“The Internet of Things is called the fourth industrial revolution, and is expected to have value of over $10 trillion by 2025” – McKinsey Global Institute
With great power, comes great responsibility. As the IoT and cloud connected devices grow in number exponentially year on year, the focus lies on how to secure the working of these devices. The IoTForum, an initiative of TiE(The Indus Entrepreneur) explores IoT Security. The main agenda of the forum is to come up with a detailed IoT Security Framework that can be scaled and adopted worldwide.
The IoTForum is chaired by Mr. Arvind Tiwary, an alumnus of IIT Kanpur, IIM Ahmedabad and Wharton School of Business. He brings with him years of experience in this field. BHIVE Workspace organized a panel discussion by IoT forum, where various frameworks to secure IoT devices have been discussed with the community. The IoTForum has discussed all the issues, ranging from cybersecurity to the level of alertness of the end user.
Mr. Vishwas Lakkundi gave an introduction to the security features that needs to be incorporated into the IoT Security Framework. Having years of hands on experience in this field, he clearly mentioned the vulnerabilities that IoT and other connected devices are prone to. Security experts attending the event got a valuable insight on where they should focus for securing the devices.
The panel which is chaired by Mr. Tiwary boasts of other eminent personals such as Sanjay Jain, Sekhar Sanyal, Sanjeev Malhotra and Bikash Barai. Mr. Sanjay Jain, who is one of the core members to formulate the working of Aadhar and the Unified Payments Interface gave a lot of valuable insights. He discussed how secure the Aadhar database is, which is only accessible by verified and registered Authentication Service Agency (ASAs). The security framework for IoT devices can incorporate a lot of safety and security features that are currently being used by Aadhar and UPI.
Mr. Bikash Barai focused on the philosophical side of the security features. He stressed on the fact how “mass surveillance” can keep attackers at bay, where apps can be thought of as “walled gardens”. As the number of connected devices grow exponentially in number, it becomes very difficult to monitor the working of all these devices.
The panel highlighted a few points, which are the key takeaways from the event –
- Cyberspace is like an open sea. The “Captain” should be allowed to charge back at anyone who attacks his vessel. If an intruder is detected, the device administrator should have the full rights to attack him back.
- “Internet is nuclear bomb proof”. The connected world is the future.
- Cyberlaw needs to be updated and should be in sync across physical boundaries.
- The main focus for a product startup should be security.
- The end users should have a basic knowledge of how to protect their devices and personal information.
- The IoTFramework will be drafted after consulting eminent scholars, engineers, cyberlaw experts and architects.
After a detailed discussion on various aspects of the security features that connected devices should adhere to, the panel took some questions from the audience. The discussion was followed by a networking session.
Full event coverage: http://bit.ly/iotforum9
IoT Security Taskforce: http://www.iotforindia.org/ciso-security-platform/
Lessons learnt from the physical world:
By Shibangsh Chowdhury