Welcome to the age of inter-trustability

September 2016 News & Events

The concept of the Internet of Things (IoT) is getting a lot of airtime right now. The IoT is the global network of the future where everything is connected to everything. It’s not a future technology or idea, however, if you have a smart home or even a portion of a smart home, you’re already in an IoT world.

If you have a smart watch or fitness band, you’re also in this world and you probably have no idea who is able to access your information. In security speak, if your security systems are talking to each other, building management systems and human beings via a centralised platform, you’re already ‘IoTing’.

The real IoT, however, goes far beyond the above. In a smart city, for example, street lights, traffic lights (or robots in South Africa), manhole covers and highway gantries (if used competently for the benefit of the users, like that will ever happen) are all examples of ‘things’ that are going to be on the network, sending and receiving information. More than simply sending or receiving information, the things will be acting on information: a simple example would be switching on the heater when the temperature falls below a set level.

My belief is that the key to the IoT, its very foundation if it is to be successful, is security. Yes, IoT will require IT security skills, but IT security doesn’t cut it and IT security people don’t have the ability to handle IoT – they would pick it up easily, but it will be a learning curve. Physical security doesn’t have it either, we can’t even secure an IP camera. Can you imagine asking your financial director for more budget to firewall the air conditioner, or encrypt the controller that waters the garden at certain times of the day?

One of the key areas in which IoT differs from traditional information security is in scale. You are looking at a best-case scenario of having 10 times the number of devices than we currently have online, with more reasonable estimates 20 to 50 times the number. Your free antivirus package is not going to do you much good. For one, the daily updates will crash the Internet.

Another key area is the diversity in the IoT. A plane normally used to fly you overseas is a thing, as is an electronic component in your toaster, and these things aren’t always polite enough to speak IP. Especially in the industrial world, installations are designed to last for many years, not be replaced every three years, meaning you will face a variety of protocols. And doesn’t the security industry have enough issues with IP alone?

What we will require is a security foundation built into the IoT, with standard protocols that deliver ‘inter-trustability’ between devices. To gain our trust, IoT systems will have to build a chain of trust across a variety of devices, using hardware and software security solutions that form part of the core of each device, each platform they are connected to, and every other device.

The bolt-on security we try to use in today’s information-rich environment can’t manage that task. Simply consider your Windows operating system and the apparent ease with which almost anyone with a bit of technical knowledge can get the better of you. When running a nuclear power plant, you don’t want that type of risk – or at least I think most people in the developed world have realised this; a certain family that wants to build nuclear power stations in South Africa probably doesn’t care as long as their cut makes it to Panama.

Andrew Seldon

Editor



Credit(s)




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Alarms are smarter than ever
Spectrum Security Products Technews Publishing SMART Security Solutions Arxtech Perimeter Security, Alarms & Intruder Detection
Modern smart alarms are evolving beyond simple sirens and basic alerts. They now include features such as system health checks, remote management, real-time notifications, mobile apps, and multiple communication options.

Read more...
From the editor's desk: The high price of cheap
Technews Publishing News & Events
Bringing fire and safety, along with intrusion and perimeter protection, into the same publication is an interesting exercise. At their core, all these systems exist for one reason: to warn people ...

Read more...
Fire safety in South Africa
Technoswitch Fire Detection & Suppression Technews Publishing SMART Security Solutions Editor's Choice Fire & Safety Security Services & Risk Management
Fire safety is sometimes ignored, sometimes relegated to whatever is cheapest, and sometimes treated with the seriousness it deserves, given that it focuses on protecting life and assets. SMART Security Solutions asked Brett Birch, MD of Technoswitch, for some insights into the realities of fire safety in South Africa.

Read more...
Preventing and suppressing lithium fires
SMART Security Solutions Technews Publishing Editor's Choice Fire & Safety Security Services & Risk Management Smart Home Automation
SMART Security Solutions asked Clyde Becker, director of Pyro Brand, for some insight into the mechanics of lithium-ion battery fire risks, especially thermal runaway, and to define a comprehensive, layered approach to fire detection and suppression.

Read more...
Integrated layers offer dependable security
OPTEX SMART Security Solutions Technews Publishing Perimeter Security, Alarms & Intruder Detection Integrated Solutions
A layered approach to security tightens protection and minimises downtime and operational risk. Moreover, integrating all the parts of a solution and proving they can do the job before spending money are critical.

Read more...
Southern Africa’s security leaders honoured at the 2026 OSPAs
News & Events
The winners of the 2026 Southern Africa Outstanding Security Performance Awards (OSPAs) were announced at a virtual ceremony on 23 June 2026. The winners in seven categories will progress to the third Global OSPAs in 2027.

Read more...
MPT unveils R50m customer experience centre
News & Events Power Management
Master Power Technologies has unveiled its new Customer Experience Centre, also home to its new regional headquarters in Midrand, Gauteng. The facility spans 6 000 m2 and houses approximately 200 employees.

Read more...
Duxbury Cybersecurity sharpens reseller offering
Duxbury Networking Information Security News & Events
Duxbury Networking has strengthened its Duxbury Cybersecurity business unit by adding WatchGuard and Cynet, giving South African resellers broader, more integrated coverage for the security risks customers are now asking them to address.

Read more...
Disconnect between confidence in identity security and operational reality
Access Control & Identity Management News & Events
New FIDO Alliance and HID study reveals gap between identity security confidence and reality; 94% of enterprises claim they can revoke employee access within 24 hours, yet 35% experienced delays or failures in the past two years.

Read more...
Paxton Solo training available to security installers
Paxton Access Control & Identity Management News & Events
Following the launch of Solo, Paxton’s brand-new access control system, the security manufacturer is rolling out dedicated Solo training sessions across South Africa to support security installers working with the system.

Read more...










While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.




© Technews Publishing (Pty) Ltd. | All Rights Reserved.