It’s a daunting task trying to ensure complete IoT medical device security, and it may even seem impossible. Two industry experts discuss this issue and offer their advice.
In September 2014, some Google employees filed for patents they called “Security Scoring in a Smart-Sensored Home.” For the first time, those patent requests are publicly available, and give some understanding behind what Google is planning to do with their Nest and Dropcam acquisitions. According to the application, “This patent specification relates to apparatus, systems, methods, and related computer program products for providing home security objectives. More particularly, this patent specification relates to a plurality of devices, including intelligent, multi-sensing, network-connected devices, that communicate with each other and/or with a central server or a cloud-computing system to provide any of a variety of useful home security objectives.”
Dojo-Labs announced a Linux-based “Dojo” home security gateway that notifies users of security threats via a mobile app and a glowing orb.An Israeli startup called Dojo-Labs has launched $99 presales on its Dojo security device, with shipments due March 8. After the first year, yearly subscriptions cost an additional $99 per year. CEO Yossi Atias has confirmed to LinuxGizmos that the device runs on a Linux operating system based on a Broadcom distribution.
Silicon valley start-up Dojo Labs has created a device aiming to make the Internet of Things in homes around the world more secure.A team of security experts and hackers are the creative minds behind the Palo Alto-based company’s pebble-shaped device, designed to protect a smart home’s connected devices against ‘malware, viruses and cyber attack’.Connecting to the home network, the Dojo acts as a security layer between all computers, mobile and Internet of Things-devices – from baby monitors to smart locks and home automation systems – and external threats, ensuring the user’s security and privacy at all times.
This week, Lowe’s released the next generation of its smart home platform, Iris. The upgraded offering is more mobile-friendly and is designed to address the (often mundane) issues homeowners face related to comfort and security.The hub and core devices have been redesigned and split apart. The hub was originally sold along with security or smart energy packages, but is now a standalone offering priced at $59.99. The hub, which has always had various communications protocols like Z-Wave, ZigBee and Wi-Fi, now also has Bluetooth.
F-Secure is looking to go that extra mile in consumer security with the launch of an anti-hacker appliance for the Internet of Things.The device, dubbed SENSE, works as a secure gateway, policing traffic to devices that might be insecure and generating alerts. For example, it will warn consumers if their router is running with default settings, and therefore with a more easily hackable password.Credential-spewing iKettles, insecure hubs and potentially snoopy smart TVs are characteristic of the generally lamentable state of IoT security.
Amid growing concerns that IoT devices are inherently vulnerable to attacks that could compromise users’ information privacy and security, Galois today announced that it has been awarded a $1.86 million NIST National Strategy for Trusted Identities in Cyberspace (NSTIC) grant to build a secure data storage system that enables next-generation IoT capabilities without sacrificing privacy. Galois’ authentication and mobile security subsidiary, Tozny, will serve as the technical lead for the NSTIC pilot program.
Medical devices are undergoing an evolutionary change partly due to the current emergence of the Internet of Things (IoT), opening the door to an entirely new level of complications. Before we dive into details about connected medical devices and some of the benefits and current threats, let me make something perfectly clear: Stolen medical data on the black market is significantly more valuable than debit or credit card numbers, and typically includes far more personal information. Cyber attacks, typically malware infections, are proving successful – despite hospitals deploying a variety of security methods.
Developers face a host of challenges when implementing a robust security model for Internet of Things (IoT) devices and gateways. At the very least, poor security can allow denial-of-service attacks, corporate espionage, theft and brand damage. More serious problems, such as injury or death, might occur with applications targeting equipment like automotive software and industrial equipment. For example, the Stuxnet attack led to destruction of a large number of nuclear centrifuges in Iran.At the JavaOne Conference, Luca Dazi, senior software developer at Eurotech, elaborated on the threat model and offered best practices for implementing better security into an IoT gateway.
The Online Trust Alliance (OTA), the non-profit with the mission to enhance online trust, today released the last-call update of the Internet of Things (IoT) Trust Framework. The Framework is a comprehensive global initiative that provides guidance for device manufacturers and developers to enhance the security, privacy and sustainability of connected home devices, wearable fitness and health technologies, and the data they collect.