Abstract image of a woman sitting on books and studying on a laptop

Kevin-IoTSecurity_ISOC PPT on Internet of Things

Download as PPTX, PDF
M
madhulikarsit

Presentation of Internet of Things

Engineering
1 of 9
Download to read offline
1
2
3
4
5
6
7
8
9
IoT: Privacy and Security Kevin G. Chege ISOC Chapters Workshop Addis Ababa, 2019
Privacy, Security and IoT • Privacy is about retaining the ability to disclose data consensually, and with expectations about the context and scope of sharing. • With online privacy, we wish to ensure that our personal data is not disclosed to third parties without our knowledge or consent • As with any online service, IoT Privacy and IoT Security are linked and complement each other: • Entering your password via a un-secured IoT device risks eaves-droppers from stealing your identity • If your mobile phone lacks a password and is stolen, your personal data like call logs, messages, photos etc can be accessed
There are two ways to view IoT Security •Outward Security • Focus on potential harms that compromised devices and systems can inflict on the Internet and other users •Inward Security • Focus on potential harms to the health, safety, and privacy of device users and their property stemming from compromised IoT devices and systems 3
Outward Security: Impact of Cyber Security issues 4
Inward Security: What risks do insecure IoT devices bring to Privacy and Security? • Using insecure IoT Devices increases the risks of personal data being exposed/stolen and privacy compromised: • A smart camera using default username and password combination can be used to spy on you or be compromised to send junk information to the Internet • A wearable smart device that sends health information over un- encrypted channels can expose personal data • A smart home device like a television that lacks sufficient updates can be vulnerable to new attacks and be used to share private data • Smart vehicles running insecure software can be accessed remotely and compromised to disable certain functions of the car
6 Economics favor weak IoT security • Strong security can be expensive to design and implement, and it lengthens the time it takes to get a product to market. • The commercial value of user data also means that there is an incentive to hoard as much data for as long as possible • There is currently a shortage of credible ways for suppliers to signal their level of security to consumers (e.g., certifications and trustmarks). • The cost and impact of poor security tend to fall on the consumer and other Internet users, rather than on the producers of IoT systems
How can IoT Security be improved? • Collaborative approach: sharing of information by users, vendors, manufacturers on security breaches and best practices • Strong policy controls for example: • Requiring encryption in devices: IoT devices should use encryption in order to make it very difficult for a 3rd party to eavesdrop on communications • Frameworks on device features and capabilities • User Education for example: • Train users on preferring stronger passwords on IoT Devices • Consumer Demand for devices to have certain eg using two factor authentication: a password (something you know) and a token (something you have). • Train users to identify insecure devices and avoid them
8 How do we improve things? • Research and Innovation • Open Standards • Certifications and Trustmarks • Policy and Regulation • Frameworks and Best Practices
Visit us at www.internetsociety.org Follow us @internetsociety Galerie Jean-Malbuisson 15, CH-1204 Geneva, Switzerland. +41 22 807 1444 1775 Wiehle Avenue, Suite 201, Reston, VA 20190-5108 USA. +1 703 439 2120 Thank you. chege@isoc.org

More Related Content

PPTX
Chapter-5.pptx
Renu875977
 
PPTX
IoT Security: Debunking the "We Aren't THAT Connected" Myth
Security Innovation
 
PPTX
Assign 1_8812814ctm.pptx
pdevang
 
PPTX
Ravi i ot-security
skumartarget
 
PDF
How To Evaluate the Strengths and Weaknesses of Security and Privacy in IoT D...
Nevina Infotech
 
PDF
IoT Security.pdf
SudhanshiBakre1
 
PPTX
IoT, Data Analytics and Big Data Security.pptx
fizarcse
 
PPTX
Not IN Cybersecurity Connectivity,Cloud Platforms,Security.pptx
PratimanChoubey
 
Chapter-5.pptx
Renu875977
 
IoT Security: Debunking the "We Aren't THAT Connected" Myth
Security Innovation
 
Assign 1_8812814ctm.pptx
pdevang
 
Ravi i ot-security
skumartarget
 
How To Evaluate the Strengths and Weaknesses of Security and Privacy in IoT D...
Nevina Infotech
 
IoT Security.pdf
SudhanshiBakre1
 
IoT, Data Analytics and Big Data Security.pptx
fizarcse
 
Not IN Cybersecurity Connectivity,Cloud Platforms,Security.pptx
PratimanChoubey
 

Similar to Kevin-IoTSecurity_ISOC PPT on Internet of Things (20)

PDF
Presentation 10 (1).pdf
KARANSINGHD
 
PPTX
Cybersecurity
Vishwajeet Singh
 
PPTX
U nit 4
Integral university, India
 
PDF
Fundamentals of IoT Security
SHAAMILIVARSAGV
 
PDF
sample assignment
#essaywriting
 
PDF
Presentation about IoT in media and communication.pdf
ezzAyman1
 
PDF
assignment help experts
#essaywriting
 
PDF
IoT Security and Privacy Concerns: Safeguarding Your Connected Devices
GrapesTech Solutions
 
PPTX
CYBER SECURITY.pptx
Malu704065
 
PPTX
Security Testing for IoT Systems
Security Innovation
 
PPTX
Introduction Of Cyber Security in 2024.pptx
shivjohncena789
 
PPTX
IoT Security, Threats and Challenges By V.P.Prabhakaran
Koenig Solutions Ltd.
 
PPTX
1713435528251_1709734122381_1708585866621_1708585864158_2.Information Systems...
NabankemaRukayiyah
 
PDF
Strengthening IoT Security Against Cyber Threats.pdf
SeasiaInfotech2
 
PDF
Navigating IoT Challenges_ Ensuring Security and Privacy in a Connected World
lucassjack906
 
PPTX
A Wake-Up Call for IoT
Ahmed Banafa
 
PDF
Internet of Things (IoT) Security and Privacy Recommendations by Jason Living...
CableLabs
 
PDF
Cyber Security Intelligence
ijtsrd
 
PPTX
Cyber Security PPT.pptx
AkshayKhade21
 
PDF
IoT Security Why Hiring Skilled Developers is Crucial for Protecting Your Dev...
Dark Bears
 
Presentation 10 (1).pdf
KARANSINGHD
 
Cybersecurity
Vishwajeet Singh
 
U nit 4
Integral university, India
 
Fundamentals of IoT Security
SHAAMILIVARSAGV
 
sample assignment
#essaywriting
 
Presentation about IoT in media and communication.pdf
ezzAyman1
 
assignment help experts
#essaywriting
 
IoT Security and Privacy Concerns: Safeguarding Your Connected Devices
GrapesTech Solutions
 
CYBER SECURITY.pptx
Malu704065
 
Security Testing for IoT Systems
Security Innovation
 
Introduction Of Cyber Security in 2024.pptx
shivjohncena789
 
IoT Security, Threats and Challenges By V.P.Prabhakaran
Koenig Solutions Ltd.
 
1713435528251_1709734122381_1708585866621_1708585864158_2.Information Systems...
NabankemaRukayiyah
 
Strengthening IoT Security Against Cyber Threats.pdf
SeasiaInfotech2
 
Navigating IoT Challenges_ Ensuring Security and Privacy in a Connected World
lucassjack906
 
A Wake-Up Call for IoT
Ahmed Banafa
 
Internet of Things (IoT) Security and Privacy Recommendations by Jason Living...
CableLabs
 
Cyber Security Intelligence
ijtsrd
 
Cyber Security PPT.pptx
AkshayKhade21
 
IoT Security Why Hiring Skilled Developers is Crucial for Protecting Your Dev...
Dark Bears
 
Ad

Recently uploaded (20)

PPTX
Fundamentals of Mechanical Engineering.pptx
MdMowdudAhmed
 
PPTX
CyberSecurity Mobile and Wireless Devices
RobinRohit2
 
PPTX
Information Storage and Retrieval Techniques Unit III
jeyamohan2519
 
PDF
Abrasive, erosive and cavitation wear.pdf
nfandraden
 
PDF
Human-AI Collaboration: Balancing Agentic AI and Autonomy in Hybrid Systems
ijccsa
 
PDF
22EC502-MICROCONTROLLER AND INTERFACING-8051 MICROCONTROLLER.pdf
RajalakshmiSermadura
 
PDF
Visual Aids for Exploratory Data Analysis.pdf
Ashutosh Satapathy
 
PPTX
ASME PCC-02 TRAINING -DESKTOP-NLE5HNP.pptx
laxmikantvjawale
 
PDF
Design Guidelines and solutions for Plastics parts
ferdinand937933
 
PPTX
tack Data Structure with Array and Linked List Implementation, Push and Pop O...
usham61
 
PDF
III.4.1.2_The_Space_Environment.p pdffdf
sittiporn2
 
PDF
Accra-Kumasi Expressway - Prefeasibility Report Volume 1 of 7.11.2018.pdf
JeorgeWilsonKingson1
 
PDF
PREDICTION OF DIABETES FROM ELECTRONIC HEALTH RECORDS
ijaia
 
PDF
BIO-INSPIRED HORMONAL MODULATION AND ADAPTIVE ORCHESTRATION IN S-AI-GPT
ijaia
 
PDF
null (2) bgfbg bfgb bfgb fbfg bfbgf b.pdf
Ramez Hosny
 
PPTX
Fundamentals of safety and accident prevention -final (1).pptx
Palani kumar
 
PPTX
communication and presentation skills 01
CdtAfrazAttaullah
 
PPT
INTRODUCTION -Data Warehousing and Mining-M.Tech- VTU.ppt
Subramanyam Natarajan
 
PDF
August -2025_Top10 Read_Articles_ijait.pdf
ijait
 
PPTX
CURRICULAM DESIGN engineering FOR CSE 2025.pptx
Amuda3
 
Fundamentals of Mechanical Engineering.pptx
MdMowdudAhmed
 
CyberSecurity Mobile and Wireless Devices
RobinRohit2
 
Information Storage and Retrieval Techniques Unit III
jeyamohan2519
 
Abrasive, erosive and cavitation wear.pdf
nfandraden
 
Human-AI Collaboration: Balancing Agentic AI and Autonomy in Hybrid Systems
ijccsa
 
22EC502-MICROCONTROLLER AND INTERFACING-8051 MICROCONTROLLER.pdf
RajalakshmiSermadura
 
Visual Aids for Exploratory Data Analysis.pdf
Ashutosh Satapathy
 
ASME PCC-02 TRAINING -DESKTOP-NLE5HNP.pptx
laxmikantvjawale
 
Design Guidelines and solutions for Plastics parts
ferdinand937933
 
tack Data Structure with Array and Linked List Implementation, Push and Pop O...
usham61
 
III.4.1.2_The_Space_Environment.p pdffdf
sittiporn2
 
Accra-Kumasi Expressway - Prefeasibility Report Volume 1 of 7.11.2018.pdf
JeorgeWilsonKingson1
 
PREDICTION OF DIABETES FROM ELECTRONIC HEALTH RECORDS
ijaia
 
BIO-INSPIRED HORMONAL MODULATION AND ADAPTIVE ORCHESTRATION IN S-AI-GPT
ijaia
 
null (2) bgfbg bfgb bfgb fbfg bfbgf b.pdf
Ramez Hosny
 
Fundamentals of safety and accident prevention -final (1).pptx
Palani kumar
 
communication and presentation skills 01
CdtAfrazAttaullah
 
INTRODUCTION -Data Warehousing and Mining-M.Tech- VTU.ppt
Subramanyam Natarajan
 
August -2025_Top10 Read_Articles_ijait.pdf
ijait
 
CURRICULAM DESIGN engineering FOR CSE 2025.pptx
Amuda3
 
Ad

Kevin-IoTSecurity_ISOC PPT on Internet of Things

  • 1. IoT: Privacy and Security Kevin G. Chege ISOC Chapters Workshop Addis Ababa, 2019
  • 2. Privacy, Security and IoT • Privacy is about retaining the ability to disclose data consensually, and with expectations about the context and scope of sharing. • With online privacy, we wish to ensure that our personal data is not disclosed to third parties without our knowledge or consent • As with any online service, IoT Privacy and IoT Security are linked and complement each other: • Entering your password via a un-secured IoT device risks eaves-droppers from stealing your identity • If your mobile phone lacks a password and is stolen, your personal data like call logs, messages, photos etc can be accessed
  • 3. There are two ways to view IoT Security •Outward Security • Focus on potential harms that compromised devices and systems can inflict on the Internet and other users •Inward Security • Focus on potential harms to the health, safety, and privacy of device users and their property stemming from compromised IoT devices and systems 3
  • 4. Outward Security: Impact of Cyber Security issues 4
  • 5. Inward Security: What risks do insecure IoT devices bring to Privacy and Security? • Using insecure IoT Devices increases the risks of personal data being exposed/stolen and privacy compromised: • A smart camera using default username and password combination can be used to spy on you or be compromised to send junk information to the Internet • A wearable smart device that sends health information over un- encrypted channels can expose personal data • A smart home device like a television that lacks sufficient updates can be vulnerable to new attacks and be used to share private data • Smart vehicles running insecure software can be accessed remotely and compromised to disable certain functions of the car
  • 6. 6 Economics favor weak IoT security • Strong security can be expensive to design and implement, and it lengthens the time it takes to get a product to market. • The commercial value of user data also means that there is an incentive to hoard as much data for as long as possible • There is currently a shortage of credible ways for suppliers to signal their level of security to consumers (e.g., certifications and trustmarks). • The cost and impact of poor security tend to fall on the consumer and other Internet users, rather than on the producers of IoT systems
  • 7. How can IoT Security be improved? • Collaborative approach: sharing of information by users, vendors, manufacturers on security breaches and best practices • Strong policy controls for example: • Requiring encryption in devices: IoT devices should use encryption in order to make it very difficult for a 3rd party to eavesdrop on communications • Frameworks on device features and capabilities • User Education for example: • Train users on preferring stronger passwords on IoT Devices • Consumer Demand for devices to have certain eg using two factor authentication: a password (something you know) and a token (something you have). • Train users to identify insecure devices and avoid them
  • 8. 8 How do we improve things? • Research and Innovation • Open Standards • Certifications and Trustmarks • Policy and Regulation • Frameworks and Best Practices
  • 9. Visit us at www.internetsociety.org Follow us @internetsociety Galerie Jean-Malbuisson 15, CH-1204 Geneva, Switzerland. +41 22 807 1444 1775 Wiehle Avenue, Suite 201, Reston, VA 20190-5108 USA. +1 703 439 2120 Thank you. chege@isoc.org

Editor's Notes

  • #3: Example of outward risk: A home appliance may continue to function well as far as the direct user is concerned, and s/he may be unaware that it is part of a botnet participating in a DDoS attack Toaster example: - Someone may use it against you, and remotely decide to burn your hands our even your house (inward security related issue) Your toaster works ok but is being used for a major DDOS attack (outward) At ISOC,  our focus is on the impact that IoT security and privacy has on the Internet and other users.
  • #8: (new technologies, better user interfaces, better development tools)