Jo Dalton will be presenting:
IoT – Compliance and defiance
IoT ecosystems are complicated and global. A cyber-secure smart device requires expertise in firmware, hardware, cryptography, cloud, APIs, mobile connectivity, mobile apps, web apps and more. The potential for security mistakes grows exponentially.
Outsourcing to solve this complexity problem is therefore common, often to third parties that provide a variety of services. In our experience of finding security flaws in IoT products can be easy, the security of these outsourced services varies massively. We’ve found entire platforms that can be trivially compromised, exposing not only the manufacturers intellectual property but also vast amounts of customer data.
This talk will briefly examine some recent high profile supply chain attacks within IoT and Security Providers themselves.