riot control the art of managing risk for internet of … · riot control the art of managing risk...
TRANSCRIPT
![Page 1: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/1.jpg)
Session ID:
Session Classification:
Kim Singletary McAfee
Advanced
RIOT CONTROL
The Art of Managing Risk for
Internet of Things
![Page 2: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/2.jpg)
► What is IoT and why is it different?
► What are the risks?
► What are the emerging areas that will help provide
security
► What can be done today
Intro
![Page 3: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/3.jpg)
The outcome of the application of human creative skills and
imagination.
The Art
http://news.nationalgeographic.com/news/2012/12/pictures/121205-earth-night-science-space/
![Page 4: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/4.jpg)
► 40% projected growth in global data generated year over
year vs. 5% growth in global IT spending 1
► By 2020
► 40% of data will be generated by IoT 2
► Connected Devices (IoT) will represent 24 Billion 3
1. McKinsey, Big Data:The next frontier for innovation, competition and productivity (June 2011)
2. IDC/EMC, Digital Universe (2011)
3. GSMA conducted by Machina Research
IoT is BIG
![Page 5: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/5.jpg)
Change in Types of Data
Small files
Big files
Constant data
Cyclic or bursty data
Internet data
Video
IP Voice
Smart Health
Smart Transport
Asset tracking
Metering
Retail POS
Signage
Industrial Controls
CCTV
Smaller Files Bigger Files
![Page 6: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/6.jpg)
Connected Devices In The Past
![Page 7: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/7.jpg)
Ability to put Sensors in Everything
► Improved Power Management
► Ipv6
Ambient Networking (Everywhere)
► Open Standards
► Increased bandwidth and coverage
Analyze Everything
► Processor Speed
► Big Data
Why IoT?
![Page 8: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/8.jpg)
Current Connected Devices
![Page 9: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/9.jpg)
Future of IoT
![Page 10: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/10.jpg)
Tracking Behavior/Usage
Enhanced Situational Awareness
Sensor Driven Decision Analytics
Process Optimization
Optimized Resource Consumption
Complex Autonomous Systems
IoT Applications
Information and Analysis
Automation And Control
![Page 11: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/11.jpg)
February 15, 2013 11
Source: Forbes, 7/23/2012 Will you be ready for the M2M world? Ray Wang
![Page 12: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/12.jpg)
► Energy & Water Mgmt.
► Smart City/Smart Planet
► Robotics/Industrial Control
► Bldg. Mgmt./Automation
► Transportation
► Healthcare
► Military
► Retail
► Consumer Tech.
Industries
Pockets of Innovation, Efficiency,
Automation
![Page 13: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/13.jpg)
Compliance
Confidentiality – Integrity - Availability
Intent of Use = Risk
Control
Boundaries
Physical
Interactions
Kinetic
Outcomes
![Page 14: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/14.jpg)
Engine or Service?
Power by the Hour
![Page 15: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/15.jpg)
The Thing Lifestyle
√ ?
! X
![Page 16: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/16.jpg)
The Security Architecture
Access, Authentication, Authorization
Data & Privacy
Application Network
![Page 17: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/17.jpg)
► End-to-end security is not yet addressed in all the IoT
related standards
► Attacks at physical layer
► Machine level integrity checks
► Identity linking
► Anonymity
► Secure deployment of credentials for lots of objects
► User interface to control/manage security
Security Issues for Pervasive IoT
![Page 18: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/18.jpg)
Network
Network Types • Shortwave • Satellite • LTE/5G • WiMax/Microwave • WiFi • Femtocell • Bluetooth • Zigbee • Dash7 • PLC
Fail-Over Parameters • Speed • Error-rate • Packet Loss • Price • Assurance/Reputation
Context Setting • Policy for Connection
• Duration • Quality of Service
• Policy for Roaming • Policy for Fail-Over • Policy for Compliance
![Page 19: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/19.jpg)
► IPv6
► Management Tools Available?
► Support in organization for dual networks?
► Ready to leave comfort of NAT?
► Is someone squatting in your dark space?
► Open Flow to Software Defined Networks
- Take control out of hands of infrastructure
- ACL’s and routing protocols will not provide enough agility for
security
Emerging Network for IoT
![Page 20: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/20.jpg)
► TRILL
► Possible Spanning Tree Alternative
► Get more efficiency of available bandwidth and meshed
network
► Opportunity to Load Balance
► DNS Sec/DANE
- Prevent DNS cache poisoning
- Obtain Authentication of Named Entities with SSL info
on certs
Emerging Network for IoT
![Page 21: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/21.jpg)
► Boot or Power On Authentication
► Stop unauthorized devices from entering the network
► Proactive Intelligence in the Flow
► IETF REPUTON and IETF 6MAN/Packet Staining WG
► Include suspicious behavior indicator in flow
► Adaptive Information Infrastructure
► Holonic Systems; Dual in Nature
► Wholes in themselves
► Simultaneously integral or larger wholes
► Competitive Learning
► Nodes compete for right to respond
► Increasing specialization of each node of the cluster
IoT Endpoint Control
![Page 22: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/22.jpg)
► Hardware Identification and Access Control
► Specify computing platforms - Intel TXT
► Cloud Security Standards and Metrics
► Zones/Compliance/Service Level for IoT
► Big Data/Analytics/Management
► Access Authority
► Retention Policy
► De-Identification of Context Specific Data
Cloud – Data Center - App
![Page 23: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/23.jpg)
► Integrity Control (Endpoints and Embedded
Systems)
►Hardware Assisted Rootkit Defense
►Global Threat Intelligence integrated at
endpoint and network
►Network IPS and Softswitch IPS
► Asset Detection and Real-time Mgmt.
► Big Security Data Management
Today’s Security Options
![Page 24: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/24.jpg)
► IoT will be everywhere
► IoT will need orchestrators who can design and balance
risk and reward models
► IoT is challenging and will be complex and intriguing
Summary
![Page 25: RIOT CONTROL The Art of Managing Risk for Internet of … · RIOT CONTROL The Art of Managing Risk for Internet of Things ... • Dash7 • PLC Fail-Over Parameters • Speed •](https://reader030.vdocuments.net/reader030/viewer/2022021801/5b263a2c7f8b9aed7c8b5712/html5/thumbnails/25.jpg)
@ksingletary