broken image
broken image
GET IN TOUCH
  • HOME
  • SERVICES 
    • Educate and Alert
    • Secure By Design
    • Test and Certify
    • Automate
    • By Industry
  • STANDARDS & REGULATIONS 
    • ETSI EN 303 645
    • FDO IoT
    • IEC 62443
    • CC | EUCC
    • IoXt Alliance
    • FIDO
    • FIPS 140-3
    • EU Cloud Service
    • ISO 21434 & R155
    • EN 17640 | FITCEM | CSPN
    • CRA
    • RED-DA
    • MDR
    • SESIP
    • GSMA IoT
  • ABOUT US 
    • Who we are
    • EU Projects
    • They trust us
    • Careers
    • Knowledge
    • Contact
  • Blog & News 
    • Compliance & Regulations
    • Tech & Security
    • Industry Use Cases
    • Insights & Trends
    • Company News & PR
    • EU & Research Projects
  • …  
    • HOME
    • SERVICES 
      • Educate and Alert
      • Secure By Design
      • Test and Certify
      • Automate
      • By Industry
    • STANDARDS & REGULATIONS 
      • ETSI EN 303 645
      • FDO IoT
      • IEC 62443
      • CC | EUCC
      • IoXt Alliance
      • FIDO
      • FIPS 140-3
      • EU Cloud Service
      • ISO 21434 & R155
      • EN 17640 | FITCEM | CSPN
      • CRA
      • RED-DA
      • MDR
      • SESIP
      • GSMA IoT
    • ABOUT US 
      • Who we are
      • EU Projects
      • They trust us
      • Careers
      • Knowledge
      • Contact
    • Blog & News 
      • Compliance & Regulations
      • Tech & Security
      • Industry Use Cases
      • Insights & Trends
      • Company News & PR
      • EU & Research Projects
broken image
broken image
  • HOME
  • SERVICES 
    • Educate and Alert
    • Secure By Design
    • Test and Certify
    • Automate
    • By Industry
  • STANDARDS & REGULATIONS 
    • ETSI EN 303 645
    • FDO IoT
    • IEC 62443
    • CC | EUCC
    • IoXt Alliance
    • FIDO
    • FIPS 140-3
    • EU Cloud Service
    • ISO 21434 & R155
    • EN 17640 | FITCEM | CSPN
    • CRA
    • RED-DA
    • MDR
    • SESIP
    • GSMA IoT
  • ABOUT US 
    • Who we are
    • EU Projects
    • They trust us
    • Careers
    • Knowledge
    • Contact
  • Blog & News 
    • Compliance & Regulations
    • Tech & Security
    • Industry Use Cases
    • Insights & Trends
    • Company News & PR
    • EU & Research Projects
  • …  
    • HOME
    • SERVICES 
      • Educate and Alert
      • Secure By Design
      • Test and Certify
      • Automate
      • By Industry
    • STANDARDS & REGULATIONS 
      • ETSI EN 303 645
      • FDO IoT
      • IEC 62443
      • CC | EUCC
      • IoXt Alliance
      • FIDO
      • FIPS 140-3
      • EU Cloud Service
      • ISO 21434 & R155
      • EN 17640 | FITCEM | CSPN
      • CRA
      • RED-DA
      • MDR
      • SESIP
      • GSMA IoT
    • ABOUT US 
      • Who we are
      • EU Projects
      • They trust us
      • Careers
      • Knowledge
      • Contact
    • Blog & News 
      • Compliance & Regulations
      • Tech & Security
      • Industry Use Cases
      • Insights & Trends
      • Company News & PR
      • EU & Research Projects
GET IN TOUCH
broken image

Common Challenges of Implementing a Single IoT Security Standard

· Technical and Security Deep Dives,Compliance and Regulations,Industry Applications and Use Cases

IoT, as we know it today, allows us to make our lives easier — but it is not 100% secure. It can be hard to understand why it’s so difficult to come up with a comprehensive cybersecurity standard for IoT. After all, if we can create this technology, we should be able to keep it secure.

In theory, yes. However, in practice, there are many challenges that cybersecurity experts need to overcome first. Here are some common problems of implementing an IoT security standard that would make IoT devices more secure:

Challenges Encountered by Generic Security

Generic security encompasses all of the common cybersecurity mechanisms we use to keep our devices safe. However, these processes — authentication, access control, and identification — face an increasing strain to accommodate all of the different use contexts and systems that IoT devices are developing. To make this process easier, we need more procedures and policies that would address the complexity of the current IoT situation.

Vulnerable Legacy Systems

IoT is expanding rapidly, even into legacy industrial systems, as it helps make them more efficient. However, this creates only a partially trusted environment, as system operators tend to neglect thorough risk assessments and addressing vulnerabilities. It comes from a lack of methodologies that would help them accomplish this fast enough to still keep pace with the overall demand. Even with the risk of cybersecurity breaches, for these professionals, it doesn’t pay off to worry about security unless something happens.

Human Factor of IoT Security

The human factor is often neglected by IoT developers who don’t always account for all the possible ways in which their devices can be used. It is not the only consequence of a lack of a human-centric approach to IoT development, but it is one of the most common ones. However, to implement it, we need a better understanding of how people use the devices and make it more intuitive for them to follow best security practices.

Different Sectors Have Different Priorities

Finally, different sectors have different priorities, based on the IoT devices they find their growth on. For the automotive industry, that’s the production of connected and autonomous vehicles — so the priority is to come up with a way to protect those systems. Medicine focuses on different types of IoT devices — from implantable devices and wearables to devices storing patient medical history. And let us not forget the growing trends of smart home systems or appliances.

All of these devices and industries have their host of security issues, and a comprehensive cybersecurity standard might not even work as well as intended for some of them. However, making steps towards it is still going in the right direction to ensure the security of all IoT devices.

Key Takeaways

The key to overcoming most of these challenges lies in increasing awareness of IoT developers and manufacturers by providing them adaptable frameworks simple to integrate into the life-cycle development process. To reduce the risks of having cybersecurity attacks, basic or substantial levels of security evaluation must be conducted on all of our connected devices before issuance in addition to having an overarching system of regulations in place to tackle the best practices of resilience and safety.

Subscribe
Previous
Dealing with Supply Chain IoT Vulnerabilities
Next
Optimizing Investment to Minimize IOT Cyber Exposure
 Return to site
Profile picture
Cancel
Cookie Use
We use cookies to improve browsing experience, security, and data collection. By accepting, you agree to the use of cookies for advertising and analytics. You can change your cookie settings at any time. Learn More
Accept all
Settings
Decline All
Cookie Settings
Necessary Cookies
These cookies enable core functionality such as security, network management, and accessibility. These cookies can’t be switched off.
Analytics Cookies
These cookies help us better understand how visitors interact with our website and help us discover errors.
Preferences Cookies
These cookies allow the website to remember choices you've made to provide enhanced functionality and personalization.
Save