Add to collection(s) Add to saved
  1. Business
  2. Finance

Presentation

advertisement 
ITU Workshop on “ICT Security Standardization
for Developing Countries”
(Geneva, Switzerland, 15-16 September 2014)
IoT (Internet of Things) and Security
Mikhail Kader,
DSE, Cisco
mkader@cisco.com
Geneva, Switzerland, 15-16 September 2014
Abstract
More things are being connected to address a growing
range of business needs. In fact, by 2020, more than 50
billion things will connect to the Internet—seven times our
human population. Examples are wearable health and
performance monitors, connected vehicles, smart grids,
connected oilrigs, and connected manufacturing. This
Internet of Things (IoT) will revolutionize the way we work,
live, play, and learn.
Inadequate security will be a critical barrier to large-scale
deployment of IoT systems and broad customer adoption of
IoT applications. Simply extending existing IT security
architectures to the IoT will not be sufficient. The IoT world
requires new security approaches, creating fertile ground
for innovative and disruptive thinking and solutions.
Geneva, Switzerland, 15-16 September 2014
2
Agenda
Introduction
Extraordinary Benefits
Major Security Challenges
Delivering Security Across the
Extended Network
3
What Is the Internet of Things?
The Internet of Things is the
intelligent connectivity of physical
devices driving massive gains in
efficiency, business growth, and
quality of life”
4
Relationship to the Internet of
Everything (IoE)
People
Process
Connecting People in
More Relevant, Valuable
Ways
Delivering the Right
Information
to the Right Person (or
Machine)
at the Right Time
IoE
Data
Leveraging Data into
More Useful Information
for Decision Making
Things
Physical Devices and
Objects Connected to the
Internet and
Each Other for Intelligent
Decision Making
Networked Connection of People, Process, Data, Things
IoT Is Here Now – and Growing!
50
30
20
BILLIONS OF DEVICES
40
50
Billion
“Smart Objects”
Rapid
Adoption
Rate of Digital
Infrastructure:
5X Faster Than
Electricity and
Telephony
25
Inflection
Point
12.5
10
6.8
0
7.6
TIMELIN
E
2010
Source: Cisco IBSG, 2011
7.2
2015
2020
World
Population
IoT Delivers Extraordinary Benefits
Connected Rail Operations
PASSENGER SECURITY


In-station and onboard safety
Visibility into key events
ROUTE OPTIMIZATION




Enhanced Customer Service
Increased efficiency
Collision avoidance
Fuel savings
CRITICAL SENSING



Transform “data” to “actionable intelligence”
Proactive maintenance
Accident avoidance
Cost savings, improved safety, superior service
Smart City
CONNECTED TRAFFIC SIGNALS



Reduced congestion
Improved emergency services response times
Lower fuel usage
PARKING AND LIGHTING



Increased efficiency
Power and cost savings
New revenue opportunities
CITY SERVICES



Efficient service delivery
Increased revenues
Enhanced environmental monitoring
capabilities
Safety, financial, and environmental benefits
The Connected Car
WIRELESS ROUTER


Online entertainment
Mapping, dynamic re-routing, safety and
security
CONNECTED SENSORS




Transform “data” to “actionable intelligence”
Enable proactive maintenance
Collision avoidance
Fuel efficiency
URBAN CONNECTIVITY



Reduced congestion
Increased efficiency
Safety (hazard avoidance)
Actionable intelligence, enhanced comfort, unprecedented convenience
… But It Also Adds Complexity
New
Business Models
Partner
Ecosystem
APPLICATION
AND BUSINESS
INNOVATION
Data
Integration
Big Data
Analytics
Applications
Control
Systems
Application
Integration
Application Interfaces
Unified
Platform PLATFORM
APPLICATION
ENABLEMENT
Infrastructure Interfaces
APPLICATION Infrastructure
CENTRIC INFRASTRUCTURE
Device and Sensor Innovation
What Comprises IoT Networks?
Information
Technology
Operational
Technology
(IT)
(OT)
Smart
Objects
The Flip Side: Major Security
Challenges
IoT Expands Security Needs
Increased Attack Surface
Threat Diversity
Impact and Risk
Remediation
Protocols
Compliance and Regulation
Converged,
Managed Network
Resilience at
Scale
Security
IoT CONNECTIVITY
Distributed
Intelligence
Application
Enablement
What Can Breach IoT Networks?
What can’t?
Billions of connected devices
Secure and insecure locations
Security may or may not be
built in
Not owned or controlled by IT
… but data flows through the
network
Any node on your network can potentially provide access to the core
Smart City
REMOTE ACCESS


Increased traffic congestion
Creation of unsafe conditions
SYSTEM CONTROL



Device manipulation
Remote monitoring
Creation of unsafe conditions
SERVICE MANIPULATION



Environmental degradation
System shutdown
Lost revenue
Potential impact to services and public safety
IT Breach via OT Network
Breached via Stolen Credentials from HVAC Vendor
40 Million Credit And Debit Cards Stolen
PII Stolen From 70 Million Customers
Reputation Damage*
46% drop in year-over-year profit
5.3% drop in year-over-year revenue
2.5% drop in stock price
CEO Fired
* Source: KrebsonSecurity, May 2014
Unintended Security Exposures*
Farm Feeding System
in the U.S.
Mine Ventilation
System in Romania
Hydroelectric Plant in
the U.S.
* Source: Wired, November 2013
Delivering Security Across the
Extended Network
The Secure IoT Architecture – IT Plus
OT!
New
Business Models
Partner
Ecosystem
APPLICATION
AND BUSINESS
INNOVATION
Data
Integrati
on
Services
Big Data
Analytics
Applications
Control
Systems
Applicati
on
Integrati
on
Cloud-based
Threat Analysis
/ Protection
Application Interfaces
Network and
Perimeter
Security
Application Enablement Platform
Security
Physical
Security
Infrastructure Interfaces
Application Centric Infrastructure
Device and Sensor Innovation
Device-level
Security /
Anti-tampering
End-to-End
Data
Encryption
IT and OT are Inherently Different
IT
• Connectivity: “Any-to-Any”
•
OT
Connectivity: Hierarchical
•
Network Posture:
Confidentiality, Integrity,
Availability (CIA)
•
Network Posture:
Availability, Integrity,
Confidentiality (AIC)
•
Security Solutions:
Cybersecurity; Data
Protection
•
Security Solutions:
Physical Access Control;
Safety
•
Response to Attacks:
Quarantine/Shutdown to
Mitigate
•
Response to Attacks: Nonstop Operations/Mission
Critical – Never Stop, Even
if Breached
IT/OT Converged Security Model
Automation & Control
Config Mgmt
Supervisory
Secure Access
OT
Identity Services
Demilitarized Zone
Application Control
DMZ
Network Security
Enterprise Network
Cloud
IT
Conclusion: Securely Embrace IoT!
New challenges require new thinking!
avoid operational siloes
networking and convergence are key
a sound security solution is integrated throughout
build for the future
Security must be pervasive
inside and outside the network
device- and data-agnostic
proactive and intelligent
Intelligence, not data
convergence, plus analytics
speed is essential for real-time decisions
Mikhail Kader,
DSE, Cisco
mkader@cisco.com
Geneva, Switzerland, 15-16 September 2014
Related documents
Abstract
Abstract
Internet of Things: 50 Billions devices jam
Internet of Things: 50 Billions devices jam
Abstract
Abstract
20 historical facts that might surprise you
20 historical facts that might surprise you
Forum on Internet of Things in Smart Sustainable Cities: A New
Forum on Internet of Things in Smart Sustainable Cities: A New
Internet of things - 18th Digital Dealer Conference & Exposition
Internet of things - 18th Digital Dealer Conference & Exposition
Slides - Murray State University`s RacerNet
Slides - Murray State University`s RacerNet
Abstract
Abstract
Connecting to the Industrial Internet of Things
Connecting to the Industrial Internet of Things
Download
advertisement