The Industry's Concerns With IoT
Security of IoT devices is the greatest concern given the amount of data the devices are collecting the the number of end points that can be compromised.
Join the DZone community and get the full member experience.Join For Free
To gather insights on the evolution of IoT to this point in 2017, we spoke to 19 executives who are familiar with the current state of the Internet of Things.
We asked them, "What are your biggest concerns regarding the state of IoT today?" Here's what they told us:
- We all need to understand the security component of IoT. More and more devices are collecting more data but people aren’t thinking about the security of the devices or the data. When you extend the network, you are extending the exposure. There’s also an integration challenge. It takes a lot of work to get all the elements to play together. More platforms are coming out to percolate down to the mainstream. The solutions need to be in the market so people can access and benefit from the data.
- Tooling and using the wrong tools. Believing the hype. Wedging things into existing tools because that’s what you're familiar with. Therefore, we’re beginning to see IoT as a service from telcos for car companies – they can provide information the car companies will find valuable.
- Concern over privacy and security. There are no guarantees and this results in some serious concerns.
- Risk and security. There didn’t used to be CISOs. As more systems communicate with each other and expose data outside, security becomes more important. CISSP framework for how security should be handled. Denial of service attack against Dyn shows that security is an issue bigger than IoT encompassing all of data science. The network is the internet. You can no longer rely on firewalls, there is no edge, think about securing and protection from the source.
- Personally identifiable information (PII) with more data. Need to be thinking about security throughout the process.
- Security of the data and the end points.
- Security – code is running freely on the Internet.
- Standard approaches are more open and easy to build and manage. Most difficult are the analytics on the edge versus the backend. We encrypt all data pathways. Most security breaches are internal so we provide built-in security.
- Security – we’re addressing it. Secure devices across consumer and business IoT. More companies are taking security seriously. We’re invested significantly in protecting end points, software, patch management and implementation. Deployments in critical infrastructure, like energy, provides a lot of risk and opportunity.
- Security is the biggest hurdle. There’s a lot of data and people don’t know what to do with it. The possibilities are endless.
- The lack of complete information. Limited understanding of the different ecosystem solutions are available and how they can complement business initiatives. The difference between non-integrated systems versus an integrated approach. A converged approach leads to faster business impact.
- Responsibility for security is everywhere. Due diligence on providers. Hook to hook up and what data to expose is the responsibility of engineers and systems integrators. Data privacy is an issue for the owner. They need to use data to know what’s being used and what can be deprecated. Have a complete loop to obtain useful feedback.
- 1) Security. Like the government did with cars, seatbelts, and airbags, they will step in a regulate IoT. 2) Removal of fragmentation from the standards. Consolidate like REST is for APIs today. Same for hardware today like Arduino and RaspberryPi.
- Security and diversity. ARM is interesting since it sells microprocessors licenses. They can influence the requirements (i.e., encryption). The suppliers at either end of the spectrum can set the rules and enforce them.
- Again, the biggest concern is companies that are failing to leverage reliable wireless communication protocols in favor of their own ecosystems and protocols. It is only slowing down the evolution and success of the greater IoT market.
- Adoption is slow. There’s a lot of talk and collective inertia. Companies need to start with small projects but they’re still sitting on the fence. We need more incubation and R&D centers. Security is also an issue that must be addressed so that liability and image concerns are reduced.
- Data privacy. IoT devices are designed to spy on you. For some use cases this is less acceptable (e.g. anything that can have a personal privacy concern such as auto insurance.) Who really owns the data? The consumer / worker, as the data is about them?The device manufacturer, (e.g. the GPS device manufacturer?) Or the OEM, because it is really the chip / sensor embedded into the device that generates the data? The policies around data privacy are developing all around the world. For example, in the U.S., the Federal Trade Commission has recommendations around designing devices with data security in mind and displaying privacy information clearly. The European Commission passed the General Data Protection Regulation (GDPR) to standardize data privacy laws across the EU. With this, device makers will have stricter requirements to build data protection into their devices from the very beginning of the design process.
Are you concerned about the security of IoT devices as well?
And in case you're wondering, here’s who we talked to:
- Scott Hanson, Founder, and CTO, Ambiq Micro
- Adam Wray, CEO and Peter Coppola, SVP, Product Marketing, Basho
- Farnaz Erfan, Senior Director, Product Marketing, Birst
- Shahin Pirooz, CTO, Data Endure
- Anders Wallgren, CTO, Electric Cloud
- Eric Free, SVP Strategic Growth, Flexera
- Brad Bush, Partner, Fortium Partners
- Marisa Sires Wang, Vice President of Product, Gigya
- Tony Paine, Kepware Platform President at PTC, Kepware
- Eric Mizell, Vice President Global Engineering, Kinetica
- Crystal Valentine, PhD, V.P. Technology Strategy and Jack Norris, S.V.P., Database Strategy and Applications, MapR
- Pratibha Salwan, S.V.P. Digital Services Americas, NIIT Technologies
- Guy Yehaiv, CEO, Profitect
- Cees Links, general manager Wireless Connectivity, Qorvo
- Paul Turner, CMO, Scality
- Harsh Upreti, Product Marketing Manager, API, SmartBear
- Rajeev Kozhikkuttuthodi, Vice President of Product Management, TIBCO
Opinions expressed by DZone contributors are their own.