concerns solution danny de cock
play

CONCERNS & SOLUTION DANNY DE COCK HTTPS://WWW.GODOT.BE/SLIDES - PowerPoint PPT Presentation

Apr 15, 2023 •279 likes •370 views

Simply Smart Workshop IOT SECURITY AND PRIVACY CONCERNS & SOLUTION DANNY DE COCK HTTPS://WWW.GODOT.BE/SLIDES Feb 2018 IOT SCOPE Credits: Chragokyberneticks Credits: http://www.greenpeak.com Blue: Networked devices Green: Energy

  1. Simply Smart Workshop IOT SECURITY AND PRIVACY CONCERNS & SOLUTION DANNY DE COCK HTTPS://WWW.GODOT.BE/SLIDES Feb 2018

  2. IOT SCOPE Credits: Chragokyberneticks Credits: http://www.greenpeak.com • Blue: Networked devices • Green: Energy Management • Red: IoT 2

  3. CORE SECURITY AND PRIVACY PROBLEMS  IoT focuses on functionality, NOT security  Security is afterthought, secure client first!  Cumbersome over-the-air update mechanisms  Each family of devices in their own silo  Amalgam of isolated component groups rather than integration  Impossible to apply sound security policies  User data, preferences & behavior immediately pushed to cloud services  Who manages the cloud, who is it and where can you find them?  User awareness & ignorance: what happens to this data?  Authentication, confidentiality and authorization problems  Silo- based management of keys, preferences, access control settings…  No real key management for individual instantiations  Low power = lightweight communications and security protocols 21/02/2018 3

  4. GLOBAL SYSTEM OVERVIEW Home Internet Remote User Locally operated Remotely accessible Strong authentication Weak authentication Insecure Integrity-protected Confidential Local Users 4 Secure

  5. GENERIC & SIMPLE SOLUTION  Impossible to change, configure and test individual IOT device families  New software versions and devices and features pop up continuously  Two-fold solution:  Good old DMZ technology plus Intelligent Internet Gateway (IIG)  Each IOT device type in its own zone  IIG manages connections:  Device-Device inside and across zones  Device-Internet and Internet-Device  Dedicated configuration manager  Configuration of IIG  Configuration of DMZ-zones 21/02/2018 5 Images: Tango! Desktop Project, benext.eu & Michael Mimoso, threatpost.com

  6. QUESTIONS?  Contact details:  Email: Danny.DeCock@esat.kuleuven.be  Slides: https://www.godot.be/slides 21/02/2018 6

  7. SECURITY VIEW Service Providers Devices Users & Applications Multimedia Cluster End-to-End Security Appliance Cluster Point-to-Point Security Safety Cluster 21/02/2018 7

  8. PROTOCOL STACKS VIEW User/Business Layer Uses devices & services Service Data Application Layer (OSI Layer 7) Application processing Data Offers Services to Users, Services and Devices Device-Device Security Reliable Device-Device Communication Security Layer (OSI Layer 5 – Session) Device-Device Data Transmission Data Transmission over Physical Network Protects Against Remote Evil Services and Devices Transport Layer (OSI Layer 4) Data Transmitted over Physical Network Provides Reliable Communications Device-Device Data Transmission Reliable Device-Device Communication Network Layer (OSI Layer 3) Device-Device Security Provides Network Access Application processing Data Service Data Data Link Layer (OSI Layer 2) Communication Technologies, e.g., RF, WiFi, IR,… 21/02/2018 8

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

IOT SECURITY SOFTWARE SOLUTIONS DANNY DE COCK 22 September 2015 SENIOR RESEARCHER

IOT SECURITY SOFTWARE SOLUTIONS DANNY DE COCK 22 September 2015 SENIOR RESEARCHER

IOT SECURITY SOFTWARE SOLUTIONS DANNY DE COCK 22 September 2015 SENIOR RESEARCHER HTTP://GODOT.BE/SLIDES STANDARD CRYPTO-TECHNICAL CONSIDERATIONS IOT = big data, focused on functionality, not security Security is afterthought Each

483 views • 14 slides
Connecting Academic Security Research to Applied Systems in the Field Dr. Danny De Cock 6

Connecting Academic Security Research to Applied Systems in the Field Dr. Danny De Cock 6

Connecting Academic Security Research to Applied Systems in the Field Dr. Danny De Cock 6 October 2016 COSIC Staff Department Electrical Engineering-ESAT COSIC = COmputer Security and Industrial Cryptography ( o 1978) 5 full-time 90

502 views • 28 slides
Usability Related Observations Practical Security Hints Danny De Cock, PhD, sr. Research Manager

Usability Related Observations Practical Security Hints Danny De Cock, PhD, sr. Research Manager

Usability Related Observations Practical Security Hints Danny De Cock, PhD, sr. Research Manager Applied Cryptography 25 March 2018, #hackatonamring, Nrburg, Germany Slides: http://godot.be/slides While establishing correct location

341 views • 6 slides
K.U.Leuven ESAT/SCD/COSIC Computer Security and Industrial Cryptography Danny De Cock

K.U.Leuven ESAT/SCD/COSIC Computer Security and Industrial Cryptography Danny De Cock

K.U.Leuven ESAT/SCD/COSIC Computer Security and Industrial Cryptography Danny De Cock Danny.DeCock@esat.kuleuven.be Katholieke Universiteit Leuven/Dept. Elektrotechniek (ESAT) Computer Security and Industrial Cryptography (COSIC) Kasteelpark

308 views • 16 slides
IOT LANDSCAPE March 2017 DANNY DE COCK HTTP://GODOT.BE/SLIDES LIMITED SCOPE Security

IOT LANDSCAPE March 2017 DANNY DE COCK HTTP://GODOT.BE/SLIDES LIMITED SCOPE Security

TOWARDS A SECURE IOT LANDSCAPE March 2017 DANNY DE COCK HTTP://GODOT.BE/SLIDES LIMITED SCOPE Security challenges for commonly available and used devices IoT device not different from any other IT device Communicates with its

506 views • 24 slides
Electronic Voting in Belgium: Past and Future Danny De Cock K.U.Leuven ESAT/COSIC Slides

Electronic Voting in Belgium: Past and Future Danny De Cock K.U.Leuven ESAT/COSIC Slides

Electronic Voting in Belgium: Past and Future Danny De Cock K.U.Leuven ESAT/COSIC Slides available from http://godot.be/slides 4 December 2007 eVoting in Belgium: Past and Future 1 Outline Interesting things to know Conceptual view

591 views • 22 slides
THE INTERNET OF THINGS 25 September 2015 DANNY DE COCK SENIOR RESEARCHER HTTP://GODOT.BE/SLIDES

THE INTERNET OF THINGS 25 September 2015 DANNY DE COCK SENIOR RESEARCHER HTTP://GODOT.BE/SLIDES

SECURITY CHALLENGES FOR THE INTERNET OF THINGS 25 September 2015 DANNY DE COCK SENIOR RESEARCHER HTTP://GODOT.BE/SLIDES LIMITED SCOPE Security challenges for commonly available and used devices IoT device not different from any

945 views • 19 slides
Using OSGi for Secure Service Discovery Slides available at http://godot.be/slides Antonio Kung,

Using OSGi for Secure Service Discovery Slides available at http://godot.be/slides Antonio Kung,

Using OSGi for Secure Service Discovery Slides available at http://godot.be/slides Antonio Kung, Founder/Director, Trialog Antonio Kung, Founder/Director, Trialog Danny De Cock, Researcher Applied Cryptography, K.U.Leuven Danny De Cock,

484 views • 31 slides
Multi-Domain Information Exposure using ALTO: The Good, the Bad and the Solution Danny A. Lachos

Multi-Domain Information Exposure using ALTO: The Good, the Bad and the Solution Danny A. Lachos

Multi-Domain Information Exposure using ALTO: The Good, the Bad and the Solution Danny A. Lachos * Christian E. Rothenberg* Qiao Xiang Y. Richard Yang Brje Ohlman # Sabine Randriamasy Luis M. Contreras Kai Gao &

789 views • 33 slides
Future Internet of Services Future Internet of Services 3 Perspective From a TAS 3 Perspective

Future Internet of Services Future Internet of Services 3 Perspective From a TAS 3 Perspective

Future Internet of Services Future Internet of Services 3 Perspective From a TAS 3 Perspective From a TAS Danny De Cock TAS 3 Project Coordinator Slides available from http://godot.be/slides Email: Danny.DeCock@esat.kuleuven.be Future

252 views • 12 slides
Solution approaches towards verifjed -Kernel Danny Ziesche August 25, 2017 RheinMain

Solution approaches towards verifjed -Kernel Danny Ziesche August 25, 2017 RheinMain

Solution approaches towards verifjed -Kernel Danny Ziesche August 25, 2017 RheinMain University of Applied Sciences Outline Motivation Methods Defjnitions Results Conclusions Open Questions 1 Motivation Motivation kernels should

560 views • 54 slides
Four Layers to Build a Four Layers to Build a Trusted Architecture Trusted Architecture Danny

Four Layers to Build a Four Layers to Build a Trusted Architecture Trusted Architecture Danny

Trusted Architecture for Trusted Architecture for Securely Shared Services Securely Shared Services Four Layers to Build a Four Layers to Build a Trusted Architecture Trusted Architecture Danny De Cock K.U.Leuven ESAT/COSIC

369 views • 17 slides
DANNY CLINCH BY HANNAH PEPLOW 1 WHY DANNY CLINCH? I didnt really know any studio

DANNY CLINCH BY HANNAH PEPLOW 1 WHY DANNY CLINCH? I didnt really know any studio

DANNY CLINCH BY HANNAH PEPLOW 1 WHY DANNY CLINCH? I didnt really know any studio photographers Trawled through various very famous people and wasnt feeling inspired A friend (and fellow Pearl Jam fan) visited from

520 views • 13 slides
WELCOME TO PHY 481 WELCOME TO PHY 481 ELECTROSTATICS ELECTROSTATICS Prof. Danny Caballero

WELCOME TO PHY 481 WELCOME TO PHY 481 ELECTROSTATICS ELECTROSTATICS Prof. Danny Caballero

WELCOME TO PHY 481 WELCOME TO PHY 481 ELECTROSTATICS ELECTROSTATICS Prof. Danny Caballero CONTACTING DANNY CONTACTING DANNY Office: 1310-A BPS Email: caballero@pa.msu.edu Cell phone: 517-420-5330 (texting is fine) CONTACTING RUXIN ZHANG

178 views • 16 slides
Real World IoT Systems Danny Hughes danny.hughes@cs.kuleuven.be

Real World IoT Systems Danny Hughes danny.hughes@cs.kuleuven.be

Real World IoT Systems Danny Hughes danny.hughes@cs.kuleuven.be iMinds-DistriNet KU Leuven Structure 1. Hardware Pla<orms 2. Network Protocols 3. OperaCng Systems

689 views • 36 slides
SP Infrastructure Security Survey & Attack Classification Danny McPherson danny@arbor.net

SP Infrastructure Security Survey & Attack Classification Danny McPherson danny@arbor.net

SP Infrastructure Security Survey & Attack Classification Danny McPherson danny@arbor.net & Ray Hunt ray.hunt@canterbury.ac.nz Apricot 2006 - Perth, Australia 1 Goals Given time constraints, focus will be given to providing

1.03k views • 86 slides
Ramsey Classes by Partite Construction II Honza Hubi cka Mathematics and Statistics

Ramsey Classes by Partite Construction II Honza Hubi cka Mathematics and Statistics

Ramsey Classes by Partite Construction II Honza Hubi cka Mathematics and Statistics University of Calgary Calgary Institute of Computer Science Charles University Prague Joint work with Jaroslav Neet ril Permutation Groups and

1.12k views • 97 slides
Generalized spin representations ohl Ralf K 30 May 2013 n e Gramlich

Generalized spin representations ohl Ralf K 30 May 2013 n e Gramlich

Generalized spin representations ohl Ralf K 30 May 2013 n e Gramlich ralf.koehl@math.uni-giessen.de Outline of talk Part 1: Generalized spin representations of maximal com- pact subalgebras of simply laced KacMoody

446 views • 32 slides
Extended Formulations of Stable Set Polytopes via Decomposition Michele Conforti (U Padova), Bert

Extended Formulations of Stable Set Polytopes via Decomposition Michele Conforti (U Padova), Bert

Extended Formulations of Stable Set Polytopes via Decomposition Michele Conforti (U Padova), Bert Gerards (CIW Amsterdam), Kanstantsin Pashkovich (U Padova) Aussois, January 2013 1/ 30 History Gr otschel, Lov asz, Schrijver 1981 A

543 views • 50 slides
Back To The Future: Lisp as a Base for a Statistical Computing System Ross Ihaka Duncan Temple

Back To The Future: Lisp as a Base for a Statistical Computing System Ross Ihaka Duncan Temple

Back To The Future: Lisp as a Base for a Statistical Computing System Ross Ihaka Duncan Temple Lang University of Auckland University of California Talk Outline This talk will seek to answer a number of questions about statistical software

241 views • 20 slides
The Role of Alloy in Developing Scientific Software John Baugh and Tristan Dyer Civil

The Role of Alloy in Developing Scientific Software John Baugh and Tristan Dyer Civil

The Role of Alloy in Developing Scientific Software John Baugh and Tristan Dyer Civil Engineering and Operations Research North Carolina State University, Raleigh, NC Workshop on

360 views • 17 slides
Amalgamation Constructions in Permutation Group Theory and Model Theory David Evans, School of

Amalgamation Constructions in Permutation Group Theory and Model Theory David Evans, School of

Amalgamation Constructions in Permutation Group Theory and Model Theory David Evans, School of Mathematics, UEA, Norwich. Ambleside, August 2007. () PJC60, August 2007 1 / 25 Amalgamation class method Input: Amalgamation class Class C of

632 views • 25 slides
On Cyclically Pinched and Conjugacy Pinched One-Relator groups Benjamin Fine - Gerhard

On Cyclically Pinched and Conjugacy Pinched One-Relator groups Benjamin Fine - Gerhard

On Cyclically Pinched and Conjugacy Pinched One-Relator groups Benjamin Fine - Gerhard Rosenberger May 28, 2013 Benjamin Fine - Gerhard Rosenberger On Cyclically Pinched and Conjugacy Pinched One-Relator groups Surface Groups Surface groups

788 views • 66 slides
Driving Health through Environmentally Preferable Purchasing Seema Wadhwa & Carolyn

Driving Health through Environmentally Preferable Purchasing Seema Wadhwa & Carolyn

Driving Health through Environmentally Preferable Purchasing Seema Wadhwa & Carolyn Billetdeaux Office of Sustainability Taking A Step Back Everything that we need for our survival and well-being depends, either directly or

355 views • 17 slides

More recommend