[BreachExchange] FOLLOW UP: IoT Security Checklist: Get Ahead Of The Curve
Inga Goddijn
inga at riskbasedsecurity.com
Thu Mar 10 11:06:02 EST 2016
This past Monday, we shared an article from DarkReading
<http://www.darkreading.com/iot/iot-security-checklist-get-ahead-of-the-curve/a/d-id/1324513>
that included a check list of 9 IoT security strategies. A reader responded
to the post, recommending we take a look at the IoT Trust Framework, made
available by the Online Trust Alliance. (h/t dotzero!)
The IoT Trust Framework is the product of a working group that has spent
the past year focusing on security, privacy and sustainability in IoT
products and services. To quote OTA directly - "Formed in early 2015, the
IoT Trustworthy Working Group (ITWG) recognizes “security and privacy by
design” must be a priority from the onset of product development and be
addressed holistically."
The framework, along with the companion Resource Guide, is good reading for
anyone interested in taking a closer look at securing Internet connected
devices.
Links to the framework along with the resource guide and updates on the
Working Group's latest activities can be found here:
https://otalliance.org/initiatives/internet-things
The proliferation of Internet connected devices will have implications well
beyond the consumer market. RBS' Jake Kouns and Carsten Eiram presented at
RSA
<https://www.rsaconference.com/events/us16/agenda/sessions/2411/bring-your-own-internet-of-things-byo-iot>
last week on the potential impact of IoT on all businesses. The slide deck
for the presentation
<https://www.rsaconference.com/writable/presentations/file_upload/csv-f02-bring_your_own_internet_of_things_byo-iot_.pdf>
is now available on the RSA Conference site for anyone interested in
learning more about the risks associated with IoT devices connecting to the
corporate network.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.riskbasedsecurity.com/pipermail/breachexchange/attachments/20160310/a117ec71/attachment.html>
More information about the BreachExchange
mailing list