14 DAY TRIAL // The Internet of Things (IoT) is a growing industry as more and more devices are becoming connected to the Internet and with this, more and more security concerns are raised.
Yesterday, GFI Software released the findings of an extensive independent research project examining this area and the impact that IT administrators can expect from the increased volume of Internet-enabled and addressable devices on the network.
After surveying 202 IT decision makers in organizations with up to 250 employees, GFI Software found that there was a growing concern that there will be a lot of security threats, greater device management challenges and increased costs for IT management.
In fact, 78.6 percent of IT administrators expect their security practices to go through a change as a result of the Internet of Things. Most find that the greatest danger ahead comes from mobile devices. 81.7 percent agree that mobile devices create the most potential as a point of exploitation in the Internet of Things age.
Sergio Galindo, general manager of the infrastructure business unit at GFI Software, has told Softpedia that in order to increase security for all devices, we need to go back to basics and address application security within the design process. “Developers will have to design ‘smart’ devices that are also secure, not only as a standalone device but as a part of a wider connected environment. This may call for a rethink in how they code and approach security on a connected device,” he said.
This, he added, might also lead to the need of new standards in encryption or data transmission, in order to heighten security, and discussions on this topic have to take place now, before “the industry finds itself playing catch-up with the bad guys.”
“The IoT creates new attack surfaces and a higher number of addressable entry points for malware, phishing attacks and a route into the network unless each one is patched properly, has firmware updated and has adequate security management installed company-wide,” Galindo said.
Furthermore, device hacking is a concern, but admins are more concerned about multi-device networks becoming a “bot” in their own right. For instance, while the refrigerator may not send out spam, a vulnerability in the firmware may be used to gain access to other devices via the weak Wi-Fi setup.
Ultimately, one of the biggest issues with the growing number of IoT devices is the privacy concern. “The more intelligent devices become, the more privacy will become an issue. What data is being stored? Where is it going? Is the manufacturer taking stock of what is happening to the device? These are issues that will become more and more important as IoT develops and impacts on homes and offices,” Galindo said for Softpedia.
But the GFI Software general manager mentions that the one question that no one is asking is who is monitoring and managing the Internet of Things. “If the garage door opens on its own in the middle of the night… do you have control over that? Yes, if you’re at home. No, if you’re not there. Wouldn’t that then classify as a security risk?” he asks, admitting that there is also a question about the extent that we can take this technology to in order to make it more manageable and to lower the risks.