Bendor Samuel Peter

Peter Bendor-Samuel

Founder & CEO

The Challenge of Security Services in the Internet of Things | Sherpas in Blue Shirts

  • Share
LinkedInPrint

The first thing to think about in the nature of Internet of Things security is that you have to recognize this is not “one and done.” The fight to secure your IoT environment is an activity that continues in perpetuity. The resources you initially allocate will be substantial, but they will escalate and costs will increase over time. It’s a very different way to think about a process than the services world’s normal engineering approach where you have a large up-front cost that becomes smoothed out, so you spend less and less money on it over time.

In the IoT, we can segment into two kinds of security. And there are different ways you approach the two. And both have a different level of funding.

The first segment is security at the edge, or device level. Here you need to be sure that each level is secure and monitored, from the device at the edge all the way through the network and the apps in an ecosystem. Think of this as a hygiene or compliance role in which you need to ensure that security exists, it’s adequate, you monitor it for effectiveness, and that any attack is limited and limited to only a small segment and can’t spread. Those are the things you need to look for at the compliance level.

The second kind of security is around architecture and end-to-end monitoring. This requires a thoughtful end-to-end view of the objective you want to accomplish through the IoT, how you view security in the total ecosystem, how you architect it into systems, and how you monitor it at a systems level for the entire process that you define within the IoT. This security level typically reports to the chief security officer and requires a different level of thinking, talent, and investment.

If you’re not doing both the hygiene approach and the architectural view, black hats potentially can use any holes to corrupt the whole chain.

Even though you believe you have adequate security by levels, that doesn’t mean you’re safe. The inventiveness of the black hats is so robust that you’ll have to continually invest in protection. You first need to invest in architecting your solution from end to end and then continually monitor it and adapt it as new threats emerge.

One thing you can be sure of is that threats will continue to emerge.

end-to-endInternet of Thingsrisk mitigationsecurity

Related Blog Posts

Real IoT Value Requires a System of Technologies

Our latest enterprise survey revealed that more than 40 percent of large [...]

Read Post

The Equifax Data Theft: What if GDPR were in Force?

The high entropy data protection space has once again gained headlines after [...]

Read Post

IoT Analytics: Living on the Edge or Sailing in the Cloud?

The technology vendor landscape of IoT edge analytics is heating up, with [...]

Read Post

A Key Factor in the CIO’s Ability to Drive Change

I recently met with a major player in the Internet of Things [...]

Read Post

EG with tagline Neg
Linkedin-in Facebook-f Play Instagram
Better Decisions Powered by Tenacious Research    

Contact Us

Who We Are

About Us

Newsroom

Office Locations

Partners & Affiliations

What We Offer

Memberships

Custom Decision Support

Published Research

Careers

Why Everest Group

Explore Openings

Equal Opportunity Employer

Resources

Access Reports

Citation Policy

Everest Group Market Intelligence (EGMI)

Legal

Using the Reports Portal

©2023 Everest Global, Inc.         Privacy Notice          Terms of Use        Do Not Sell My Information

Subscribe to our monthly newsletter to get the latest expert insights and research.

How can we engage?

Please let us know how we can help you on your journey.

Contact Us

"*" indicates required fields

Please review our Privacy Notice and check the box below to consent to the use of Personal Data that you provide.
Consent*