the apocalypse and iot
play

the Apocalypse and IOT Tim Grance grance@nist.gov Computer - PowerPoint PPT Presentation

Nov 17, 2023 •348 likes •534 views

Musings on the Four Horsemen of the Apocalypse and IOT Tim Grance grance@nist.gov Computer Security Division Information Technology Laboratory National Institute of Standards and Technology 2015 Agenda Four Horsemen of the Apocalypse,

  1. Musings on the Four Horsemen of the Apocalypse and IOT Tim Grance grance@nist.gov Computer Security Division Information Technology Laboratory National Institute of Standards and Technology 2015

  2. Agenda • Four Horsemen of the Apocalypse, Cloud , Mobile , Big Data , Social • What is the Internet of Things? • Current Landscape • Other IoT Security Challenges • Path Forward to Securing IoT • IOT Primitives & Composition • Discussion *

  3. Embedded Physical World New Machines* New Environments* New Applications* Billion to trillion New Scale* devices! *NSF

  4. Connecting the Physical World Internet Current Network not designed to connect the physical world

  5. Why Four Horsemen? • Vast change in mobile, second wave of change in cloud, social continues to build, big data gets bigger, and now IOT. • Complex technology, divergent business models, nervous governments/policy makers, different architectural schemes (API vs Cloud, etc.) many competing ecosystems • Complexity, metastasizing attack surfaces, and security technology/thinking that is not scaling *

  6. Four Horsemen • Mobile, Social, Big Data, Cloud, and IOT/Sensors are/will contribute to the vast increase • IoT is expected to exacerbate the complexity surrounding the four horsemen - mobile, social, big data, and cloud • Need advances in math around large datasets, graph theory, machine learning, algorithms, etc. • Future of computer science is in the processing , analysis and safeguarding of large amounts of distributed data (Hopcroft et al.) *

  7. Securing the Physical World Internet Current architecture not designed to secure the physical world

  8. Devices will be heterogeneous Heterogeneous in: • Functionality • Data sensed • Actions invoked • Processing capability • Network and platform protocols, standards, technologies • Applications and services • Security requirements and capabilities Combining physical objects (and specifically, their associated devices) will create new capabilities! *PA/BAY AREA NEWS GROUP *

  9. Myriad Technologies *Passemard 2014 *

  10. Current IoT Landscape The Good • IoT Standards Efforts, Active Consortia • Numerous available products • Numerous potential benefits The Bad • Overlapping IoT Standards Efforts • Ecosystem and Platform battle • Numerous incompatible devices with proprietary technologies • Multiple, complex security challenges *

  11. Other IoT Security Challenges • Standardized IoT-related security definitions, taxonomies/ontologies, nomenclature, report/data formats, risk assessments, design patterns • Authentication, authorization, and access control between very large numbers of devices • Analyzing security of resource-constrained devices • Analyzing and evaluating the security of existing standards and technologies for use in IoT: • Network standards, technologies, and protocols • Web/Cloud services • Mobile applications • Identity management, authentication, authorization, access control • Privacy *

  12. Other IoT Security Challenges • Scalable security analysis of numerous, disparate resource-constrained embedded devices • Identity management between devices, IoT platforms, gateways, and cloud services • IoT platforms (still under development by various organizations) • Organizational policies regarding IoT security *

  13. Path Forward to Securing IoT  Categorize the threats in terms of importance  Denial of Service vs Data Loss  Confidentiality (Encryption) vs Availability (Energy)  Quantify the Big Data challenge for security  Develop primitives that can allow the IoT devices to be secure on a macroscopic vs microscopic level  Encryption of data vs Authentication of devices  Move expensive security operations on hardware vs software  Understand what is important: connectivity vs usability *

  14. Path Forward to Securing IoT  Encourage OEMs to make security a top priority during IoT product development  Develop scalable approaches for analyzing the security of resource-constrained IoT devices  Evaluate the suitability of using existing standards, technologies, and protocols for ensuring the security of IoT components and leverage wherever possible *

  15. Path Forward to Securing IoT  Develop standardized IoT definitions, taxonomies/ontologies, nomenclature, use cases, design patterns  Develop standardized security specifications for IoT platforms, data formats, risk assessments  Encourage the development of a smaller set of defacto standards for IoT security  Dev elop and implement policy and practice to ensure the security of IoT, particularly when applied to critical infrastructures including energy grids or national defense systems *

  16. ‘Networks of Things’ Pieces, Parts, and Data J. Voas Computer Scientist US National Institute of Standards and Technology jeff.voas@nist.gov j.voas@ieee.org 16

  17. Discussion *

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

A/K/A Apocalypse A/K/A Apocalypse ( apokalupsis ) A/K/A

A/K/A Apocalypse A/K/A Apocalypse ( apokalupsis ) A/K/A

A/K/A Apocalypse A/K/A Apocalypse ( apokalupsis ) A/K/A Apocalypse ( apokalupsis ) unveiling or disclosing I wanna see this. I hear its based on a true story.

1.35k views • 86 slides
COLLECTION STRATEGIES DURING THE APOCALYPSE Phil Zwibel In Partnership with: Workshop Delivered

COLLECTION STRATEGIES DURING THE APOCALYPSE Phil Zwibel In Partnership with: Workshop Delivered

COLLECTION STRATEGIES DURING THE APOCALYPSE Phil Zwibel In Partnership with: Workshop Delivered by: Project Executed by: THE RETAIL APOCALYPSE TOYS R US 735 STARBUCKS 150 BEST BUY 250 GAP AND BANANA REPUBLIC 200, THEN 50% OF GAP GLOBAL

526 views • 42 slides
MARXISM & ESCHATOLOGY The Communistic Apocalypse According to Saint Marx The Communist

MARXISM & ESCHATOLOGY The Communistic Apocalypse According to Saint Marx The Communist

MARXISM & ESCHATOLOGY The Communistic Apocalypse According to Saint Marx The Communist Apocalypse/Eschaton Marxism posits an Apocalyptic Battle against Capitalism that will be resolved in a Final Millennial Eschaton when the New

514 views • 30 slides
Revelation or The Apocalypse of John, the Apostle Becoming Closer The Rise of PreMillennialism

Revelation or The Apocalypse of John, the Apostle Becoming Closer The Rise of PreMillennialism

Revelation or The Apocalypse of John, the Apostle Becoming Closer The Rise of PreMillennialism Related to the demise of Historicist approach Theologically bound to new denominations. The appeal of being in on the

296 views • 11 slides
ITU Presentation In Bali AVOIDING THE ZOMBIE SATELLITE APOCALYPSE 8 Sep 2016 The ITU and

ITU Presentation In Bali AVOIDING THE ZOMBIE SATELLITE APOCALYPSE 8 Sep 2016 The ITU and

ITU Presentation In Bali AVOIDING THE ZOMBIE SATELLITE APOCALYPSE 8 Sep 2016 The ITU and the World Should Fear OneWeb Currently there are over 300 GEO satellites which cost over $30Billion Dollars Including FSS and DTH,

147 views • 10 slides
Surviving the Zombie Apocalypse Security in the Cloud Containers, KVM and Xen Ian Jackson

Surviving the Zombie Apocalypse Security in the Cloud Containers, KVM and Xen Ian Jackson

Surviving the Zombie Apocalypse Security in the Cloud Containers, KVM and Xen Ian Jackson <ian.jackson@eu.citrix.com> FOSDEM 2015 originally based on a talk and research by George Dunlap "Some people make the mistake of thinking

328 views • 6 slides
Apocalypse Class 10a PERFORMING MASCULINITY FROM POSITIONS OF IMPOTENCE 1 Revelation Outline

Apocalypse Class 10a PERFORMING MASCULINITY FROM POSITIONS OF IMPOTENCE 1 Revelation Outline

Apocalypse Class 10a PERFORMING MASCULINITY FROM POSITIONS OF IMPOTENCE 1 Revelation Outline Prologue (1:1-3) Letters to the Seven Churches (1:43:22) Part I of the Revelatory Experience (4:111:19) Visions of the heavenly court:

772 views • 26 slides
TUESDAY AYS S WITH THE BIBLE The Book o of Revelation Revelation (to John) The Apocalypse

TUESDAY AYS S WITH THE BIBLE The Book o of Revelation Revelation (to John) The Apocalypse

5/27/2014 saraph serpents TUESDAY AYS S WITH THE BIBLE The Book o of Revelation Revelation (to John) The Apocalypse Class 4 May 27,2014 Opening Prayer Rev 16:5-7 You are just, O Holy One, who are and who were, in passing this

590 views • 12 slides
No, Tuesday's No Good. Can I Get No, Tuesday's No Good. Can I Get Back to You After the

No, Tuesday's No Good. Can I Get No, Tuesday's No Good. Can I Get Back to You After the

No, Tuesday's No Good. Can I Get No, Tuesday's No Good. Can I Get Back to You After the Apocalypse? Back to You After the Apocalypse? You are all totally fucked. Part 1 The Death of Everything Newspapers But Dont, You Know, Pay For Them

993 views • 52 slides
Surviving the Zombie Apocalypse or How to flourish in a career in computers Andy Walker

Surviving the Zombie Apocalypse or How to flourish in a career in computers Andy Walker

Surviving the Zombie Apocalypse or How to flourish in a career in computers Andy Walker (Skyscanner) Knowing yourself is the beginning of all wisdom Aristotle VS Understanding stress Stress / Anxiety Scope (aka number of

459 views • 22 slides
Apocalypse Soon? The future of healthcare in an ageing population Peter Carter, Board Member,

Apocalypse Soon? The future of healthcare in an ageing population Peter Carter, Board Member,

Apocalypse Soon? The future of healthcare in an ageing population Peter Carter, Board Member, ISQua GS1 1 st November 2018 If we dont create the future, the present extends itself Srinath Reddy, Public Health Foundation, India + 2

650 views • 26 slides
Outline The magic circle of Roman spectacle Sense of

Outline The magic circle of Roman spectacle Sense of

12/3/15 Class 10c Xbox Apocalypse: Roman Games, Revelation, & the Secular Apocalypse Outline The magic circle of Roman spectacle Sense of

607 views • 6 slides
The innerHTML Apocalypse How mXSS attacks change everything we believed to know so far A

The innerHTML Apocalypse How mXSS attacks change everything we believed to know so far A

The innerHTML Apocalypse How mXSS attacks change everything we believed to know so far A presentation by Mario Heiderich mario@cure53.de || @0x6D6172696F Our Fellow Messenger Dr.-Ing. Mario Heiderich Researcher and Post-Doc, R uhr- U ni

770 views • 51 slides
Lives of the Saints St. Vincent Ferrer Angel of the Apocalypse Sain int t Vince ncent nt

Lives of the Saints St. Vincent Ferrer Angel of the Apocalypse Sain int t Vince ncent nt

Lives of the Saints St. Vincent Ferrer Angel of the Apocalypse Sain int t Vince ncent nt Ferrer, rrer, ora por nobis bis. July 27, 2013 Sponsored by the St. Vincent Ferrer Foundation of Texas Donations nations are e gratef atefully

543 views • 16 slides
Dream Askew A Game About Queer Strife Amid the Apocalypse by Avery Alder What to Expect?

Dream Askew A Game About Queer Strife Amid the Apocalypse by Avery Alder What to Expect?

Dream Askew A Game About Queer Strife Amid the Apocalypse by Avery Alder What to Expect? Dream Askew is a Table-top Role-Playing Game (RPG). You play as a character following a simple and loose set of rules. You play a character you create.

279 views • 14 slides
Sustainability Transition CREATIVE APOCALYPSE NOW CREATIVE APOCALYPSE NOW GREAT SUSTAINABILITY

Sustainability Transition CREATIVE APOCALYPSE NOW CREATIVE APOCALYPSE NOW GREAT SUSTAINABILITY

Sustainability Transition CREATIVE APOCALYPSE NOW CREATIVE APOCALYPSE NOW GREAT SUSTAINABILITY TRANSITION BEGINS TODAY GREAT SUSTAINABILITY TRANSITION BEGINS TODAY GREAT SUSTAINABILITY TRANSITION BEGINS TODAY The The End End

134 views • 12 slides
Towards Smart Health Monitoring System for Elderly People Achraf Ben Ahmed, Yumiko Kimezawa,

Towards Smart Health Monitoring System for Elderly People Achraf Ben Ahmed, Yumiko Kimezawa,

The 4th International Conference on Awareness Science and Technology August 21-24, 2012, Korea University, Seoul, Korea Towards Smart Health Monitoring System for Elderly People Achraf Ben Ahmed, Yumiko Kimezawa, Abderazek Ben Abdallah

997 views • 42 slides
The Wide QRS Complex Goals: Widen Your Jeffrey Tabas, MD Understanding! Professor of Emergency

The Wide QRS Complex Goals: Widen Your Jeffrey Tabas, MD Understanding! Professor of Emergency

2/5/2013 The Wide QRS Complex Goals: Widen Your Jeffrey Tabas, MD Understanding! Professor of Emergency Medicine 1. Describe the ECG findings of left UCSF School of Medicine bundle branch block 2. Describe the diagnosis of acute MI when

934 views • 6 slides
LEARNING SESSION 2: TEAMWORK & ENGAGEMENT: THE HEART OF HEALTHCARE Dr. Lawrence Yang ,

LEARNING SESSION 2: TEAMWORK & ENGAGEMENT: THE HEART OF HEALTHCARE Dr. Lawrence Yang ,

LEARNING SESSION 2: TEAMWORK & ENGAGEMENT: THE HEART OF HEALTHCARE Dr. Lawrence Yang , Faculty Physician Quality Improvement Doreen Perschon , Principal EnGauge Consulting Rob Hulyk , Doctors of BC, Director of Physician Advocacy Disclosures

727 views • 27 slides
Aaron Pulkka 2 Evolving International Partnerships from Outsourcing to Exporting Aaron

Aaron Pulkka 2 Evolving International Partnerships from Outsourcing to Exporting Aaron

Aaron Pulkka 2 Evolving International Partnerships from Outsourcing to Exporting Aaron Pulkka | Director of Production | Activision 3 Overview Aaron Pulkka Key Ideas My Background Development Outsourcing Game Exporting

549 views • 52 slides
An Error Model for Multi-threaded Single-node Applications, and Its Implementation Lena

An Error Model for Multi-threaded Single-node Applications, and Its Implementation Lena

An Error Model for Multi-threaded Single-node Applications, and Its Implementation Lena Feinbube, Daniel Richter, and Andreas Polze Operating Systems & Middleware Group Hasso Plattner Institute at University of Potsdam, Germany An Error

696 views • 41 slides
SO FAR Revelation Principle Single parameter environments Second price auctions

SO FAR Revelation Principle Single parameter environments Second price auctions

T RUTH J USTICE A LGOS Mechanism Design III: Simple single item auctions Teachers: Ariel Procaccia and Alex Psomas (this time) SO FAR Revelation Principle Single parameter environments Second price auctions Myersons lemma

533 views • 29 slides
Data Stream Management Systems - for Sensor Networks Vera Goebel Department of Informatics,

Data Stream Management Systems - for Sensor Networks Vera Goebel Department of Informatics,

Data Stream Management Systems - for Sensor Networks Vera Goebel Department of Informatics, University of Oslo New Computing Paradigm? Sensor Networks What are DSMSs? (terms) Why do we need DSMSs? (applications)

828 views • 58 slides
Undecidability of FL e in the presence of structural rules Gavin St.John In collaboration with

Undecidability of FL e in the presence of structural rules Gavin St.John In collaboration with

Undecidability of FL e in the presence of structural rules Gavin St.John In collaboration with Nikolaos Galatos Contact: gavin.stjohn@du.edu University of Denver Department of Mathematics 4th SYSMICS Workshop Chapman University Orange,

1.46k views • 115 slides

More recommend