Internet of Things (IoT) is about smart appliances that have a computer chip at the core and are connected to the Internet for functioning. An example can be a remotely triggered smart oven that heats up the food inside by the time you reach home from the office.
Usage of smart appliances is on the rise as you can control them from anywhere, using your smartphone or portable computer – via the Internet. That means, your appliance, or any smart gadget for the matter, is connected to the Internet and is prone to cyber-attacks. The Internet of things is basically the Internet that connects different types of devices, other than just the computers – something like the SkyNet. You use your computer/tablet/smartphone to control the connected devices.
Internet of Things Security
Another good example could be the fire alarm system. You get notified on your phone when the alarm goes off. You can log into your CCTV system using a smartphone or tablet to see how things are at home and take action accordingly. Or the alarm may be programmed to dial fire department directly.
Read: Dangers of Smart or Internet-connected Toys.
Dangers of Internet of Things
With almost everything connected to the Internet, it is not just the computers that are at risk of being compromised but even your toaster. I read a comment somewhere, involving a firewall for your toaster. You need to take action to secure anything that you know is or will be connected to the Internet.
Every smart device or gadget needs to be secured so that it is not easily available to hackers. In the case of the toaster, you can use a password to secure it. The password again should be a strong one. Experts suggest different passwords for different devices. In my opinion, it will be hard to remember passwords if you have your entire house connected to the main computer that controls a central heating system, fire alarm sensors, and other devices via Bluetooth or other wireless techniques. The best method would be to use a good firewall device for the entire collection. You may or may not be able to add a firewall to each and every device, but you sure can make sure the firewall on the central computer is good enough to protect your devices from being hacked.
We are not talking about future, but the very present. It has been reported by Proofpoint Inc, a security company, that someone had used household appliances to initiate a spam email attack against specific enterprises or individuals. According to Proof Point, some 750,000 emails were being sent by devices spread all over the world. It means that the hackers had full control of people’s smart appliances, and they could use it for any purpose, any time. IoT ransomware can hijack your gadgets too!
Take a look at this Infographic about IoT Security.
Secure objects on Internet of Things
If it is on the Internet, it has to be secured in the same way as you secure your computers connected to the Internet. While making sure that the central computer is always up to date and patched, you also have to see options available with the smart devices. Since the device is on the Internet, it must have an IP address. You can get the IP address using the central computer and use it to log into the computer chips on different devices. Check out if there are any other options like a firewall. If yes, turn them on. Most of the devices like routers etc. will have firewalls for sure but other consumer items may not have one. That is why you need a strong firewall to make your entire network invisible on the Internet. This firewall should be attached to the main computer or central computer – as you may call it – that controls all other devices.
Read: Ultrasonic Tracking, the new threat that tracks IoT devices with Ultrasound Signals.
You also have to care for the passwords that come with the devices. Normally, they (the passwords) are 1234, 0000 or “password” and as such, are very easy to crack. Anyone can take over the device if you do not change the password(s) to something stronger. Check to see if the device supports passwords and if yes, assign it a good password rather than just leaving it at 1234.
Also read: Security threats in Smart Devices and Privacy Issues.
It looks too early to care about security issues related to Internet of Things, but misuse has begun, as evident from the report from Proof Point. Just understand the following: if it is on the network, it can be hacked as it will have its own address. Accordingly, take care to secure the devices so that they do not pry on you. What if someone hacks into your CCTV system and starts monitoring you? The possibility exists and hence you should be prepared.
Want to read about Net Neutrality?
Read your linked reports, and your words….ouch! Where to begin? Better and more web app firewalls for service providers, better fragmented datagram filters where devices are wireless (look out printers!)…you are right, we’ve all got pause to consider this. Just a year ago some scoffed that “indestructible” spybot kernels could live on a CPU as CPUs have no memory; then they were demonstrated to have infected a number of Chinese consumer PCs…as you point out, so quickly this has become an easy threat to ANYTHING made of metal and in any way interfacing with the internet.
FROM THE ARTICLE: With almost everything connected to the Internet, it is not just the computers that are at risk of being compromised but even your toaster. I read a comment somewhere, involving a firewall for your toaster. You need to take actions to secure anything that you know is or will be connected to the Internet.
MY RESPONSE: Indeed! And the best place to do it is where said Internet connection enters your home or office (not necessarily physically, but at least electronically/logically) right next to, or inside, the route or gateway. If one doesn’t have a router or gateway with a firewall built-in to it, then I would normally advise to just get a firewall appliance, and mount it in the right place in the circuit in relation to the router.
The problem is that stand-alone firewall appliances can be kinda’ expensive… mostly ’cause they’re just *SO* much more sophisticated and configurable than the usually really only basic firewall that’s built-in to the typical home or small office DSL or cable modem gateway. For example, the Cisco RV110W-A-NA-K9 (just to name one) is hard to find out there for much less than around $75(US); and for from that amount to not more than $25(US) more, you can get a fairly decent entire DSL or cable modem gateway which has, built right into it, a cable or DSL modem, a router, a switch, WI-FI, and a built-in firewall; which firewall, no, isn’t as sophisticated as a stand-alone one, but is usually good enough for a typical home or small office.
A firewall at that point in one’s home or small office LAN is necessary because while you can run a software firewall on a desktop/laptop/tablet computer…
…I’m pretty sure that COMODO, or any other makers of software firewalls, haven’t released any toaster editions. [grin]
__________________________________
Gregg L. DesElms
Napa, California USA
gregg at greggdeselms dot com
Veritas nihil veretur nisi abscondi.
Veritas nimium altercando amittitur.