Categories

Editor's Choice
Tech Jobs Network
News & Events
Access Control & Identity Management
AI & Data Analytics
Asset Management
Associations
Conferences & Events
Facilities & Building Management
Fire & Safety
Information Security
Infrastructure
Integrated Solutions
IoT & Automation
Perimeter Security, Alarms & Intruder Detection
Power Management
Products & Solutions
Security Services & Risk Management
Smart Home Automation 
Surveillance
Training & Education
Videos
Security by Industry Sector ▾








Print this page printer friendly version

Strengthening IoT security

1 April 2018 Editor's Choice, Information Security, Industrial (Industry)

In January 2018, a new international standard on ‘Security capabilities supporting safety of the Internet of Things’ (Recommendation ITU-T Y.4806) officially came into play. Recommendation ITU-T Y.4806 was developed by Study Group 20 ‘Internet of things (IoT) and smart cities and communities’ of ITU’s Telecommunication Standardization Sector (ITU-T). This new standard classifies security issues for IoT, examines possible threats for security systems, and clears out the safe execution of IoT cyber-physical systems ­supported by security capabilities. Kaspersky Lab, as a member of ITU-T Study Group 20, was one of the contributors to the development of Recommendation ITU-T Y.4806.

Kaspersky Lab researchers have shown that non-computing connected devices’ incidents are among the top-3 – incidents with the most severe financial impact1, for both SMB and enterprise organisations, and are going to increase2. In the wake of the recent TRITON attack, targeting industrial control systems, it became obvious that attacks on cyber-physical systems can affect not only the information aspects, but also functional safety. Therefore, in response to today’s growing prevalence of IoT threats and elaboration on crucial industry standards, Kaspersky Lab ICS CERT experts actively contributed to the development of Recommendation ITU-T Y.4806 ‘Security capabilities supporting safety of the Internet of things’3 in order to determine which security capabilities specified in Recommendation ITU-T Y.4401/Y.2068 ‘Functional framework and capabilities of the Internet of things’ support safe execution of IoT.

The experts provided up-to-date specific recommendations for IoT framework security. Recommendation ITU-T Y.4806 is mostly applicable to safety-critical Internet of Things (IoT) systems, such as industrial automation, automotive systems, transportation, smart cities, and wearable and standalone medical devices. Additionally, Recommendation ITU-T Y.4806 considers how the joint analysis of threats and security capabilities mentioned therein may be used to establish security requirements for the different applications of the Internet of things.

“In the wake of the recent TRITON attack targeting industrial safety systems, it became obvious that attacks on cyber-physical systems can affect not only the information aspects, but also the functional safety. Our aim was not only to plant the flag on the idea of high probability of security breach attacks, but also to determine the methodology for developing specific requirements. We believe that our contribution to ITU-T’s IoT security standard (Recommendation ITU-T Y. 4806) will help organisations develop more efficient cybersecurity strategies to fully face up to modern cyber threats,” added Andrey Doukhvalov, head of Future Techs, Kaspersky Lab.

According to Kaspersky Lab ICS CERT experts, the most common cyber-physical system vulnerabilities include:

• Insufficient protection of embedded web servers (web applications).

• Self-made, poorly implemented cryptography.

• Built-in credentials, which are stored in firmware of programmable logic controller and allow remote hidden access with high privileges.

• Execution of arbitrary code.

• Escalation of privileges.

To counter the above vulnerabilities, and other less frequent IoT security challenges, recommendations developed by Kaspersky Lab ICS CERT experts describe how to proceed from consideration of the types of impact on the cyber-physical system, to the analysis and modelling of threats to functional safety, and then to the development of recommendations on security measures, illustrating the described method with concrete examples.

To avoid attacks such as TRITON and, as per Recommendation ITU-T Y.4806 which summarises the data necessary to establish the requirements for industrial control systems to resist security threats that could affect safety, Kaspersky Lab experts strongly recommend the following:

• To implement reliable and resistant to attacks communication infrastructure and monitoring mechanisms, as well as mutual authentication and authorisation for management and control.

• To implement the audit of management and control procedures and attack detection mechanisms.

• To implement the mechanism to monitor the load on equipment and communication channels, including the detection of both unintentional overload and denial of service attacks.

The full method and list of advice for the protection of IoT critical infrastructures can be found in Recommendation ITU-T Y.4806 (securitysa.com/*itu1).

To find out more about Kaspersky Lab’s Industrial Cybersecurity expertise, visit https://ics-cert.kaspersky.com

References:

1 https://www.kaspersky.com/about/press-releases/2017_third-party-cybersecurity-failures-cost-businesses-the-most (short URL: securitysa.com/*kas2)

2 https://ics-cert.kaspersky.com/reports/2017/11/30/industrial-enterprise-and-iot-security-threats-forecast-for-2018/ (short URL: securitysa.com/*kas1)

3 https://www.itu.int/ITU-T/recommendations/rec.aspx?id=13391&lang=en (short URL: securitysa.com/*itu1)





Share this article:
Share via emailShare via LinkedInPrint this page


Further reading:

Schneider Electric appoints Steven Santini as VP
Power Management Industrial (Industry)
Schneider Electric has appointed Steven Santini as vice president of Secure Power for sub-Saharan Africa. The division acts as the architect of digital resilience, delivering intelligent operational technologies and ecosystems that safeguard critical infrastructure.

Read more...
NEC XON secures mobile provider’s hybrid identities
NEC XON Access Control & Identity Management Information Security Commercial (Industry)
For a leading South African telecommunications operator, identity protection has become a strategic priority as identity-centric attacks proliferate across the industry. The company faced mounting pressure to secure both human and non-human identities across complex hybrid environments.

Read more...
Rise in malicious insider threat reports
News & Events Information Security
Mimecast Study finds 46% of SA organisations report a rise in malicious insider threat reports over the past year: reveals disconnect between security awareness and technical controls as AI-powered attacks accelerate.

Read more...
Surveillance & AI roundtable
DeepAlert Lytehouse Refraime SMART Security Solutions Technews Publishing Editor's Choice Surveillance Integrated Solutions AI & Data Analytics
SMART Security Solutions held an online roundtable with a few surveillance experts to explore the intersection of surveillance and AI, gaining insights into the market and how control rooms are evolving.

Read more...
New campaign exploiting Google Tasks notifications
News & Events Information Security
New phishing scheme abuses legitimate Google Tasks notifications to trick corporate users into revealing corporate login credentials, which can then be used to gain unauthorised access to company systems, steal data, or launch further attacks.

Read more...
What’s in store for PAM and IAM?
Access Control & Identity Management Information Security
Leostream predicts changes in Identity and Access Management (IAM) and Privileged Access Management (PAM) in the coming year, driven by evolving cybersecurity realities, hybridisation, AI, and more.

Read more...
The challenges of cybersecurity in access control
Technews Publishing SMART Security Solutions Access Control & Identity Management Information Security
SMART Security Solutions summarises the key points dealing with modern cyber risks facing access control systems, from Mercury Security’s white paper “Meeting the Challenges of Cybersecurity in Access Control: A Future-Ready Approach.”

Read more...
Securing your access hardware and software
SMART Security Solutions Technews Publishing RBH Access Technologies Access Control & Identity Management Information Security
Securing access control technology is critical for physical and digital security. Every interaction between readers, controllers, and host systems creates a potential attack point for those with nefarious intent.

Read more...
Phishing and social engineering are the most significant risks
News & Events Information Security
ESET Research found that phishing accounted for 45,7% of all detected cyberthreats in South Africa, with higher-quality deepfakes, signs of AI-generated phishing websites, and short-lived advertising campaigns designed to evade detection.

Read more...
Access trends for 2026
Technews Publishing SMART Security Solutions RR Electronic Security Solutions Enkulu Technologies IDEMIA neaMetrics Editor's Choice Access Control & Identity Management Infrastructure
The access control and identity management industry has been the cornerstone of organisations of all sizes for decades. SMART Security Solutions asked local integrators and distributors about the primary trends in the access and identity market for 2026.

Read more...











SMART Security Business Directory


While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.

Published by Technews

»  Dataweek Electronics & Communications Technology
»  Electronics Buyers' Guide (EBG)

»  SMART Security Solutions
»  SMART Security Business Directory

»  Motion Control in Southern Africa
»  Motion Control Buyers' Guide (MCBG)

»  South African Instrumentation & Control
»  South African Instrumentation & Control Buyers' Guide (IBG)



© Technews Publishing (Pty) Ltd. | All Rights Reserved.