The document discusses the growing issues surrounding security of internet of things (IoT) devices. It notes that cyber attacks cost businesses hundreds of billions annually and vulnerabilities often exist for over a year before being addressed. With the rapid growth of connected devices, addressing IoT security is increasingly important. The PETRAS research hub involves over 50 projects across 11 UK universities to better understand social and technical challenges around privacy, ethics, trust, reliability, and security of IoT systems. The goal is to make the UK a leader in trusted IoT expertise and help ensure security does not solely rely on consumer burden.
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Dr Alisdair Ritchie | Research: The Answer to the Problem of IoT Security
1. <ALISDAIR RITCHIE>
PETRAS – National IoT Research Hub
University of Warwick
Research:TheAnswerto the Problem of IoT Security
2. Research: The Answer to the Problem
of IoT Security.
Dr Alisdair Ritchie – PETRAS Impact Champion.
WMG, University of Warwick.
3. Setting the Scene
• Cyber attacks cost businesses as much as $400 billion a year
(Lloyds London)
• 99.9% of exploited vulnerabilities were compromised more
than a year after the vulnerability was published (Verizon
2017 Data Breach Investigations Report)
• Devices – 20.4 billion connected devices in use by 2020 up
from 8.4 billion in 2017 (Gartner)
• Internet of Things – In 2017, spend on IoT hardware was
$2.09 billion (Gartner)
3
4. The Internet of Things (IoT)
• Smart technologies make previously unintelligent things (like
home thermostats, white goods, or building management
systems) able to compute and communicate – typically
wirelessly
• Almost all the data that IoT devices send is to other
machines – there are no humans involved: ‘M2M’
communications
• Generic chipsets can be used to provide specific functionality
without consideration for the rest of the functions
• Security can cost more to research and implement than to
make the devices themselves
5. Applications of IoT – diverse and pervasive
• Households
– Smart thermostats
– White goods
– Televisions
• Building Management Systems (BMS) – sensors and controls
– Heating, ventilation & air conditioning
– Access controls
• Industrial and Utilities control systems
– Sensors and actuators (pumps, heaters, valves, etc.)
• Medical and Hospital equipment
– Patient monitors
– Patient information recording
• Transport
– Condition monitoring
– Asset location
• Retail
6. The Future Digital World
• Big Data - 90% of all the data in the world has been
created in the last two years (SINTEF ICT)
• The Robot “Birth Rate” is doubling every five years
(International Federation of Robotics)
• AI could add an additional £630bn to the UK Economy by
2035 (Government AI Report – Dame Wendy Hall)
• Regulations to govern these functions don’t exist yet and
research is required to generate this knowledge
8. Some examples of threats
• Contactless card skimming
• Hacking Building Management Systems
• Baby monitors
• Smart TVs
• USB devices
• Smart domestic goods
• Smart toys
• Cars, now and in the future
• Healthcare device
– From Fitbit to infusion pumps
9. Smart Toys
Increasingly, toys are equipped with internet
communications, cameras, geolocation, etc.
• Risk of digital stalking and peeping
(geolocation with picture data)
• Robots, dolls, drones
• Threat not yet fully emergent, but risk is
perceived
• PETRAS project at Lancaster called IoT4Kids
seeks to understand the security and privacy
implications for children using the IoT
See: http://www.cnet.com/news/hello-headaches-barbie-of-the-internet-age-has-even-
more-security-flaws/
10. The Value of Personal Data
Bagram US Air Base in Afghanistan as lit up by Strava
Source: BBC
11. Positive for the Future
• Productivity – Research could see machines double their
outputs every four years through rapid decision making and
environmental learning
• Retail and Logistics - Faster / more accurate order delivery on
demand
• Healthcare – Simple devices could provide solutions that
enable elderly people to stay in their homes – NHS Dementia
Test Bed
13. PETRAS – key facts
Projects grouped by type into
‘Constellations’, sample one or
more of the Stream threads
• 11 world leading universities
• Combined hub value: £23m
• More than 50 projects
launched since 2016
• Blackett Review expertise
• 47 partners at submission,
60+ added since, combining
presence in the UK, Central
Europe and America
(giving International links
and perspective)
• Inter– and multi-disciplinary
focus split between social and
technical knowledge spheres
16. 16
Aims
• Deliver real co-produced cross-sectoral, impactful, and
timely technical and socioeconomic benefit;
• Place the UK as world-leader in expertise and deployment
of trusted IoT technology;
• Create a cross-disciplinary environment across research
domains, industries, and government departments;
• Create a social platform for innovation and co-creation
with users and stakeholders;
• Provide an enduring legacy from the PETRAS Hub, beyond
the end of the funded period.
To:
18. PETRAS Demonstrators
• IoT in the Home (BRE)
• IoT in Critical National Infrastructure (Airbus /
Costain)
• Data Sharing in the IoT (Cisco)
• IoT in Smart Buildings (Newcastle and Cube Controls)
• Moving in the IoT (Meridian / Costain / JLR)
• Art Connect (Tate)
Around £1m invested, including match funding
‘Safe Deployment of Knowledge in use’
19. IoT in the Home
The context of the demonstrator project is
BRE’s Innovation Park, which includes
more than 8 domestic buildings, 3 of which
have integrated photovoltaic power
generation (PV) with battery storage and
network import/export management.
Deliverables:
• Real full-scale ‘Smart Home’
• Smart Home simulator
• Use case – Micro energy-
trading in a community
• Report on factors influencing
adoption & acceptability
• Guidelines for secure IoT
deployment
Impact:
• Design, procurement,
deployment and operation
• Government and Industry
policy advice
20. Art Connect - Tate
• Identify pieces, ensure
provenance
• Monitor location and
movement, temperature
and pressure
• Observe condition across
borders in a seamless,
secure, and cost-effective
way
Protecting the
irreplaceable!
21. What is the Challenge?
• Increase knowledge of the need for cybersecurity
to address the drive to the cheapest solution
• Provide common knowledge base that allow
government and industry to make informed
decisions
• To move some of the onus for research into
issues which affect us all into the public space
• To build communities that can work together on
the problems of the future
22. Artificial Intelligence
Today’s Issue or the Future’s?
“the people writing the algorithms for software that will control
many automated aspects of our daily lives in the future are
mainly young, white men.”
“Almost by definition, machine learning algorithms will pick up
on any bias in the data they are given to learn from”
Dame Professor Wendy Hall
University of Southampton and PETRAS
writing in “The Conversation”
23. “If the Burden for Ensuring Security Falls on Consumers
then we have Failed”
Professor Joe Butler, Former Chief Scientist to the Department for Digital, Culture,
Media and Sport
24. Thank you!
Dr Alisdair Ritchie (a.ritchie@warwick.ac.uk)
PETRAS Impact Champion - WMG, University of Warwick
Notas del editor
Cars, planes, homes, cities, and even animals are being connected. We are putting software everywhere.
In today's world, it’s important that technology is available, protected and secure.
Interdisciplinary engineering incorporates the knowledge and skills associated with other disciplines. This type of engineering has a broader scope than traditional engineering. Cyber Security is developing into a core subject
Big Data - Look to massive research centres created by internet companies such as Facebook and Google.
The rate of expansion for date is increasing
IoT devices market in 2017 represents some 8.4 million devices which are worth almost $1.7 trillion.
Meanwhile the rapidly growing IoT services market was worth $273bn in 2017.
This is a huge market for a technology which has existed for less than 20 years.
This market is forecast to expand to more than 20 billion connected devices with a value of $3 trillion by 2020
Robotics – there are around 1,8 million industrial robots in the world today but with the robot birth rate doubling, this is expected to more than 3 million units in 2020
Productivity – As Industry 4.0 and smart factories evolve this will lead to lower costs, greater production capacity, faster and more accurate production with higher quality and reliability where all the robots in a factory are able to learn changes in conditions and evolve processes together. Indeed it has been said that The factory of the future will have only two employees, a man, and a dog. The man will be there to feed the dog. The dog will be there to keep the man from touching the equipment.
Currently many of these processes sit in manufacturing but as this extends to food production and water management, it could help to offer a solution to what will be one of the big issues of the future – food and water.
Retail and Logistics – 3D printing will allow for the production of low volume items on demand whilst the smart inks will impact in tracking and tracing products. This will allow traders to track products at an individual unit level by where they were manufactured, for what market, what level of tax was paid as it crossed borders so that the logistical and quality assurance chain can be determined throughout the life of every product.
Healthcare – Perhaps one of the most dramatic changes that connected technologies will ring is to the healthcare industry. Could this be the answer to problem that has become increasingly evidence. People getting older and sicker – Dementia and long term illness whilst traditional killers like heart disease are more preventable
Not able to look after themselves and so not able to stay in their own homes – could technology provide the bridge that allows them to remain in home?
Devces which can detect people’s location, if they have fallen
Used the bathroom more than usual – URT
Unusual sleeping, eating or drinking patterns
Issues can be followed up by a clinician
So what does PETRAS stand for P E T R A S – it is around this core of cyber security issues that the hub’s research is based.
The hub also looks at all of these aspects from both a social and a technical aspect.
My own role as Impact Champion is to engage and build partnerships, develop socioeconomic impact in its widest sense and secure a future legacy for the hub beyond its initial three year funded period.
Research into all areas of the cyber security of the internet of things including:
Connected and autonomous vehicles – both between vehicles and to their environment and the surrounding infrastructure
The smart buildings, homes and factories of the future and how they come together to form Smart Cities and Public Spaces that we will live in
And Healthcare including implantable medical devices and social care
And often how many of these individual systems interact to form a systems of systems
If anyone wants to discuss PETRAS with me then please do contact me
Id and track -> reassembly, nature of the object, how it feels, history background audience and researcher reception history impact on culture sociocultural impact . Audiences device to pick up data object context aware. Insurance premiums other conversion rates…