IoT- Need for Privacy and Encryption
Susan Landau, in a recent event titled Listening In: Cybersecurity in an Insecure Age at New America, called attention to the need for discussion on “Security vs. Security” instead of “Security vs. Privacy”, as has been the norm while talking about the Internet of Things (IoT). In her book with the same title, she uses her legislative knowledge and historical perception together with her descriptions of cyber attack to emphasize the need to protect data.
Landau stresses the need to understand the detailed working of contemporary communications technologies to match up against the techniques nation-state attackers, organized criminals and other bad actors use to defeat security. She insists that encryption is the preferred method, instead of building front/back doors into security that others will eventually gain access to. Advocating the widespread use of the 2-factor authentication, she considers it, along with automatic security updates and ephemeral communication, as essential steps to safeguard data.
The author suggests limiting the shelf-life if the device is not updated regularly. Landau, who doubts the efficiency of blockchain technology with 2-factor authentication in alleviating security challenges, explains that despite the advantages of anonymous devices, they might not be particularly useful with security devices, making the trend unlikely to become popular among IoT devices. Laws regarding safety need to be framed generally, she reiterates, for if a system cannot be updated for security protection, it has a limited shelf-life. Landau ends her talk by reiterating the need for privacy and encryption.
Big Data: Blessing or a Boon?
By Chris Tjotjos, VP, Cisco Solutions Practice, Black Box...
By Laura Jackson, Sr. Manager-Risk Management, ABS Consulting
By Jason Cradit, VP of Information Systems, Willbros Group
By Steve Garske, Ph.D., Senior Vice President & Chief...
By Roman Trakhtenberg, CEO, Luxoft
By Renee P Wynn, CIO, NASA
By Mike Morris, CIO, Legends
By Louis Carr, Jr., CIO, Clark County
By Andrew Macaulay, CTO, Topgolf Entertainment Group
By Dominic Casserley, President and Deputy CEO, Willis...
By Dave Nelson, SVP-Portfolio Lead, Avanade, Inc.
By Michael Cross, SVP & CIO, CommScope Holding Company Inc.
By Pauly Comtois, VP DevOps, Hearst Business Media
By Dan Adam, CIO, Extreme Networks
By Matt Schlabig, CIO, Worthington Industries
By David Tamayo, CIO, DCS Corporation
By Scott Cardenas, CIO, City and County of Denver
By Marc Kermisch, VP & CIO, Red Wing Shoe Co.
By Brian Drozdowicz, VP, Digital Services, Siemens...
By Les Ottolenghi, EVP and CIO, Caesars Entertainment