDF
Guide Preview: Ensuring your enterprise image-viewer if fully secure
Calgary Scientific Inc.
 
PDF
3 steps security
brightfire-slides
 
PDF
Sholove cyren web security - technical datasheet2
SHOLOVE INTERNATIONAL LLC
 
PPTX
Can your company survive a modern day cyber attack?
Symptai Consulting Limited
 
PDF
Evolutionand impactofhiddenmobilethreats wandera
Anjoum .
 
PPTX
Mobile Payments: Protecting Apps and Data from Emerging Risks
IBM Security
 
PPTX
"IoT Security - Make vs Buy?" - IoT Data Analytics & Visualization Summit 2016
Verimatrix
 
PDF
CASE STUDY There is a new phenomenon in the cybersecurity domain ca.pdf
kostikjaylonshaewe47
 
PPTX
Cyber Security PPT.pptx
AbhishekDas794104
 
PDF
Mobile Security: 5 Steps to Mobile Risk Management
DMIMarketing
 
PPTX
Accellion - The European Information Security Summit, London
Proofpoint
 
PDF
Multi Factor Authentication Whitepaper Arx - Intellect Design
Rajat Jain
 
PDF
Security attacks taxonomy on
ijmnct
 
PDF
4514ijmnct01
ijmnct
 
PDF
An Identity Crisis at the Center of Every IoT Product
Salesforce Developers
 
Unicom Conference - Mobile Application Security
Subho Halder
 
Cybersecurity Practices to Adopt in 2025_ An All-inclusive Guide for Business...
kavinrajk1209
 
LIFT OFF 2017: IoT and MSS Deep Dive
Robert Herjavec
 
itmsday2.pptx
santoshmohanthy2
 
Cn35499502
IJERA Editor
 
Guide Preview: Ensuring your enterprise image-viewer if fully secure
Calgary Scientific Inc.
 
3 steps security
brightfire-slides
 
Sholove cyren web security - technical datasheet2
SHOLOVE INTERNATIONAL LLC
 
Can your company survive a modern day cyber attack?
Symptai Consulting Limited
 
Evolutionand impactofhiddenmobilethreats wandera
Anjoum .
 
Mobile Payments: Protecting Apps and Data from Emerging Risks
IBM Security
 
"IoT Security - Make vs Buy?" - IoT Data Analytics & Visualization Summit 2016
Verimatrix
 
CASE STUDY There is a new phenomenon in the cybersecurity domain ca.pdf
kostikjaylonshaewe47
 
Cyber Security PPT.pptx
AbhishekDas794104
 
Mobile Security: 5 Steps to Mobile Risk Management
DMIMarketing
 
Accellion - The European Information Security Summit, London
Proofpoint
 
Multi Factor Authentication Whitepaper Arx - Intellect Design
Rajat Jain
 
Security attacks taxonomy on
ijmnct
 
4514ijmnct01
ijmnct
 
An Identity Crisis at the Center of Every IoT Product
Salesforce Developers
 
Ad

More from Golden Locksmith (7)

PPT
Troubleshoot and fixing a deadbolt
Golden Locksmith
 
PPTX
Your 17 diy home security essentials
Golden Locksmith
 
PPTX
Most common auto security mistakes
Golden Locksmith
 
PPTX
Is your home at the gun point of burglars?
Golden Locksmith
 
PPTX
Is your home at the gun point of burglars?
Golden Locksmith
 
PPTX
2014’s biggest winners and losers in privacy and security
Golden Locksmith
 
PPTX
How to Reinforce a door during installation
Golden Locksmith
 
Troubleshoot and fixing a deadbolt
Golden Locksmith
 
Your 17 diy home security essentials
Golden Locksmith
 
Most common auto security mistakes
Golden Locksmith
 
Is your home at the gun point of burglars?
Golden Locksmith
 
Is your home at the gun point of burglars?
Golden Locksmith
 
2014’s biggest winners and losers in privacy and security
Golden Locksmith
 
How to Reinforce a door during installation
Golden Locksmith
 

Recently uploaded (20)

PDF
Complications of Minimal Access-Surgery.pdf
Laparoscopy Hospital
 
PDF
semiconductor packaging in vlsi design fab
KarpoorasundariK
 
PDF
HVAC Specification 2024 according to central public works department
amitrobanipl
 
PDF
BP 505 T. PHARMACEUTICAL JURISPRUDENCE (UNIT 2).pdf
CMEmpire
 
PDF
BP 704 T. NOVEL DRUG DELIVERY SYSTEMS (UNIT 2).pdf
CMEmpire
 
PPTX
Education and Perspectives of Education.pptx
Central University of South Bihar, Gaya, Bihar
 
PDF
BP 505 T. PHARMACEUTICAL JURISPRUDENCE (UNIT 1).pdf
CMEmpire
 
PDF
Journal of Dental Science - UDMY (2021).pdf
Nay Aung
 
PDF
Race Reva University – Shaping Future Leaders in Artificial Intelligence
RACE REVA University
 
PDF
Empowerment Technology for Senior High School Guide
solthereseamericandr
 
PDF
MBA _Common_ 2nd year Syllabus _2021-22_.pdf
DrAnubha4
 
PDF
FORM 1 BIOLOGY MIND MAPS and their schemes
arcade5
 
PPTX
Unit 4 Computer Architecture Multicore Processor.pptx
Gunasundari Selvaraj
 
PDF
AI-driven educational solutions for real-life interventions in the Philippine...
EleniIlkou
 
PPTX
B.Sc. DS Unit 2 Software Engineering.pptx
Dr. Pallawi Bulakh
 
PDF
LIFE & LIVING TRILOGY- PART (1) WHO ARE WE.pdf
sureshkumarsoni26
 
PPTX
Share_Module_2_Power_conflict_and_negotiation.pptx
Lavanyaj33
 
PDF
Uderstanding digital marketing and marketing stratergie for engaging the digi...
afreenpeshmam
 
PPTX
Introduction to pro and eukaryotes and differences.pptx
AvaniKarumathil
 
PDF
David L Page_DCI Research Study Journey_how Methodology can inform one's prac...
David L Page
 
Complications of Minimal Access-Surgery.pdf
Laparoscopy Hospital
 
semiconductor packaging in vlsi design fab
KarpoorasundariK
 
HVAC Specification 2024 according to central public works department
amitrobanipl
 
BP 505 T. PHARMACEUTICAL JURISPRUDENCE (UNIT 2).pdf
CMEmpire
 
BP 704 T. NOVEL DRUG DELIVERY SYSTEMS (UNIT 2).pdf
CMEmpire
 
Education and Perspectives of Education.pptx
Central University of South Bihar, Gaya, Bihar
 
BP 505 T. PHARMACEUTICAL JURISPRUDENCE (UNIT 1).pdf
CMEmpire
 
Journal of Dental Science - UDMY (2021).pdf
Nay Aung
 
Race Reva University – Shaping Future Leaders in Artificial Intelligence
RACE REVA University
 
Empowerment Technology for Senior High School Guide
solthereseamericandr
 
MBA _Common_ 2nd year Syllabus _2021-22_.pdf
DrAnubha4
 
FORM 1 BIOLOGY MIND MAPS and their schemes
arcade5
 
Unit 4 Computer Architecture Multicore Processor.pptx
Gunasundari Selvaraj
 
AI-driven educational solutions for real-life interventions in the Philippine...
EleniIlkou
 
B.Sc. DS Unit 2 Software Engineering.pptx
Dr. Pallawi Bulakh
 
LIFE & LIVING TRILOGY- PART (1) WHO ARE WE.pdf
sureshkumarsoni26
 
Share_Module_2_Power_conflict_and_negotiation.pptx
Lavanyaj33
 
Uderstanding digital marketing and marketing stratergie for engaging the digi...
afreenpeshmam
 
Introduction to pro and eukaryotes and differences.pptx
AvaniKarumathil
 
David L Page_DCI Research Study Journey_how Methodology can inform one's prac...
David L Page
 

The Internet of things paradox

  • 1. The Home Security: Internet of Things Paradox Presented by: Golden LocksmithSurvey by: HP Is home security really secure?
  • 2. Gartner, Ins. Forecasts that 4.9 billion connected things will be in use in 2015, up 30 percent from 2014, and will reach 25 billion by 2020. Deficiencies Include:  Authentication  Authorization  Cloud Interfaces  Mobile Interfaces  Privacy
  • 4. Vulnerable To Account Harvesting  Unrestricted account enumeration: The ability to determine whether a specific account is valid on a system.  Weak Password Policy: The lack of a policy and/or the presence of a weak policy.  Lack of account lockout mechanism: The failure to lock out an account after a certail number of failed access attempts.
  • 5. Account Harvesting is exacerbated when video access is granted to additional users such as family members or neighbors.
  • 6. Top 5 Vulnerable Categories Identified  Privacy (100%) – raised privacy concerns regarding the collection of names, addresses, dates of birth, phone numbers, and even credit card numbers. Video image leaks are also an area of concern.  Authorization (100%) – an attacker can use vulnerabilities such as weak passwords, insecure password recovery mechanisms, and poorly protected credentials to gain access to a system.  Insecure Cloud (70%) – cloud-based web interfaces exhibit account enumeration concerns.  Insecure Mobile (50%) have enumeration concerns with their mobile application interface.  Insecure software/fireware (60%) – did not include obvious update capabilities
  • 7. Are You The Only One Monitoring Your Home? If video streaming is available through a cloud-based web or mobile application interface, then video can be viewed by an internet-based attacker from hacked accounts anywhere in the world.
  • 8. Three Action To Mitigate Risks  Include security in feature considerations when evaluating potential IoT product purchases  Avoid using system defaults for usernames and passwords whenever possible, and choose good passwords, when the option is available.  Don’t share account access with anyone outside your immediate family and stress secure password practices with those who have access.
  • 9. The Federal Trade Commission (FTC) recommends that IoT device manufactures incorporate security into the design of connected products.