From last some years, we have been hearing about the Internet of Things. No doubt due to IoT potential to transform our daily lives, it is in headlines. IoT basically is a network of smart sensors enabled devices which can communicate with one another with the internet. IoT has use cases in almost all aspects of our lives be it, healthcare or managing the business. IoT has taken the ability to do all the mundane tasks which previously required manpower. Now cars are self-driven and use IoT technology. As it is a new technology, many people want to know about Security & IoT.
IoT is an emerging phenomenon and is still in under development as still much need to be done. According to McKinsey Global Institute by 2025, IoT will have the annual economic impact of $3.9 trillion to $11.1 trillion.
Security & IoT- Vulnerabilities & breaches
As the implementation of any new technology is complicated and has many market concern, in IoT’s case, week security is the most complicated and important issue. McKinsey and Global semiconductor alliance conducted a survey in 2015 asking about the greatest concerns about IoT. Among many other concerns, security topped the list. McKinsey and GSA again conducted a survey in 2016, regarding the importance of IoT security to semiconductor companies, the answer was again the security as the main challenge to the IoT’s growth. Moreover, they had stern believe that semiconductor companies can easily overcome these glitches and can provide security solutions to different companies and industries.
The security of IoT is very critical. Twenty years back, when someone used to tell me that soon my phone will be recorded by personal data, I used to laugh and praised them for making such a great joke. But now if someone will tell me that my oven can store my Facebook activity, I will run and un plug it: thanks to the Era of Internet of Things where all digitally connected devices are intruding in each and every aspect of our lives, be it our home, cars, offices etc. With the growing trend of Wi-Fi and easily employment of data connection, IoT is growing at a fast pace and many researchers have revealed that by 2020 wireless connected devices will exceed the figure of 40 billion.
With these security lapses, we cannot underestimate the fact that now we are able to do things that we have never imagined. As every good thing has some drawback as well, IoT is a most attractive target of the most cybercriminals. Growing connected devices mean that the possibilities of hackers to target us is also growing. To tackle this situation we need to move faster to address the security concern.
IoT Security Issues and Breaches
These IoT Vulnerabilities shows that more steps need to be taken for bringing IoT security in limelight:
- The baby monitors users by parents to monitor the babies for their safety are now not safe. They can be used by hackers to monitoring live feeds. Hackers can even change the camera setting and can authorize other people to view and control the monitor. This is quite alarming for parents as this can also result in the kidnapping of a child.
- Researchers have found that internet connected cars can be used by a hacker for carrying on bad activities. Hackers can easily control the entertainment system and can unlock the doors and stop the car in motion.
- Smartwatches can also be used to compromise your security. If motion sensors are embedded in your smartwatch, hackers can easily steal your information.
- Health tracking devices are also prone to hacking and can gather everything about your health. Some medical instruments are also prone to hack and can leave bad effects on patients health.
What Is being Done To Secure The IoT?
IoT security is not considered as an issue of high concern even at the government level. Many security measures are already taken to prevent security breaches at the device level. Now security companies are finding solutions to secure IoT world before it is too late. Some companies are working on setting up the platform to enable the large network of IoT devices to identify and confirm from each other to provide high-level security hence preventing data breaches. The University of South Hampton is carrying a research to enhance IoT security by linking it with a smartphone. They believe that smartphones can help overcome IoT devices’ limits in user interfaces and complexities in networking.
Solutions to the Security
- Secure booting: Secure Boot is a technology where the system firmware checks that the system boot loader is signed with a cryptographic key authorized by a database contained in the firmware. With adequate signature verification in the next stage boot loader(s), kernel, and, potentially, user space, it is possible to prevent the execution of unsigned code. This is very important to ensure the connected device is secure and trusted.
- Access control: It relates to control that is applying the use of the machine as well as its components. A access that is role-based built into the OS limit the privileges of device components and applications ensuring access only to the resources needed to get the job done. If somehow any component is compromised, access control will make certain that the invader has access that is minimal the rest of the system. Minimal access required to perform an action is authorized to be able to minimize the effect of any violation of protection.
- Device authentication
- : it really works on a similar technique at the time of individual verification although it is straightforward to get individual qualifications for authorisation the code of device authorisation is a little complex but. Based on individual id and a password of the unit, it authenticates itself and gets authorised to transmit the info. In this way, no device requires a user to make way for its credential
- Firewalling and IPS:
Exactly like enterprise IT protocols, every unit also requires a firewall or packet that is the deep capacity to control traffic that is destined to end during the unit. The significance of unit-based IPS is really because the requirements of the device could be different from compared to the community that is entire. Example, in the case of smart energy grid that has its set that is very own of governing how devices keep in touch with each other.