Presentation from IERC 2015 debate on the motion "The internet of energy things will deliver a secure, cheap and sustainable energy future". This presentation takes the "against" side of debate and argues that the Internet of Energy Things is not ready for mainstream use due to the lack of progress on security and data governance frameworks in IoT generally.
10. HP
Report
2014
“70 percent of the most commonly used Internet of
Things (IoT) devices contain vulnerabilities,
including password security, encryption and general
lack of granular user access permissions.”
“IoT devices averaged 25 vulnerabilities per
product, indicating expanding attack surface for
adversaries”
12/05/2015
www.tssg.org
10
11. “The challenge is, you see all of these devices coming
online at a rapid clip, without robust security. … Trying to
apply a patch to a thermostat in the home is going to be
much more challenging.”
- Gary Davis, Intel Security
12/05/2015
www.tssg.org
11
12. Foscam
Baby
Monitor
• Multiple vulnerabilities
• 100,000 cameras in the wild (easy to find)
• 20% default user “admin” no password
• Vendor generated a patch (for some of the
vulnerabilities)
• 99% of cameras still ran the older firmware
12/05/2015
www.tssg.org
12
13. Lack of agreed Data
Governance Frameworks
12/05/2015
www.tssg.org
13
14. • Huge amounts of data
• Regulatory and compliance complexities
• Assurances with regard to PII
– Where is my data?
– Who has access?
• What assurances does the consumer have?
– How is my data being used?
• What is the value to me?
• What is the value to 3rd parties?
12/05/2015
www.tssg.org
14
16. “If privacy and confidentiality isn’t designed in up front, on
top of the security capabilities provided by the enabling
M2M infrastructure (including authentication, access
control, data protection), the benefits of the IoT cannot be
fully realized.”
- Tim Carey, Alcatel Lucent
12/05/2015
www.tssg.org
16
17. The internet of energy things
will deliver a secure, cheap and
sustainable energy future
14/05/2015
www.tssg.org
17
18. The internet of energy things
will deliver a secure, cheap and
sustainable energy future
can
12/05/2015
www.tssg.org
18
19. The internet of energy things
will deliver a secure, cheap and
sustainable energy future
can
14/05/2015
www.tssg.org
19
But only if security is
addressed first!
20. “You cannot escape the
responsibility of tomorrow by
evading it today.”
- Abraham Lincoln
12/05/2015
www.tssg.org
20