mobile-logo
 

Author: Faud Khan

Jan
25
2019
IoT Mobile Secure By Design Security

If your Toronto and are tracking IoT security and privacy you need to head to the Internet Governance Forum (IGF) on Feb. 27th and the ISOC Multistakeholder events on Feb. 28th. Our CEO will be on a Panel for the IGF to discuss Labeling and will be presenting the Draft report on Labeling at the ISOC meeting the following day.

There will be many open discussions on the current of regulations and requirements that are being developed both in Canada and globally.

Details to IGF event are here

Detail to ISOC event are here

Bring your questions, issues, and problems to our open discussions. We hope to see you there.

 

0
Jan
02
2019
Cyber Security IoT Secure By Design Security

Our CEO and President will be on a International Panel to discuss labeling for cyber for consumer and business products in the Canadian marketplace. As the Chair for the ISOC Labeling group for the IoT Security and Privacy Multistakeholder Process, Faud will be discussing what consumers and businesses need to consider when purchasing products and services and the current development of related standards and projects in Canada.

Please reach out on Twitter or LinkedIn to connect at the show. Hope to see you there.

Link to CES Session

 

 

0
Apr
30
2018
Blockchain IoT ISO Security Standards

This past weekend, I was very fortunate to be the keynote speaker at the China-Canada IoT and Blockchain Innovation and Development Summit in Markham (Toronto). It was great to see so many attendees who are interested in IoT and Blockchain and the potential for how we might be able to address security and privacy in IoT.

With the announcement of the Canada China IoT and Blockhain Research Institute it will greatly help Canadian and China organizations who want to expand their reach for products/services in these regions and be able have a source for testing, evaluation and business development. We are proud to be part of this and we look forward to helping companies secure their IoT solutions.

As a proud member of SDChain, TwelveDot is looking forward to growing the SDChain network which is already at 120K users and counting. As we get closer to building the SDK’s and expanding our platform, trustworthiness is going to be key element of providing security and privacy to IoT product/service users globally.

As many of you have requested a copy of my presentation I am providing it here: SDChain Keynote_v1

 

0
Apr
06
2018
Cyber Security Infrastructure IoT IPv6 ISO Secure By Design Secure Coding Uncategorised

This past week I was fortunate to be invited as a guest speaker for the 1st Internet Society meeting on IoT security. This meeting was well attended from government, private sector companies and academia. It was a means to get on the same page to issues at hand and how do we as users, developers and government secure the Internet and IoT.

The key issues at hand include:

1. Awareness to the issue of IoT Security for Canadian, not just individuals but organizations who want to deploy IoT technologies

2. What exists now from standards and best practice perspective and what approaches can be used

3. What can be done to ensure the next generation of these devices is not a source of another DDoS or other malware on the Internet.

As promised, I am including my presentation and mind map that was presented. Please feel free to share this as necessary, the more groups and individuals who are talking about this subject the better.

For more information check out ISOC here.

ISOC Ottawa_v1

IoT Attack Surface_MindMap

 

0
Jan
02
2018
Cyber Security General News

As we start another new year in business, I wanted to take this opportunity to thank all our customers, partners, and staff for the outstanding work we have accomplished to date. Over the past 8 years we have accomplished quite a bit with a small team and as we move into our ninth year we are expecting significant growth and expansion throughout the year.

Here is some of the small list of our accomplishments:

  1. Developed a proprietary method for evaluation mobile applications (2011)
  2. Developed a proprietary method for evaluating IoT solutions (mobile, cloud, and devices) (2014)
  3. Developed a platform for secure file transfers for clients and partners (2015)

This year, we look forward to launching an ISMS assessment app and platform to help us create more secure businesses using a tired and proven framework for cyber security. This will aid in our continued expansion into all corners of the globe with support by our partners.

Recently we have jointed SDChain as a advisor. SDChain envisions that IoT data from the physical world, should be sharable via a fast and cost-effective digital blockchain network where data producers and data users conduct digital asset exchange, within an open partnership ecosystem, based on globally standardized IoT six-domain model.

We look forward to sharing and securing the world one company and app at time. Join us for the journey.

 

0
Aug
29
2017
IoT Mobile

Well it has been a long wet summer but we are making progress on HiveSense. We are working on the iOS version of the mobile monitoring app and will be testing that over the next few months as we finalize the wiring of all the new hives at Algonquin College.

Over this time, we had the pleasure of being interviewed by Deborah MacAskill from the CBC Radio One. It was a great morning at the hives demonstrating and discussing what we have done and where we want to go. It was also entertaining to see Deborah kinda scared in the hives (don’t worry I was nervous my first time as well). Over the last year, I have learned to live with the bees and not to eat a banana due the pheromones your body will produce. Apparently they are the same as those produced by bees to signal a threat to the hive. I feel sorry for the first guy who figured this one out!

Over the next few months, we look forward to validating our new hardware boards and get the cameras capturing before the snow flies again.

This project is part of a joint initiative between our sister company TwelveDot Labs and Algonquin College. You can see more details on our HiveSense web site. If your interested in getting involved in the program please reach out to us on our contact page.

The HiveSense Team

PS Here are some pics from the day!

And a preview of our mobile app

0
Jun
10
2017
IoT IoT Malware Security

On June 20th, 2017, RISC will be held in Bangalore, India. It is a one day cyber security conference focused on issues around IoT security. Delegates will have the opportunity to attend a wide array of sessions to learn more security concepts and approaches to creating more secure IoT products and solutions.

Our CEO will giving a keynote presentation entitled “IoT Security – Preventing a Global Disaster”. While it sounds ominous it really focuses learning from the bad and what we can do as an industry to correct this before it becomes really dangerous.

Hope to you see you there.

 

0
Feb
03
2017
Cyber Security IoT Security Sensors Smart City

I was asked to present at the Cyber Security 2017: Securing the Smart City of the Future conference which is taking place on February 27 – 28th in Ottawa. This is a Conference Board of Canada event and will be providing insights from the experts on smart cities, and the impact that they will have on urban life and business in the future. My presentation on Monday, February 27th (Plenary 3)  is called “Protecting the Smart City from Cyber Attack”. If you are working on an IoT or cyber security project, you should attend as there will be lots of good discussion and you will get an insight into the many risks of and considerations for the numerous aspects of a secure smart city.

Here is my discussion outline:

This session will discuss the approaches that must be considered by policy makers, technology companies, and city managers when assessing new technologies to be deployed as part of the smart city infrastructure. Cities do not want to be attacked nor have their devices used to attack other cities or foreign governments. It will take planning and foresight to reduce these risks. Standards are being developed that will help with both architecture aspects and how to assess the security and privacy risks.

Hope to you see you there and don’t forget to bring your questions!

0
Jan
30
2017
Foreign Markets Security

As your probably aware, last year around this time we were accepted in to a soft landing program run under Invest Ottawa and the Hague Security Delta. My trips were quite educational and I got to meet a lot of companies in a very short period. Due to my success at these meetings, CanadExport has written an article on the trip and the programs for small businesses.

Given the current state of our world, we as SMBs in Canada need to find open markets to sell our goods and services. We also have a great support system to help us in this journey in the trade commissioners. I would personally recommend you reach out them and using their vast knowledge of local markets and ability to facilitate your first meetings. It will save you effort and frustration. If you ever want to pick my brain on your strategy on global markets please reach out to me. I will share my contacts and my experience with you.

The article on Hague visit is located here: http://tradecommissioner.gc.ca/canadexport/0001082.aspx?lang=eng

0
Jan
27
2017
IoT Secure By Design Security

Well it has been good start to our 6th year in business. We would like to thank all our customers and partners both old and new who are contributing to our success. Without you we do not exist and most importantly get to build stronger more secure companies and products for our clients.

I wanted to bring your attention that on Feb. 7th I will be in Toronto to give a presentation to CIA Plus. My topic will be about IoT Challenges and Issues and Standards. If your in the Toronto area this evening please drop by and join our open discussion on security and IoT.

I will be joined by on my panel with Sangam Manikkayam of Symantec, Bob Martin of Cisco and Victor Garcia of the Schulich School of Business. It will be very informative if you or your organization are considering IoT projects this year. I will provide the security and privacy aspects you should consider when planning or getting ready to launch a new IoT project. If you are able to attend more information can be found here: https://www.meetup.com/CIA-Plus-TO-the-business-of-Cloud-IoT-and-Analytics/events/236370120/

In the meantime, if you have any security questions or concerns for IoT please do not hesitate to reach out to us.

Updated: Feb. 13, 2017

I would to take this opportunity to thank all of those that came out on an icy night in Toronto to the CIA Plus Meet Up. My only regret was the lack of time to discuss all the topics in depth. We did have some good discussion after in the networking portion of the meeting and key topics of discussion worth mentioning are how does one who has no experience in security and privacy conduct threat modeling? The other is finding the resources necessary to support these projects.

While there is publicly available information on threat modeling, you may have need to find a cyber security partner or consultancy that has this expertise in these areas to help you with a project to teach you approach, tools and train your staff. They should be able to provide the baseline elements to implement these aspects in your organization including the after project support, should you required it.

The second point about security resources is a bit more difficult as the number of technical security experts for IoT is limited. If you are looking to hire a security resource(s) look for reference-able projects that include aspects of technical architectures in mobile, cloud and distributed systems. Experience in these key areas will provide the necessary basis to conduct risk assessments against IoT architectures.

As discussed please find the following:

1. A copy of the presentation
2. A IoT mind map
3. The threat poster

Also please find an article from reporter, Denis Deveau, who was in the audience. Thank-you Denise for the coverage of this event.

IoT-Threats-and-RisksCIA Plus – Feb 7 – Final SWG_5_IoT_Technologies_MindMap

0
Next Page »