Lecture About Internet of Things, this ppt about basic knowladge about internet

Editor's Notes

• #3: I’m going to spend the first portion of this presentation talking about the benefits of IoT and why it’s so important to all types of businesses, and how it will benefit us in our daily lives; then I’ll discuss the security challenges it presents and offer advice and guidance on how to resolve those challenges.
• #4: I want to take a moment to provide Cisco’s definition of IoT, to ensure we’re on the same page … To put it more in context of what it means for your business and for your daily life, this highly distributed network of connected smart objects is capable of dynamically generating, analyzing, and communicating intelligence that can be used by businesses to increase operational efficiency and power new business models, and by individuals to make life easier and more comfortable. … by connecting everyday objects and networking them together, we benefit from their ability to combine simple data to produce usable intelligence.
• #5: IoE is the networked connection of people, process, data and things. IoE brings together people, processes, data, and things to make networked connections more relevant and valuable than ever before – turning information into actions that create new capabilities, richer experiences, and unprecedented economic opportunity for businesses, individuals, and countries. IoT is the “Things” portion. To be clear, by “things” we’re really talking about the network of sensors, objects, etc – not concentrating on the devices, themselves.
• #6: … and IoT isn’t “science fiction” or something that will happen in the future – it’s real, and it’s here now. Cisco believes that the inflection point – the point at which the number of connected devices began outnumbering the number of men, women, and children on the planet – happened about five years ago; others in the industry believe that it happened about a year and a half ago. Similarly, Cisco believes that the number of connected objects will grow to about 50 billion over the next several years, while other estimates put that number at 25, 30, or even as high as 200 billion! Who’s right doesn’t really matter … the point is that we all universally agree on two things: 1) the point of inflection is in the past; and 2) gap is expected to widen exponentially over the next several years. So, IoT is here today, and will continue to grow!
• #7: While these benefits can certainly inspire business owners, they can also be construed as largely academic … so let’s take a look at some real-world use cases, to show how IoT will benefit us in our daily lives …
• #8: Using ruggedized cameras and communications equipment that can handle the vibration and jolts of a rapidly moving train, a connected network of IoT-enabled cameras can help improve passenger safety by analyzing and correlating events at various stations, as well as on trains – for actionable security intelligence. The intelligence gained from multiple connected systems can help identify bottlenecks, enable routes and schedules to be tuned for greater efficiency, and even avoid collisions. Likewise, sensors attached to critical parts such as wheels can proactively determine if a part needs to be replaced – before it can cause a devastating accident. Sensors can also alert supervisors if the train is being operated in an unsafe manner, or alert the operator of important changes in track conditions.
• #9: In addition, IoT can dramatically reduce a city’s environmental impact and improve its efficiency while reducing costs: By connecting the city’s infrastructure that controls traffic signals, it can help save fuel usage and reduce traffic congestion, reducing pollution Controlling road lighting based on the actual need – such as when cars are approaching – can save millions of dollars and conserve energy; parking applications can let drivers know where the spots are available, and “dynamic pricing” based on need can be a new revenue source for the city. City services such as garbage pickup can be made significantly more efficient, reducing costs and therefore adding to the city’s bottom line
• #10: Modern-day cars are a lot less mechanical than what our parents drove. Today’s cars are highly computerized, with hundreds of sensors to assess everything from tire pressure to a loose gas cap. But today, they’re hundreds of individual sensors. Today a dashboard light alerts the driver that they have a tire with low air pressure – but that’s it; no information on how low, whether or not there’s a leak, or even which tire is affected. IoT connects all of these sensors, so that data can be communicated and centrally analyzed to produce actionable intelligence. By monitoring not only the air pressure, but also: the speed of air escape; road conditions; outside temperature, atmospheric pressure, and other relevant data, a centralized controller can analyze that data to turn it into actionable intelligence … does the tire need to be serviced right away? Can it wait? Or is the loss in pressure to be expected, given the other environmental conditions? In addition, the car has the ability to connect with the city’s infrastructure that controls traffic signals and road lighting, and monitors public parking spaces to save fuel and reduce traffic congestion. Finally, the sensors can interact with third-party applications such as GPS/mapping to enable dynamic re-routing to avoid traffic, accidents, and other hazards. Similarly, Internet-based entertainment including music and move streaming/downloads can maximize the comfort of a road trip.
• #11: IoT requires that connectivity tools be added to the platform, as well as some network elements such as smaller, more self-contained switches and routers for fields, plants, and other operational environments. These network elements are frequently deployed in challenging environments that include harsh weather conditions, significant amounts of vibration, etc., so they need to be ruggedized to function under these conditions. [ANIMATE] Now here’s where it gets interesting … one of the primary differences between your existing IT network and an IoT network is all of these additional devices, sensors, and other “smart objects”. It’s important to note that these objects are networked together, yet they’re independent of your network – you don’t own them; oftentimes can’t see them; and you don’t control them in any way, shape, or form. Yet they’re sending petabytes of data through your network – data that’s required by the applications to function properly. [ANIMATE] Another difference is in the applications, themselves. Unlike today’s monolithic applications, where the main value is delivered locally from the application’s code, IoT applications derive most of their value from the intelligence that is collected from, and distributed throughout, the network; the application itself is merely the method employed to access that intelligence. [ANIMATE] Which leads us to the other major infrastructure difference in an IoT network, which is required to communicate and process all of this intelligence …
• #12: As mentioned on the previous slide, the “IoT Network” isn’t a completely separate entity … rather, it utilizes the existing IT network as its foundation, and then supplements it with operational technology (OT) and the billions of sensors, devices, and other smart objects.
• #14: Despite its many business benefits, IoT increases security challenges in several ways: Increased attack surface – Due to the billions of new devices that are now connected Threat diversity – Due to the variety of objects – many of which are in insecure locations Impact & risk – More sensitive data is flowing through more connected devices, in more places throughout the world – and BTW, mostly outside the secure embrace of the existing network Remediation – Need to think differently about security – can’t necessarily isolate a system, because the cost of shutting it down may be greater than the cost of an infection … also, rather than hardening the outside but leaving the inside relatively insecure, need pervasive protection) Protocols – Security systems need to be considered as a continuous process – in addition to secure access, the system needs to be content-, context-, and threat-aware) Compliance & regulation – Regulatory compliance organizations are requiring tighter security and privacy controls than ever before, which is affecting a growing number of industries)
• #15: Billions of new devices, located in more places throughout the world – many of which are insecure locations – are sending sensitive data through your network … however, these devices reside outside the secure embrace of the existing network. You don’t own them; oftentimes can’t see them; and you don’t control them in any way, shape, or form. Yet they’re sending petabytes of data through your network – data that’s required by the applications to function properly.
• #16: Similarly, city services can be impacted, and even privacy and public safety can be thwarted …
• #17: The Target breach is an excellent example of why IT and OT networks need to be converged, with centrally-managed security across them … - Centralized management and control, IPS/IDS, access control policies, and system segmentation could have prevented this PR and financial disaster
• #18: But beyond the headlines, here are a few lower key real-world examples to serve as a reminder that any connected object can be used as an attack vector … so if those objects aren’t configured with the proper security controls, the consequences can be dire. Here are three examples of businesses that connected essential business systems to take advantage of IoT efficiencies … but also created significant security exposures: A pig farm in the mid-western United States … the entire feeding system is automated – not only when the feed is released, but the custom mix, as well. The entire system is in the clear, allowing visibility of the entire operation, as well as the capability to manipulate the schedule, mix, etc. Not only could this endanger the lives of the pigs, but it risks the livelihood of the owner, as well! The underground ventilation system for a coal mining company in Romania …. The control panel can be easily read, and may allow the system to be manipulated, putting hundreds of human lives at risk.
• #19: To provide appropriate levels of security for IoE, we need to first understand that its two main components – IT and OT environments – are inherently different. This can be seen in a number of areas
• #20: As I mentioned earlier, it’s important to understand that IoT doesn’t replace your existing network; rather, it supplements it, and relies on it in many ways. [ANIMATE] But then we add the emerging set of intelligent, IoT-enabled applications. [ANIMATE] … and, of course, billions of additional devices, sensors, and other “smart objects” that will create the intelligence for the applicatoins. [ANIMATE] Of course, services will need to be expanded to cover the new capabilities … [ANIMATE] And we’ll need additional layers of security to enjoy the many business benefits of IoT while maintaining a high level of data privacy and protection. Now remember I mentioned in the beginning that IoT is not a new network, but rather adjunct – and complementary – to your existing network. As a result, you still need network and perimeter security. In fact, the billions of connected objects in IoT networks create new attack vectors, so this layer of security is more important than ever. And since those billions of objects can be located quite literally anywhere in the world – in both secure and insecure environments – existing network security needs to be supplemented with device-level security and anti-tampering, to protect devices against low-tech attacks. Because it’s now connected, even the simplest object can provide a direct line into the core of your network if compromised. Finally, physical security should be implemented throughout your network, and integrated with your network security. Connected cameras, badge readers, RFID tags and other sensors, as well as video analytics, can add essential security intelligence to help protect your network, physical assets, critical data, and employees.
• #21: This structural difference forms the foundation of the differences between the two environments …
• #22: Taking a look at the converged security model, we can see how the various security solutions are implemented across the converged network to produce a comprehensive security solution for the entire extended network. It is centrally managed and controlled within IT, yet customized to fit the needs of the highly disparate environments.
• #23: … and as we discussed earlier, when developing our security strategy for an IoT implementation, we need to take a fresh approach, rather than just trying to slap an old solution on a new challenge. Security isn’t something we bolt on as an afterthought, nor should a certain area be secured – rather, it must be built in to every aspect of the implementation. And we no longer have the ability to wait for decisions to be made … since IoT is all about producing real-time intelligence, our security decisions must do the same. That requires processing and analysis right at the edge to minimize latency.