IoT Ottawa – Blueprint for IoT Security
To everyone that attending the IoT Ottawa Virtual Meetup thank-you for taking the time to attend this session and for participating. It was a good discussion and I hope it was helpful for those of you that attended. It is good to see that events like these can still be held despite the current conditions.
For those of you that were not able to make it to the Meetup here is the abstract of the presentation:
One of the biggest barriers for the adoption of the IoT products is the potential security and privacy risks. To help overcome this reluctance vendors need to ensure that they are clearly demonstrating to the market they have implemented security and privacy in their solution. This workshop will provide an understanding how to secure an IoT solution leveraging a risk based approach using standards. We are going to present how IoT projects should be approached to ensure both security and privacy requirements are included at design time and be validated during the development lifecycle. This is based on countless projects where we have worked on evaluating IoT products in multiple sectors to identify design and process issues including formal testing to T200 and UL2900.
We will share the best practices for the following:
- Design considerations
- Setting up a governance function
- How to operate a Secure Development Lifecycle (SDLC)
- Operational Considerations
- Testing and Verification
Other topics of discussion include:
- Latest developments in the global market for security and privacy requirements
- Strategy considerations
This session will be provided as a workshop to help SME’s hopefully address their security and privacy issues. Please bring your questions and concerns.
As mentioned, I am providing the presentation, the IoT attack surface poster and worksheet for the presentation. I am also hoping to provide the video of the session available at a later date as well.
Note: I will be posting the worksheet a bit later but wanted to share the presentation and poster right away.
Please reach out for any clarifications or questions you may have and most of all be safe everyone!