Securing the Internet of Things CSM-ACE 2013 13 November 2013 - - PowerPoint PPT Presentation

securing the internet of things
SMART_READER_LITE
LIVE PREVIEW

Securing the Internet of Things CSM-ACE 2013 13 November 2013 - - PowerPoint PPT Presentation

Jul 03, 2023 26 likes •227 views

Intelligence and Security Informatics Securing the Internet of Things CSM-ACE 2013 13 November 2013 www.cyberunited.com Darin Andersen 20 Years Hi-Tech and 12 Years Cybersecurity Experience International Cyber Speaker, Insider Threat, SiOT

slide-1
SLIDE 1

Intelligence and Security Informatics

www.cyberunited.com

13 November 2013

Securing the Internet of Things

CSM-ACE 2013

slide-2
SLIDE 2

www.cyberunited.com

Darin Andersen

20 Years Hi-Tech and 12 Years Cybersecurity Experience International Cyber Speaker, Insider Threat, SiOT Created “Securing our eCity” (2008) “Securing the Internet of Things Forum” (2012) CyberTECH – Eco system for iOT + Cyber CyberHive – Cyber & Big Data Inccubator CyberUnited www.cyberunited.com Intersect - Threat Detection & Prevention System

slide-3
SLIDE 3

www.cyberunited.com

iOT Defined

“Things” have identities and operate in “smart mode” using “intelligent interfaces” to connect and communicate within social, environmental, and user contexts

slide-4
SLIDE 4

www.cyberunited.com

3 Dimensional Convergence

Big Data Predictive Analytics Machine Learning Informatics Defense & Cyber Life Sciences Health Sciences Sports & Active Connectivity Everywhere

Miniaturization

Sensors GPS

slide-5
SLIDE 5

www.cyberunited.com

iOT by the Numbers

$5.0 trillion market, growing to $9.0 trillion by 2020 (IDC) 50 billion devices connected by 2020 (Cisco) 220 exabytes of data storage by 2015 (ASPIRE) 40% decrease in iOT related costs by 2020 (GE)

slide-6
SLIDE 6

www.cyberunited.com

Mobile iOT 2020

slide-7
SLIDE 7

www.cyberunited.com

November 18, 2013

Making Things Smarter

Things Sensors Local Area Communications Local Scanning Devices Storage & Analytics User Facing Services

Internet of things Sensor Networks Intelligent Tags

Internet RFID Sensors

slide-8
SLIDE 8

www.cyberunited.com

iOT Use Cases

Continuous firmware/upgrades for vehicles Asset tracking of goods in transit Home & industrial building automation “Smart” infrastructure and consumer goods Real-time health monitoring diagnosis & drug delivery

slide-9
SLIDE 9

www.cyberunited.com

iOT Healthcare Use Case

55% growth in health monitoring in 2013 Up from 22% in 2012 WHY COMPELLING

  • Scaled Expertise
  • Ongoing Monitoring
  • Hospital Prevention
slide-10
SLIDE 10

www.cyberunited.com

November 18, 2013

iOT Security Challenges

CRITICAL FACTORS “Exafloods” of data to protect Miniaturization and “small” energy requirements Information “availability” with assured integrity Confidentiality and privacy BAD ACTORS External Attack Malicious Insider Threat + Impostors

slide-11
SLIDE 11

www.cyberunited.com

iOT Privacy and Security

Executing against our promise ? Do customers have choice ? Do customers have visibility and and ability to order corrections ? Is data accurate ? Protecting Sensitive Data ? Properly Disposing of Customer Data ? High Data Integrity ? In Compliance ? Adequately protecting data ? In Compliance ?

slide-12
SLIDE 12

www.cyberunited.com

Hacking Hacking the the iOT iOT

Fraud IT Sabotage IP Theft Tampering

slide-13
SLIDE 13

www.cyberunited.com

iOT iOT Insider Insider Threat Threat

slide-14
SLIDE 14

www.cyberunited.com

How Do We Find Insiders Today

By Accident After the Fact Not at All

slide-15
SLIDE 15

www.cyberunited.com

Correlat Correlate e Behavioral Behavioral + + Machine Machine Data Data

<time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data> <time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data><time><IP addr><hidden data>

Year N Click Action Fills Event Data Records - Graph Shows The Events Count and Type Tabbed Panel will provide Tables - Personnel, Event Data Records, COMA Categories, Agents Browser Start Threat Analysis is a Button - Does What it Says Status Plot on The Right Will Indicate Threat Results Venom Fox - Demo Dashboard Y ea r 1 Da ta R ecords Y ea r 2 Da ta R ecords Y ea r 3 Da ta R ecords Y ea r 4 Da ta R ecords Y ea r 5 Da ta R ecords E vent Da ta Start Threat Analysis Venom Fox Demo - Demo Dashboard
slide-16
SLIDE 16

www.cyberunited.com

iOT Security Solutions

Lightweight solutions DEVICE LIFE CYCLE

  • 1. Secure booting
  • 2. Access control
  • 3. Device authentication
  • 4. Firewalling and IPS
  • 5. Updates and patches
slide-17
SLIDE 17

www.cyberunited.com

Key Principles

Edge to enterprise security Really means that information is secure Information is available when needed Information stays confidential Accurate, authentic and timely Layers of embedded processing at various nodes State of the art: Embedded security in smart microprocessors and microcontrollers

slide-18
SLIDE 18

www.cyberunited.com

What’s Next

slide-19
SLIDE 19

www.cyberunited.com

November 18, 2013

Securing the Internet of Things 2014

! ! ! ! ! ! ! !

!

Securing!the!Internet!of!Things!Forum!!

February!24,!2014!!

The!Internet!of!Things!(IOT)!is!the!term!for!the!phenomenon!where!people!and!things!(physical!devices!such! vehicles,!commercial!and!industrial!equipment,!medical!devices,!remote!sensors,!etc.)!are!connected!to! networks!that!are!linked!to!the!Internet!and!communicating!vast!amounts!of!valuable!data.!While!the!idea!is!not! new,!the!recent!proliferation!creates!a!sense!of!urgency!to!better!understand,!manage!and!consume!the! resulting!data.! Leading!innovators,!investors,!and!executives!will!explore!the!Internet!of!Things!and!the!implications!for!new! approaches!in!thinking!by!government,!business,!and!individuals!regarding!privacy!and!security!across!these! widely!distributed!networks!and!the!resulting!amounts!of!data.! AGENDA! 3:15!pm!–!3:45!pm!! Registration!! 3:45!pm!–!4:00!pm! Welcome:!Robert!Rodriguez,!Chairman!&!Founder,! !! 4:00!pm!–!4:10!pm! Introduction:!!Darin!Andersen,!President!&!CEO,! ,!! Chairman!&!Founder,! 4:10!pm!–!4:20!pm!!!!Asheem!Chandna,!Investor!&!Company!Builder,!Partner,! ! 4:20!pm!–!4:35!pm! Special!Guest:!Howard!Schmidt,!Retired!Special!Assistant!to!the!President,!! !! ! ! ! ! Cybersecurity!Coordinator!at!Executive!Office!of!the!President,! ! 4:35!pm!–!5:05!pm!! Keynote!Speaker:!Daniel!Obodovski,!CoY !founder,!Managing!Partner,!DND!! !! ! ! ! ! Ventures,!Author,!“The!Silent!Intelligence,!The!Internet!of!Things”! 5:05!pm!–!5:55!pm! Panel!1:! !“Who!Owns!and!Protects!the!Democratized!Data!of!IoT”! !! ! ! ! ! Moderator:!Dean!DeBaise,!Executive!Chairman,!AKTA,!Chairman!&!CEO,!! ! !! ! ! ! ! ! ! ! !! ! ! ! ! Panelists:! Karl!Gumtow,!CEO,! !! !! ! ! ! ! ! ! ! Cecilia!Anastos,!Founder,! ! !! ! ! ! ! ! ! ! Todd!Peterson,!CTO,!Sr.!VP!of!R&D,! !! ! ! ! ! ! ! ! Harry!Sverdlove,!CTO,! !! ! ! ! ! ! ! ! Cleve!Adams,!CEO,! 5:55!pm!–!6:55!pm! Panel!2:!“Privacy!and!Security!Implications:!What!New!Cybersecurity! Regimes!and!Policies!Will!be!Needed!for!the!Resilient!Network?”! !! !! ! ! ! Moderator:!Jeffrey!Carr,!CEO!&!Founder,! !!! !! ! ! ! ! ! Panelists:!! Mark!Weatherford,!Principal,! ! !! ! ! ! ! ! ! ! Shawn!Henry,!President,! Robert!Brese,!CIO,! ! ! Guy Filippelli,!CEO!&!Founder,! !! ! ! ! ! ! ! ! !! 7:00!pm!–!10:00!pm!! CyberTini!Networking!Reception! ! ! ! !

RSA San Francisco – 24 Feb Black Hat Las Vegas – 5 Aug San Diego – 1 Oct CyberMaryland (Wash DC) – 8 Oct CSM-ACE 2014 – proposed

slide-20
SLIDE 20

www.cyberunited.com

November 18, 2013

discussion

Darin Andersen darin@cyberunited.com M: 619-341-4086