Cloud Identity Summit 2015: Practical Identity in the IoT Era

•Download as PPTX, PDF•

0 likes•576 views

M

Slides from a CIS2015 talk covering some of the challenges the industry faces in industrial IoT relating to security and identity.

Practical Identity
in the
IoT Era
Morteza Ansari

• Trustworthiness
Integrity
Tamperproof
Anti-cloning
• Device identity & identity context
• Provisioning & associated life cycle
• Authorization and access
• Bridging modern & legacy
• …

System
Integrator
Owner Operator

OEM
OEM
System
Integrator
Owner
Operator
App
…

App
App
Operator
System
Integrator
OEM
OEM
System
Integrator
Owner
Operator
…

App
App
Operator
System
Integrator
OEM
OEM
System
Integrator
Owner
Operator
…

✓ Read diagnostic data
✓ Run diagnostic routines
✗ Read movement
✗ Write movement
? Update firmware

✓ Read diagnosticdata
✓ Run diagnostic routines
✗ Read movement
✗ Write movement
✗ Read program
? Update firmware
✓ Read diagnosticdata
✓ Run diagnostic routines
✗ Read movement
✗ Write movement
✗ Read program
? Update firmware
✓ Read diagnosticdata
✓ Run diagnostic routines
✗ Read movement
✗ Write movement
✗ Read program
? Update firmware
✓ Read diagnosticdata
✓ Run diagnostic routines
✗ Read movement
✗ Write movement
✗ Read program
? Update firmware
✓ Read diagnosticdata
✓ Run diagnostic routines
✗ Read movement
✗ Write movement
✗ Read program
? Update firmware
✓ Read diagnosticdata
✓ Run diagnostic routines
✗ Read movement
✗ Write movement
✗ Read program
? Update firmware
✓ Read diagnosticdata
✓ Run diagnostic routines
✗ Read movement
✗ Write movement
✗ Read program
? Update firmware

Location
Network
Trustworthiness
Calibration
Health
…

• Bridging legacy & modern
• Not all devices are created equal
• Life expectancy of industrial devices
• IT vs. OT
• Access:
Remote locations
Unreliable connectivity
Low bandwidth
Very complex failure scenarios
• Privacy!

• Too static, too fragile, too vulnerable
• Device identity context
• Risk based policies
• Dynamic & continuous identity
• Standardization
• Identity life cycle
• Identity  security

Cloud Identity Summit 2015: Practical Identity in the IoT Era

More Related Content

Similar to Cloud Identity Summit 2015: Practical Identity in the IoT Era

A common question in online WordPress forums is: “What plugin should I use to secure my site?” While there are several good security plugins that are a useful part of a security plan, securing a WordPress site requires more than a plugin. While a security plugin is a useful tool, it can give a false sense of security if the entire security landscape is not considered. Not every small business or website owner can afford an expensive, robust security and monitoring system, but there are basic actions that every site owner and user can take to help us all be more secure. In this session, you’ll learn a framework and some essential actions to provide a basic level of security and “harden” your WordPress website.

WordPress Security: Beyond The Plugin

WordPress Security: Beyond The Plugin

WordPress Security: Beyond The Plugin

DSS ITSEC Conference 2012 - Forescout NAC #1

DSS ITSEC Conference 2012 - Forescout NAC #1

DSS ITSEC Conference 2012 - Forescout NAC #1

Tripwire ppt

OECLIB Odisha Electronics Control Library

Spring Security

Spring Security

Spring Security

Software Reliability and Safety.pdf

Software Reliability and Safety.pdf

Software Reliability and Safety.pdf

Dr. Ajeet Kumar Pandey

Jason Kent - AppSec Without Additional Tools

Jason Kent - AppSec Without Additional Tools

Jason Kent - AppSec Without Additional Tools

centralohioissa

tripwire

Throughwave Day 2015 - ForeScout Automated Security Control

Throughwave Day 2015 - ForeScout Automated Security Control

Throughwave Day 2015 - ForeScout Automated Security Control

Azure Operation Management Suite - security and compliance

Azure Operation Management Suite - security and compliance

Azure Operation Management Suite - security and compliance

Zero Trust Model Presentation

Zero Trust Model Presentation

Zero Trust Model Presentation

Gowdhaman Jothilingam

CI/CD pipelines help DevOps teams automate and drive scalability of mobile app releases. However, teams still experience friction from all kinds of testing. To speed the flow, organizations are now turning to automated continuous testing (CT) in the pipeline by engaging the test automation and security teams. The latest advancements in functional and performance testing enable organizations to run faster, friction-free pipelines with CI/CD/CT. Join Perfecto by Perforce Chief Evangelist and author, Eran Kinsbruner, and NowSecure Chief Mobility Officer, Brian Reed, in this webinar. Understand how successful organizations optimize their CI/CD pipelines with automated CT tools for functional and security testing in their build process. Watch this webinar to learn the following: - Fundamentals of continuous testing (CT) strategy for CI/CD/CT pipelines. - How to fit automated security and functional testing together inside a DevOps process. - Common pitfalls in mobile app security and how to overcome them.

Deliver Flawless Mobile Apps Faster with CI/CD & CT

Deliver Flawless Mobile Apps Faster with CI/CD & CT

Deliver Flawless Mobile Apps Faster with CI/CD & CT

Perfecto by Perforce

Building an Open Source AppSec Pipeline - 2015 Texas Linux Fest

Building an Open Source AppSec Pipeline - 2015 Texas Linux Fest

Building an Open Source AppSec Pipeline - 2015 Texas Linux Fest

Tripwire

Dhananjay Aloorkar

While enterprises are increasingly adopting a cloud strategy, a successful cloud journey requires a mature foundation built through a well-architected, phased, and incremental approach. This webinar will help you plan for a mature foundation for all the phases of a cloud adoption journey. The content of this session is drawn from multiple cloud adoption projects at large enterprises to detail the following: Opportunities and challenges of cloud adoption Best practices to ensure a seamless transition to the cloud including exploration, migration, basic patterns, application transformation and maintenance Automation and self-service enablement in the cloud. View the webinar here - https://bit.ly/2TcSkMv

Building a mature foundation for life in the cloud

Building a mature foundation for life in the cloud

Building a mature foundation for life in the cloud

Impetus Technologies

Secure design best practices and design patterns

Secure design best practices and design patterns

Secure design best practices and design patterns

Intopalo Digital Oy

ATAGTR2017 Cost-effective Security Testing Approaches for Web, Mobile & Enter...

ATAGTR2017 Cost-effective Security Testing Approaches for Web, Mobile & Enter...

ATAGTR2017 Cost-effective Security Testing Approaches for Web, Mobile & Enter...

Agile Testing Alliance

More organizations are embracing DevOps to realize compelling business benefits, such as more frequent feature releases, increased application stability, and more productive resource utilization. However, security and compliance monitoring tools have not kept up. In fact, they often represent the largest single remaining barrier to continuous delivery. Learn how to integrate security controls in your DevOps program from experts at Alert Logic and George Miranda, engineer and evangelist at Chef. Sponsored by Alert Logic.

(SEC312) Taking a DevOps Approach to Security | AWS re:Invent 2014

(SEC312) Taking a DevOps Approach to Security | AWS re:Invent 2014

(SEC312) Taking a DevOps Approach to Security | AWS re:Invent 2014

Amazon Web Services

Re-Thinking BYOD Policy.pptx

Re-Thinking BYOD Policy.pptx

Re-Thinking BYOD Policy.pptx

Nipper-Users-Guide-2-13-0 pdf configuration step by step

Nipper-Users-Guide-2-13-0 pdf configuration step by step

Nipper-Users-Guide-2-13-0 pdf configuration step by step

truonggiang8101992

ATAGTR2017 Wearable App Testing

ATAGTR2017 Wearable App Testing

ATAGTR2017 Wearable App Testing

Agile Testing Alliance

Similar to Cloud Identity Summit 2015: Practical Identity in the IoT Era (20)

WordPress Security: Beyond The Plugin

WordPress Security: Beyond The Plugin

WordPress Security: Beyond The Plugin

DSS ITSEC Conference 2012 - Forescout NAC #1

DSS ITSEC Conference 2012 - Forescout NAC #1

DSS ITSEC Conference 2012 - Forescout NAC #1

Tripwire ppt

Spring Security

Spring Security

Spring Security

Software Reliability and Safety.pdf

Software Reliability and Safety.pdf

Software Reliability and Safety.pdf

Jason Kent - AppSec Without Additional Tools

Jason Kent - AppSec Without Additional Tools

Jason Kent - AppSec Without Additional Tools

tripwire

Throughwave Day 2015 - ForeScout Automated Security Control

Throughwave Day 2015 - ForeScout Automated Security Control

Throughwave Day 2015 - ForeScout Automated Security Control

Azure Operation Management Suite - security and compliance

Azure Operation Management Suite - security and compliance

Azure Operation Management Suite - security and compliance

Zero Trust Model Presentation

Zero Trust Model Presentation

Zero Trust Model Presentation

Deliver Flawless Mobile Apps Faster with CI/CD & CT

Deliver Flawless Mobile Apps Faster with CI/CD & CT

Deliver Flawless Mobile Apps Faster with CI/CD & CT

Building an Open Source AppSec Pipeline - 2015 Texas Linux Fest

Building an Open Source AppSec Pipeline - 2015 Texas Linux Fest

Building an Open Source AppSec Pipeline - 2015 Texas Linux Fest

Tripwire

Building a mature foundation for life in the cloud

Building a mature foundation for life in the cloud

Building a mature foundation for life in the cloud

Secure design best practices and design patterns

Secure design best practices and design patterns

Secure design best practices and design patterns

ATAGTR2017 Cost-effective Security Testing Approaches for Web, Mobile & Enter...

ATAGTR2017 Cost-effective Security Testing Approaches for Web, Mobile & Enter...

ATAGTR2017 Cost-effective Security Testing Approaches for Web, Mobile & Enter...

(SEC312) Taking a DevOps Approach to Security | AWS re:Invent 2014

(SEC312) Taking a DevOps Approach to Security | AWS re:Invent 2014

(SEC312) Taking a DevOps Approach to Security | AWS re:Invent 2014

Re-Thinking BYOD Policy.pptx

Re-Thinking BYOD Policy.pptx

Re-Thinking BYOD Policy.pptx

Nipper-Users-Guide-2-13-0 pdf configuration step by step

Nipper-Users-Guide-2-13-0 pdf configuration step by step

Nipper-Users-Guide-2-13-0 pdf configuration step by step

ATAGTR2017 Wearable App Testing

ATAGTR2017 Wearable App Testing

ATAGTR2017 Wearable App Testing

Recently uploaded

Tata AIG General Insurance Company - Insurer Innovation Award 2024

Tata AIG General Insurance Company - Insurer Innovation Award 2024

Tata AIG General Insurance Company - Insurer Innovation Award 2024

The Digital Insurer

MySQL Webinar, presented on the 25th of April, 2024. Summary: MySQL solutions enable the deployment of diverse Database Architectures tailored to specific needs, including High Availability, Disaster Recovery, and Read Scale-Out. With MySQL Shell's AdminAPI, administrators can seamlessly set up, manage, and monitor these solutions, ensuring efficiency and ease of use in their administration. MySQL Router, on the other hand, provides transparent routing from the application traffic to the backend servers in the architectures, requiring minimal configuration. Completely built in-house and supported by Oracle, these solutions have been adopted by enterprises of all sizes for their business-critical applications. In this presentation, we'll delve into various database architecture solutions to help you choose the right one based on your business requirements. Focusing on technical details and the latest features to maximize the potential of these solutions.

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

2024: Domino Containers - The Next Step. News from the Domino Container commu...

2024: Domino Containers - The Next Step. News from the Domino Container commu...

2024: Domino Containers - The Next Step. News from the Domino Container commu...

Martijn de Jong

The 7 Things I Know About Cyber Security After 25 Years | April 2024

The 7 Things I Know About Cyber Security After 25 Years | April 2024

The 7 Things I Know About Cyber Security After 25 Years | April 2024

Axa Assurance Maroc - Insurer Innovation Award 2024

Axa Assurance Maroc - Insurer Innovation Award 2024

Axa Assurance Maroc - Insurer Innovation Award 2024

The Digital Insurer

What are drone anti-jamming systems? The drone anti-jamming systems and anti-spoof technology protect against interference, jamming, and spoofing of the UAVs. To protect their security, countries are beginning to research drone anti-jamming systems, also known as drone strike weapons. The anti-jam and anti-spoof technology protects against interference, jamming and spoofing. A drone strike weapon is a drone attack weapon that can attack and destroy enemy drones. So what is so unique about this amazing system?

What Are The Drone Anti-jamming Systems Technology?

What Are The Drone Anti-jamming Systems Technology?

What Are The Drone Anti-jamming Systems Technology?

Antenna Manufacturer Coco

Advantages of Hiring UIUX Design Service Providers for Your Business

Advantages of Hiring UIUX Design Service Providers for Your Business

Advantages of Hiring UIUX Design Service Providers for Your Business

Pixlogix Infotech

Tech Trends Report 2024 Future Today Institute.pdf

Tech Trends Report 2024 Future Today Institute.pdf

Tech Trends Report 2024 Future Today Institute.pdf

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

The Digital Insurer

Three things you will take away from the session: • How to run an effective tenant-to-tenant migration • Best practices for before, during, and after migration • Tips for using migration as a springboard to prepare for Copilot in Microsoft 365 Main ideas: Migration Overview: The presentation covers the current reality of cross-tenant migrations, the triggers, phases, best practices, and benefits of a successful tenant migration Considerations: When considering a migration, it is important to consider the migration scope, performance, customization, flexibility, user-friendly interface, automation, monitoring, support, training, scalability, data integrity, data security, cost, and licensing structure Next Wave: The next wave of change includes the launch of Copilot, which requires businesses to be prepared for upcoming changes related to Copilot and the cloud, and to consolidate data and tighten governance ShareGate: ShareGate can help with pre-migration analysis, configurable migration tool, and automated, end-user driven collaborative governance

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

Data Cloud, More than a CDP by Matt Robison

Data Cloud, More than a CDP by Matt Robison

Data Cloud, More than a CDP by Matt Robison

Anna Loughnan Colquhoun

Partners Life - Insurer Innovation Award 2024

Partners Life - Insurer Innovation Award 2024

Partners Life - Insurer Innovation Award 2024

The Digital Insurer

Handwritten Text Recognition for manuscripts and early printed texts

Handwritten Text Recognition for manuscripts and early printed texts

Handwritten Text Recognition for manuscripts and early printed texts

Maria Levchenko

Finology Group – Insurtech Innovation Award 2024

Finology Group – Insurtech Innovation Award 2024

Finology Group – Insurtech Innovation Award 2024

The Digital Insurer

A Domino Admins Adventures (Engage 2024)

A Domino Admins Adventures (Engage 2024)

A Domino Admins Adventures (Engage 2024)

Gabriella Davis

AWS Community Day CPH - Three problems of Terraform

AWS Community Day CPH - Three problems of Terraform

AWS Community Day CPH - Three problems of Terraform

Andrey Devyatkin

The presentation explores the development and application of artificial intelligence (AI) from its inception to its current status in the modern world. The term "artificial intelligence" was first coined by John McCarthy in 1956 to describe efforts to develop computer programs capable of performing tasks that typically require human intelligence. This concept was first introduced at a conference held at Dartmouth College, where programs demonstrated capabilities such as playing chess, proving theorems, and interpreting texts. In the early stages, Alan Turing contributed to the field by defining intelligence as the ability of a being to respond to certain questions intelligently, proposing what is now known as the Turing Test to evaluate the presence of intelligent behavior in machines. As the decades progressed, AI evolved significantly. The 1980s focused on machine learning, teaching computers to learn from data, leading to the development of models that could improve their performance based on their experiences. The 1990s and 2000s saw further advances in algorithms and computational power, which allowed for more sophisticated data analysis techniques, including data mining. By the 2010s, the proliferation of big data and the refinement of deep learning techniques enabled AI to become mainstream. Notable milestones included the success of Google's AlphaGo and advancements in autonomous vehicles by companies like Tesla and Waymo. A major theme of the presentation is the application of generative AI, which has been used for tasks such as natural language text generation, translation, and question answering. Generative AI uses large datasets to train models that can then produce new, coherent pieces of text or other media. The presentation also discusses the ethical implications and the need for regulation in AI, highlighting issues such as privacy, bias, and the potential for misuse. These concerns have prompted calls for comprehensive regulations to ensure the safe and equitable use of AI technologies. Artificial intelligence has also played a significant role in healthcare, particularly highlighted during the COVID-19 pandemic, where it was used in drug discovery, vaccine development, and analyzing the spread of the virus. The capabilities of AI in healthcare are vast, ranging from medical diagnostics to personalized medicine, demonstrating the technology's potential to revolutionize fields beyond just technical or consumer applications. In conclusion, AI continues to be a rapidly evolving field with significant implications for various aspects of society. The development from theoretical concepts to real-world applications illustrates both the potential benefits and the challenges that come with integrating advanced technologies into everyday life. The ongoing discussion about AI ethics and regulation underscores the importance of managing these technologies responsibly to maximize their their benefits while minimizing potential harms.

Artificial Intelligence: Facts and Myths

Artificial Intelligence: Facts and Myths

Artificial Intelligence: Facts and Myths

Effective data discovery is crucial for maintaining compliance and mitigating risks in today's rapidly evolving privacy landscape. However, traditional manual approaches often struggle to keep pace with the growing volume and complexity of data. Join us for an insightful webinar where industry leaders from TrustArc and Privya will share their expertise on leveraging AI-powered solutions to revolutionize data discovery. You'll learn how to: - Effortlessly maintain a comprehensive, up-to-date data inventory - Harness code scanning insights to gain complete visibility into data flows leveraging the advantages of code scanning over DB scanning - Simplify compliance by leveraging Privya's integration with TrustArc - Implement proven strategies to mitigate third-party risks Our panel of experts will discuss real-world case studies and share practical strategies for overcoming common data discovery challenges. They'll also explore the latest trends and innovations in AI-driven data management, and how these technologies can help organizations stay ahead of the curve in an ever-changing privacy landscape.

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

Created by Mozilla Research in 2012 and now part of Linux Foundation Europe, the Servo project is an experimental rendering engine written in Rust. It combines memory safety and concurrency to create an independent, modular, and embeddable rendering engine that adheres to web standards. Stewardship of Servo moved from Mozilla Research to the Linux Foundation in 2020, where its mission remains unchanged. After some slow years, in 2023 there has been renewed activity on the project, with a roadmap now focused on improving the engine’s CSS 2 conformance, exploring Android support, and making Servo a practical embeddable rendering engine. In this presentation, Rakhi Sharma reviews the status of the project, our recent developments in 2023, our collaboration with Tauri to make Servo an easy-to-use embeddable rendering engine, and our plans for the future to make Servo an alternative web rendering engine for the embedded devices industry. (c) Embedded Open Source Summit 2024 April 16-18, 2024 Seattle, Washington (US) https://events.linuxfoundation.org/embedded-open-source-summit/ https://ossna2024.sched.com/event/1aBNF/a-year-of-servo-reboot-where-are-we-now-rakhi-sharma-igalia

A Year of the Servo Reboot: Where Are We Now?

A Year of the Servo Reboot: Where Are We Now?

A Year of the Servo Reboot: Where Are We Now?

What is a good lead in your organisation? Which leads are priority? What happens to leads? When sales and marketing give different answers to these questions, or perhaps aren't sure of the answers at all, frustrations build and opportunities are left on the table. Join us for an illuminating session with Cian McLoughlin, HubSpot Principal Customer Success Manager, as we look at that crucial piece of the customer journey in which leads are transferred from marketing to sales.

04-2024-HHUG-Sales-and-Marketing-Alignment.pptx

04-2024-HHUG-Sales-and-Marketing-Alignment.pptx

04-2024-HHUG-Sales-and-Marketing-Alignment.pptx

Recently uploaded (20)

Tata AIG General Insurance Company - Insurer Innovation Award 2024

Tata AIG General Insurance Company - Insurer Innovation Award 2024

Tata AIG General Insurance Company - Insurer Innovation Award 2024

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

2024: Domino Containers - The Next Step. News from the Domino Container commu...

2024: Domino Containers - The Next Step. News from the Domino Container commu...

2024: Domino Containers - The Next Step. News from the Domino Container commu...

The 7 Things I Know About Cyber Security After 25 Years | April 2024

The 7 Things I Know About Cyber Security After 25 Years | April 2024

The 7 Things I Know About Cyber Security After 25 Years | April 2024

Axa Assurance Maroc - Insurer Innovation Award 2024

Axa Assurance Maroc - Insurer Innovation Award 2024

Axa Assurance Maroc - Insurer Innovation Award 2024

What Are The Drone Anti-jamming Systems Technology?

What Are The Drone Anti-jamming Systems Technology?

What Are The Drone Anti-jamming Systems Technology?

Advantages of Hiring UIUX Design Service Providers for Your Business

Advantages of Hiring UIUX Design Service Providers for Your Business

Advantages of Hiring UIUX Design Service Providers for Your Business

Tech Trends Report 2024 Future Today Institute.pdf

Tech Trends Report 2024 Future Today Institute.pdf

Tech Trends Report 2024 Future Today Institute.pdf

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

Data Cloud, More than a CDP by Matt Robison

Data Cloud, More than a CDP by Matt Robison

Data Cloud, More than a CDP by Matt Robison

Partners Life - Insurer Innovation Award 2024

Partners Life - Insurer Innovation Award 2024

Partners Life - Insurer Innovation Award 2024

Handwritten Text Recognition for manuscripts and early printed texts

Handwritten Text Recognition for manuscripts and early printed texts

Handwritten Text Recognition for manuscripts and early printed texts

Finology Group – Insurtech Innovation Award 2024

Finology Group – Insurtech Innovation Award 2024

Finology Group – Insurtech Innovation Award 2024

A Domino Admins Adventures (Engage 2024)

A Domino Admins Adventures (Engage 2024)

A Domino Admins Adventures (Engage 2024)

AWS Community Day CPH - Three problems of Terraform

AWS Community Day CPH - Three problems of Terraform

AWS Community Day CPH - Three problems of Terraform

Artificial Intelligence: Facts and Myths

Artificial Intelligence: Facts and Myths

Artificial Intelligence: Facts and Myths

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

A Year of the Servo Reboot: Where Are We Now?

A Year of the Servo Reboot: Where Are We Now?

A Year of the Servo Reboot: Where Are We Now?

04-2024-HHUG-Sales-and-Marketing-Alignment.pptx

04-2024-HHUG-Sales-and-Marketing-Alignment.pptx

04-2024-HHUG-Sales-and-Marketing-Alignment.pptx

Cloud Identity Summit 2015: Practical Identity in the IoT Era

1. Practical Identity in the IoT Era Morteza Ansari

2.

3.

4.

5.

6. • Trustworthiness Integrity Tamperproof Anti-cloning • Device identity & identity context • Provisioning & associated life cycle • Authorization and access • Bridging modern & legacy • …

7.

8.

9. System Integrator Owner Operator

10. OEM OEM System Integrator Owner Operator App …

11. App App Operator System Integrator OEM OEM System Integrator Owner Operator …

12. App App Operator System Integrator OEM OEM System Integrator Owner Operator …

13. ✓ Read diagnostic data ✓ Run diagnostic routines ✗ Read movement ✗ Write movement ? Update firmware

14. ✓ Read diagnosticdata ✓ Run diagnostic routines ✗ Read movement ✗ Write movement ✗ Read program ? Update firmware ✓ Read diagnosticdata ✓ Run diagnostic routines ✗ Read movement ✗ Write movement ✗ Read program ? Update firmware ✓ Read diagnosticdata ✓ Run diagnostic routines ✗ Read movement ✗ Write movement ✗ Read program ? Update firmware ✓ Read diagnosticdata ✓ Run diagnostic routines ✗ Read movement ✗ Write movement ✗ Read program ? Update firmware ✓ Read diagnosticdata ✓ Run diagnostic routines ✗ Read movement ✗ Write movement ✗ Read program ? Update firmware ✓ Read diagnosticdata ✓ Run diagnostic routines ✗ Read movement ✗ Write movement ✗ Read program ? Update firmware ✓ Read diagnosticdata ✓ Run diagnostic routines ✗ Read movement ✗ Write movement ✗ Read program ? Update firmware

15. Location Network Trustworthiness Calibration Health …

16. • Bridging legacy & modern • Not all devices are created equal • Life expectancy of industrial devices • IT vs. OT • Access: Remote locations Unreliable connectivity Low bandwidth Very complex failure scenarios • Privacy!

17. • Too static, too fragile, too vulnerable • Device identity context • Risk based policies • Dynamic & continuous identity • Standardization • Identity life cycle • Identity  security