The phrase 'smart city' conjures up a vision of a Metropolis like urban jungle. A jungle that is made up of intelligent structures, buildings that know when we enter and leave, traffic that flows easily, and always available parking spaces. A place where the city knows what we want, before we want it, and gets it right every time. This utopian vision of a future is actually fast becoming a reality… But as this brave new world opens up opportunities for business, it also reveals vulnerabilities for the individuals within the smart city too, including their own personal privacy. The smart city is built not only on traditional bricks and mortar but on data too. These data are integral to both the intelligence behind the smart city and our own place in an increasingly digital world. Privacy is one of those things that once lost, is difficult to regain. Are our smart cities leaders taking care, not just to provide efficient, clean living, but to take care of our privacy too?
Marin Ivezic -
"We're building a robot the size of the world, and most people don't even realize it." This is how Bruce Schneier described the Internet of Things in a nutshell… The "things" in our Internet of Things are frighteningly exposed… So, why isn't there more discussion about IoT hacks outside of the cybersecurity community? While the headlines are dominated by news of cyberattacks on retailers, there’s been surprisingly little buzz about this huge threat to what’s increasingly becoming the Internet of Everything… Why doesn't a government somewhere evaluate these frameworks, consult with experts, and draft regulations? If there's one thing everyone agrees on, it's the need for some sort of global standard to adopt. Ideally, industry leaders will come together to create the framework our growing internet of things desperately needs. The successful development and adoption of this network depends on it.
Telecom operators sat back as the new over-the-top (OTT) service providers, internet and tech companies slowly ate away at their business, particularly in the B2C space. A combination of institutional laziness and poor execution on promising initiatives gave these new entrants the time to jump in and snatch away customers…Telecom operators have an opportunity to rethink their business model, transform their organization, and execute on competitive ideas. This is especially true in the B2B space where telecom operators can use their existing infrastructure to offer premium network solutions for large enterprises, particularly when it comes to the Internet of Things (IoT)…Telecom operators are close enough to take a bite out of the IoT market. What they’re missing are the teeth and the determination. While the legacy tools and procedures exist to allow telecom operators to be the leading providers of IoT services and security solutions, it will take an organizational shift to make such a strategy successful. By doing this, telecom operators will not only make money, they’ll secure their future in the presence of ambitious OTT competitors.
In the 60s cartoon The Jetsons, the family lived in a futuristic city with flying cars, a robotic housekeeper, and even a watch that let you do video calling. The Jetsons city of the future is with us in the here and now as we have the technology to build smart cities, and in doing so, we can create amazing places to live and work. This idea of making our cities smart is engaging clever minds all over the world and we are witnessing the emergence of smart places across the globe. All of the visions of smart city projects have one thing in common. They are based upon the creation of, analysis of, and processing of, large amounts of data — aka integrated data exchanges, all predicated on hyper-connectivity achieved often through Internet-enabled devices. These data are the sights and sounds of the processes we use to live and work in municipalities…
The History of Cyber-Kinetic Attacks, Incidents and Research – Chapter 2 of Cyber-Kinetic Attacks bookMarin Ivezic -
(This is the draft second chapter of my upcoming book Cyber-Kinetic Attacks) The fact that cyber-kinetic attacks rarely appear on mainstream news doesn’t mean they don’t happen. They happen more frequently than you would think. Many, for various reasons, aren’t even reported to agencies charged with combatting them. This hinders security experts in understanding the full scope and recognizing the trends in this growing problem. We’ll highlight examples of cyber-kinetic incidents and attacks in this chapter. Some were malfunctions that, nonetheless, demonstrated cyber-physical system vulnerabilities. Some were collateral damage from hacking or computer viruses. The vulnerabilities these exposed inspired a growing number of targeted cyber-kinetic attacks in recent years. If nothing else, the attacks described in this chapter demonstrate that the threat of cyberattacks on critical systems are not hypothetical. They occur increasingly...
Below is a timeline of over 50 historic cyber-kinetic attacks, system malfunctions and key researcher demos targeting cyber-physical systems (CPS), Internet of Things (IoT) and Industrial Control Systems (ICS) resulting in kinetic impacts in the physical world. I tried to select only those that were first-of-the-kind or that significantly increased general awareness about a particular type of an attack or incident.
The World of Cyber-Physical Systems and the Rising Risk of Cyber-Kinetic Attacks – Chapter 1 of Cyber-Kinetic Attacks bookMarin Ivezic -
(This is the first chapter of my upcoming book Cyber-Kinetic Attacks) We live in a world in which the way we observe and control it is radically changing. Increasingly, we interact with physical objects through the filter of what computational systems embedded in them tell us, and we adjust them based on what those systems relate. We do this on our phones, in our cars, in our homes, in our factories and, increasingly, in our cities. Physical objects are so interconnected that we simply take those connections for granted, as if being able to unlock your car by pushing a button on your key fob, unlocking it with your phone or even by walking toward it is the way car locks always worked. This interconnectedness offers us capabilities that exponentially exceed the expectations of science fiction writers and futurists of past generations. But it also introduces disquieting possibilities. Those possibilities reach beyond cyberspace to threaten the physical world in which we live and – potentially – our own physical well-being.
Western publications often picture the People’s Democratic Republic of China (hereafter China) as the world’s chief propagator of cyberattacks. But the picture is much more complex than such broad-brush claims suggest. Few Westerners realize that China and its neighbours in the Greater China region (Taiwan, Macau and Hong Kong) have, over last few years, became the most technologically advanced region in the world – ahead of the West in the adoption, and in many cases even in the development of advanced technologies. Countries in the region were always close to the top of the list of victims of cyberattacks. Factors, such as internal hacktivism and cybercrime perpetrated by the rapidly growing technologically savvy segment of the population and their legion of wannabe hacker apprentices have propelled cyberattacks on the region firmly to the top of that list. Rapid adoption of new technologies without adequately addressing cybersecurity issues only exacerbates the problem. The Greater China region has adopted these technologies aggressively. Yet, in their rush to adoption, enterprises in the region have largely lagged the rest of the world in addressing cybersecurity.
You may have heard, over the last year or two, about the new technological miracle that is the blockchain. It seems that every banker, insurer, manufacturer, artist, lawyer and cybersecurity professional is shouting about blockchain from the highest peak and telling us how it will be used to secure everything against anything for all time, additionally removing those embarrassing blemishes from our skin and freshening our breath at the same time. Clearly some large portion of the blockchain-related content we see in the media is hyperbolic, at best, but it is an important technology nonetheless. Let's take a look at some of the realities of what we can and cannot do with blockchain in relation to cybersecurity.
Below is my attempt at tracking all published IoT and "Smart Everything"-related security guidelines, frameworks and standards. If you are aware of additional entries that should be here, please let me know. List of Internet of Things (IoT) Security Guidelines, Frameworks and Standards by Marin Ivezic is licensed under a...
12Page 2 of 2