classic | mobile
Follow us on:
Follow us on Facebook  Share via Twitter  Share via LinkedIn
 

Search...
Hi-Tech Security Solutions Business Directory
Residential Estate Security Handbook 2018


Strengthening IoT security
April 2018, This Week's Editor's Pick, Cyber Security, Industrial (Industry)

In January 2018, a new international standard on ‘Security capabilities supporting safety of the Internet of Things’ (Recommendation ITU-T Y.4806) officially came into play. Recommendation ITU-T Y.4806 was developed by Study Group 20 ‘Internet of things (IoT) and smart cities and communities’ of ITU’s Telecommunication Standardization Sector (ITU-T). This new standard classifies security issues for IoT, examines possible threats for security systems, and clears out the safe execution of IoT cyber-physical systems ­supported by security capabilities. Kaspersky Lab, as a member of ITU-T Study Group 20, was one of the contributors to the development of Recommendation ITU-T Y.4806.

Kaspersky Lab researchers have shown that non-computing connected devices’ incidents are among the top-3 – incidents with the most severe financial impact1, for both SMB and enterprise organisations, and are going to increase2. In the wake of the recent TRITON attack, targeting industrial control systems, it became obvious that attacks on cyber-physical systems can affect not only the information aspects, but also functional safety. Therefore, in response to today’s growing prevalence of IoT threats and elaboration on crucial industry standards, Kaspersky Lab ICS CERT experts actively contributed to the development of Recommendation ITU-T Y.4806 ‘Security capabilities supporting safety of the Internet of things’3 in order to determine which security capabilities specified in Recommendation ITU-T Y.4401/Y.2068 ‘Functional framework and capabilities of the Internet of things’ support safe execution of IoT.

The experts provided up-to-date specific recommendations for IoT framework security. Recommendation ITU-T Y.4806 is mostly applicable to safety-critical Internet of Things (IoT) systems, such as industrial automation, automotive systems, transportation, smart cities, and wearable and standalone medical devices. Additionally, Recommendation ITU-T Y.4806 considers how the joint analysis of threats and security capabilities mentioned therein may be used to establish security requirements for the different applications of the Internet of things.

“In the wake of the recent TRITON attack targeting industrial safety systems, it became obvious that attacks on cyber-physical systems can affect not only the information aspects, but also the functional safety. Our aim was not only to plant the flag on the idea of high probability of security breach attacks, but also to determine the methodology for developing specific requirements. We believe that our contribution to ITU-T’s IoT security standard (Recommendation ITU-T Y. 4806) will help organisations develop more efficient cybersecurity strategies to fully face up to modern cyber threats,” added Andrey Doukhvalov, head of Future Techs, Kaspersky Lab.

According to Kaspersky Lab ICS CERT experts, the most common cyber-physical system vulnerabilities include:

• Insufficient protection of embedded web servers (web applications).

• Self-made, poorly implemented cryptography.

• Built-in credentials, which are stored in firmware of programmable logic controller and allow remote hidden access with high privileges.

• Execution of arbitrary code.

• Escalation of privileges.

To counter the above vulnerabilities, and other less frequent IoT security challenges, recommendations developed by Kaspersky Lab ICS CERT experts describe how to proceed from consideration of the types of impact on the cyber-physical system, to the analysis and modelling of threats to functional safety, and then to the development of recommendations on security measures, illustrating the described method with concrete examples.

To avoid attacks such as TRITON and, as per Recommendation ITU-T Y.4806 which summarises the data necessary to establish the requirements for industrial control systems to resist security threats that could affect safety, Kaspersky Lab experts strongly recommend the following:

• To implement reliable and resistant to attacks communication infrastructure and monitoring mechanisms, as well as mutual authentication and authorisation for management and control.

• To implement the audit of management and control procedures and attack detection mechanisms.

• To implement the mechanism to monitor the load on equipment and communication channels, including the detection of both unintentional overload and denial of service attacks.

The full method and list of advice for the protection of IoT critical infrastructures can be found in Recommendation ITU-T Y.4806 (securitysa.com/*itu1).

To find out more about Kaspersky Lab’s Industrial Cybersecurity expertise, visit https://ics-cert.kaspersky.com

References:

1 https://www.kaspersky.com/about/press-releases/2017_third-party-cybersecurity-failures-cost-businesses-the-most (short URL: securitysa.com/*kas2)

2 https://ics-cert.kaspersky.com/reports/2017/11/30/industrial-enterprise-and-iot-security-threats-forecast-for-2018/ (short URL: securitysa.com/*kas1)

3 https://www.itu.int/ITU-T/recommendations/rec.aspx?id=13391&lang=en (short URL: securitysa.com/*itu1)


  Share via Twitter   Share via LinkedIn      

Further reading:

  • Trust but continually verify
    November 2018, Technews Publishing, This Week's Editor's Pick, Access Control & Identity Management, Integrated Solutions, IT infrastructure
    Hi-Tech Security Solutions looks at access and identity management and asks some industry players what ‘zero trust’ and ‘least privilege’ access means.
  • Managing who, what and why
    November 2018, Technews Publishing, This Week's Editor's Pick, Cyber Security
    Today’s access control isn’t only concerned with who has access, but also what has access, why they need it and what they are doing with it.
  • Physical/logical convergence
    November 2018, Technews Publishing, This Week's Editor's Pick, Cyber Security, Integrated Solutions, IT infrastructure
    The convergence between physical and logical (or cyber) security will be a game-changer because it will change the way we do everything, from planning to design and all the way to installation and maintenance.
  • Physical and logical convergence is a fact
    November 2018, This Week's Editor's Pick, Integrated Solutions, IT infrastructure
    Convergence, the next buzzword? A dated buzzword? Is convergence ­merely ­integration on steroids? What is convergence?
  • The expanding role of IT in access control
    November 2018, Technews Publishing, This Week's Editor's Pick, Access Control & Identity Management, IT infrastructure
    What role is IT playing in the world of physical access control and how far will its role expand in future?
  • Taking augmented identity to the world
    November 2018, Technews Publishing, This Week's Editor's Pick, Access Control & Identity Management, Integrated Solutions
    Hi-Tech Security Solutions spoke to Gary Jones, VP Global Channel and Marketing biometric access and time solutions) at IDEMIA (formerly Morpho) about his career with the company and its new vision of Augmented Identity.
  • Tracking biometrics into a brave new digital world
    November 2018, This Week's Editor's Pick, Access Control & Identity Management, Integrated Solutions
    The industry is increasingly transitioning from unimodal to more integrated multimodal biometric solutions for more accurate identity verification and faster real-time results.
  • A better approach to fingerprint biometrics
    November 2018, This Week's Editor's Pick, Access Control & Identity Management
    Not all optical biometric fingerprint scanners are created equal. The type of sensor used has a powerful impact on speed, accuracy, reliability and portability.
  • The right access decisions
    November 2018, Technews Publishing, This Week's Editor's Pick, Access Control & Identity Management
    Making the right access control decision depends on what you want secured and how secure it should be.
  • Digital channels and the evolution of ID
    November 2018, This Week's Editor's Pick, Access Control & Identity Management, IT infrastructure
    While the concept of identity (ID) remains unchanged, the rapid evolution of digital technology has dramatically extended both its application and form factor.
  • Using tomorrow’s tools to solve ­today’s security problems
    November 2018, Access Control & Identity Management, Cyber Security, Integrated Solutions
    It is the companies that are already investing in tomorrow’s tools to solve today’s problems that will survive the ongoing onslaught to circumvent security solutions.
  • Fingerprints protect privacy for AIDS testing
    November 2018, This Week's Editor's Pick, Access Control & Identity Management
    A creative, progressive NGO uses biometric fingerprint scanning to redefine confidentiality and AIDS treatment in South Africa.

 
 
         
Contact:
Technews Publishing (Pty) Ltd
1st Floor, Stabilitas House
265 Kent Ave, Randburg, 2194
South Africa
Publications by Technews
Dataweek Electronics & Communications Technology
Electronic Buyers Guide (EBG)

Hi-Tech Security Solutions
Hi-Tech Security Business Directory (HSBD)

Motion Control in Southern Africa
Motion Control Buyers’ Guide (MCBG)

South African Instrumentation & Control
South African Instrumentation & Control Buyers’ Guide (IBG)
Other
Terms & conditions of use, including privacy policy
PAIA Manual
         
    Mobile | Classic

Copyright © Technews Publishing (Pty) Ltd. All rights reserved.