The Broadband Internet Technical Advisory Group (BITAG) has published a report on the technical aspects of Internet of Things security and privacy.
Many devices – besides PCs – are now connected to the Internet, including cameras, sensors, and smart home equipment.
These IoT devices bring new security and privacy risks.
The number and diversity of consumer IoT devices is growing rapidly, and these devices often function autonomously.
Several recent incidents have demonstrated that certain devices do not abide by rudimentary privacy and security best practices.
In some cases, devices have been compromised and allowed unauthorised users to perform DDoS attacks.
Potential issues contributing to the lack of privacy and security best practices include:
- Lack of IoT supply chain experience with security and privacy.
- Lack of incentives to develop and deploy updates after the initial sale.
- Lack of secure over-the-network software updates.
- Devices with malware inserted during the manufacturing process.
BITAG believes its recommendations will help to improve the security and privacy of IoT devices. The recommendations can be found here.