“The Internet of Things (IoT) is a system of interrelated computing devices, mechanical and digital machines, objects, animals or people that are provided with unique identifiers and the ability to transfer data over a network
3. What is IoT?
The Internet of Things (IoT) is the network of physical objects—
devices, vehicles, buildings and other items embedded with electronics,
software, sensors, and network connectivity—that enables these
objects to collect and exchange data.
IoT is everywhere!
4. Why IoT Matters
When something is connected to the internet, that means that it can send
information or receive information, or both. This ability to send and/or
receive information makes things smart, and smart is good.
To be smart, a thing doesn’t need to have super storage or a super computer
inside of it. All a thing has to do is connect to super storage or to a super
computer. Being connected is awesome.
In the Internet of Things, all the things that are being connected to the
internet can be put into three categories:
1.Things that collect information and then send it.
2.Things that receive information and then act on it.
3.Things that do both.
5.
6. Example
Cupcake Conveyor —
Yes, an actual cupcake ATM
that Davis called a
“confectionery 3D printer.”
There are Sprinkles’
cupcakes ATMs in several
cities in the United States,
including Beverly Hills,
Chicago, New York and
Atlanta.
7. Driving Forces of IoT
1. Sensor Technology – Tiny, Cheap, Variety
2. Cheap Miniature Computers
3. Low Power Connectivity
4. Capable Mobile Devices
5. Power of the Cloud
11. IoT security is an area of growing importance for Research &
Education
->IoT is everywhere on campus...and growing
->Scientific instruments – old unpatched systems, “custom” instruments, new devices, etc.
->The devices in the buildings of the e-infrastructures are hackable – cameras, BMS, etc.
->Are we using networking segmentation for the Things and air-gapped? Always?
->Students are bringing 7-10 devices to campus, connecting to the network
->Multiple scientific domains – physics, healthcare & life sciences, genomics (human, plant &
animal), etc.
->Risks include scientific data integrity / availability, reputation, financial, physical,
operational, confidentiality
12. The IoT Market
As of 2013, 9.1 billion IoT units
Expected to grow to 28.1 billion IoT devices by 2020
Revenue growth from $1.9 trillion in 2013 to $7.1 trillion in 2020
13. Threat vs. Opportunity
If misunderstood and misconfigured, IoT poses risk to our data, privacy, and
safety
If understood and secured, IoT will enhance communications, lifestyle, and
delivery of services
14. Why be concerned about IoT?
It’s just another computer, right?
◦ All of the same issues we have with access control, vulnerability
management, patching, monitoring, etc.
◦ Imagine your network with 1,000,000 more devices
◦ Any compromised device is a foothold on the network
15. Attacking IoT
-> Default, weak, and hardcoded credentials
-> Difficult to update firmware and OS
-> Lack of vendor support for repairing vulnerabilities
-> Vulnerable web interfaces (SQL injection, XSS)
-> Coding errors (buffer overflow)
-> Clear text protocols and unnecessary open ports
-> DoS / DDoS
-> Physical theft and tampering