IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges &...

30
© 2016 Nokia 1 IoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar December 2016

Transcript of IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges &...

Page 1: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 1

IoT Security

Challenges & Opportunities

Erez Waisbard

Haifa 3rd Security Research Seminar

December 2016

Page 2: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 2

A Tale of IoT

Page 3: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 3

Smart Refrigerator A Tale of IoT

Interconnecting different devices from different vendors

No Milk

Page 4: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 4

Ideal world A Tale of IoT

Secure Intercommunication

Page 5: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 5

The real world A Tale of IoT

No Intercommunication

Tower of Babel

Page 6: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 6

The Security Model

Page 7: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 7

The Internet model Security Model

Trust relies on Root CA and public key cryptography

Page 8: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 8

IoT devices security Security Model

IoT Devices are not secure

Page 9: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 9

IoT devices security Security Model

IoT Devices are not secure

We’re at a crisis point now with regard to the security of embedded systems, where computing is embedded into the hardware itself — as with the Internet of Things.

Bruce Schneier, Jan, 2014

Page 10: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 10

The IoT model Security Model

PKI is not suited for IoT

•No central Trusted Authority

•Multiple vendors

•Multiple service providers

•Multiple Protocols

•Low power unprotected devices

Page 11: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 11

The Blockchain Technology

Page 12: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 12

Bitcoin [October 2008]

Page 13: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 13

Popularity

Ransomeware & Darknet

Page 14: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 14

Digital Payment before Bitcoin (using banks)

Alice’s credit card number

Alice Bob

Alice’s credit card number

Alice Bob

transfer money to

Bob’s account

transfer confirmation

Relies on a central trusted entity No digital cash

Page 15: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 15

Replacing the bank with a bulletin board

User P1 transfers a coin #16fa35afc6831 to user P2

Page 16: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 16

Distributed Bulletin-Board

Page 17: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 17

Problem Definition Blockchain Technology

Nokia Internal Use

Page 18: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 18

The Bitcoin solution

Majority of computing power

instead of majority of parties

Page 19: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 19

What is a blockchain?

Sender Receiver Message

Page 20: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 20

Open Challenges Blockchain Technology

Page 21: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 21

Blockchain Applications

(beyond BitCoin)

Page 22: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 22

Anti-Counterfeit

• Each product is labeled with a block verified tag.

• Verified supply chain

• Consumer activation and validation

Page 23: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 23

Notary

• Proofs of:

– Ownership

– Integrity

• Privacy preserved using cryptographic hash functions

Page 24: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 24

Distributed CA

Page 25: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 25

Secure DNS

Page 26: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 26

Distributed web hosting

Page 27: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 27

Research Tracks

Bell-Labs

Page 28: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 28

Research Track : Trust in IoT

Page 29: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

© 2016 Nokia 29

Page 30: IoT Security Challenges & Opportunities - IBM Research · PDF fileIoT Security Challenges & Opportunities Erez Waisbard Haifa 3rd Security Research Seminar ... IoT devices security

Security in IoT

Security in IoT

The IoT Hacker’s Toolkit - Security, CTFs, HackingGoals of IoT Security Researcher Understand IoT Devices Functions Security Properties Find Vulnerabilities Improve Security CVEs

The IoT Hacker’s Toolkit - Security, CTFs, HackingGoals of IoT Security Researcher Understand IoT Devices Functions Security Properties Find Vulnerabilities Improve Security CVEs

Leading the IoT - Gartner · PDF fileIoT in a three-year implementation plan to deliver improved ... can learn behavior and usage, ... and industries. Implementing the right IoT solution

Leading the IoT - Gartner · PDF fileIoT in a three-year implementation plan to deliver improved ... can learn behavior and usage, ... and industries. Implementing the right IoT solution

Scaling IoT Security

Scaling IoT Security

How to Future-Proof IoT Security · •Current Internet of Things (IoT) landscape •IoT threats •The IoT security problem •Building in device security •Future proofing •PKI

How to Future-Proof IoT Security · •Current Internet of Things (IoT) landscape •IoT threats •The IoT security problem •Building in device security •Future proofing •PKI

IoT² 608 Multistandard Mobile Network Simulator - · PDF fileIoT² 608 Multistandard Mobile Network Simulator ... IoT² 608 Multistandard Mobile Network Simulator. ... CCCH, CCCH+SDCCH/4,

IoT² 608 Multistandard Mobile Network Simulator - · PDF fileIoT² 608 Multistandard Mobile Network Simulator ... IoT² 608 Multistandard Mobile Network Simulator. ... CCCH, CCCH+SDCCH/4,

IoT Security What, Why, How - ieee- · PDF fileIoT Security What, Why, How ... Interoperability, Sensing Mgmt, Data Analysis, Control Usability ... Privilege Levels, Memory Management

IoT Security What, Why, How - ieee- · PDF fileIoT Security What, Why, How ... Interoperability, Sensing Mgmt, Data Analysis, Control Usability ... Privilege Levels, Memory Management

INTERNET OF THINGS SECURITY GUIDELINE - IoT · PDF fileIoT SECURITY GUIDELINE V1.0 3 FEBRUARY 2017 INTRODUCTORY STATEMENT The purpose of the Internet of Things Security Guideline is

INTERNET OF THINGS SECURITY GUIDELINE - IoT · PDF fileIoT SECURITY GUIDELINE V1.0 3 FEBRUARY 2017 INTRODUCTORY STATEMENT The purpose of the Internet of Things Security Guideline is

IOT ANALYTICS: USING BIG DATA TO ARCHITECT IOT SOLUTIONS · PDF fileiot analytics: using big data to architect iot solutions b y srinath perera ph.d vice president - research

IOT ANALYTICS: USING BIG DATA TO ARCHITECT IOT SOLUTIONS · PDF fileiot analytics: using big data to architect iot solutions b y srinath perera ph.d vice president - research

Floodgate IoT Security Toolkit - Nohaunohau.eu/wp-content/uploads/IconLabs.pdf · The Floodgate IoT Security Toolkit provides engineers developing IoT devices a comprehensive security

Floodgate IoT Security Toolkit - Nohaunohau.eu/wp-content/uploads/IconLabs.pdf · The Floodgate IoT Security Toolkit provides engineers developing IoT devices a comprehensive security

IoT Platforms The Experience of Vendors and · PDF fileIoT Platforms –The Experience of Vendors and Adopters Saverio Romeo Chief Research Officer Beecham Research

IoT Platforms The Experience of Vendors and · PDF fileIoT Platforms –The Experience of Vendors and Adopters Saverio Romeo Chief Research Officer Beecham Research

Security Challenges inEmerging Technologies IoT &Wearablessecurity.ingrammicro.com/security/media/Security-Media-Library/... · Security Challenges in Emerging Technologies IoT &

Security Challenges inEmerging Technologies IoT &Wearablessecurity.ingrammicro.com/security/media/Security-Media-Library/... · Security Challenges in Emerging Technologies IoT &

Instructions for Use IOT MODULAR ENDOPROSTHESIS · PDF fileIOT MODULAR ENDOPROSTHESIS SYSTEM Legend of Symbols Used in ... according to the specification rule NBR ISO ... 04.07.52.12130

Instructions for Use IOT MODULAR ENDOPROSTHESIS · PDF fileIOT MODULAR ENDOPROSTHESIS SYSTEM Legend of Symbols Used in ... according to the specification rule NBR ISO ... 04.07.52.12130

IoT Security: F5 IoT Solution · IoT Security: F5 IoT Solution Author: Matt Mooseles Created Date: 10/1/2018 8:18:05 PM ...

IoT Security: F5 IoT Solution · IoT Security: F5 IoT Solution Author: Matt Mooseles Created Date: 10/1/2018 8:18:05 PM ...

IoT - Big Data & Security · IoT - Big Data & Security MWC Smart Cities Seminar Telefónica Global IoT Group Feb 2017. IoT Big Data and IoT Security in Smart Cities IoT Security IoT

IoT - Big Data & Security · IoT - Big Data & Security MWC Smart Cities Seminar Telefónica Global IoT Group Feb 2017. IoT Big Data and IoT Security in Smart Cities IoT Security IoT

Position Paper on Standardization for IoT ... - · PDF fileIoT research projects that is the base for the position paper and the IoT standardisation roadmap. This effort has as goal

Position Paper on Standardization for IoT ... - · PDF fileIoT research projects that is the base for the position paper and the IoT standardisation roadmap. This effort has as goal

IoT Security - UC Berkeley Sutardja Centerscet.berkeley.edu/wp-content/uploads/IoT-Security-Overview-Final.pdf · Importance of Security to IoT Security is both a barrier to widespread

IoT Security - UC Berkeley Sutardja Centerscet.berkeley.edu/wp-content/uploads/IoT-Security-Overview-Final.pdf · Importance of Security to IoT Security is both a barrier to widespread

IoT Security & Privacy - SentryBay - Security that works security and privacy_040715.pdfPage 3: © 2015 SentryBay Corporation / IoT Security & Privacy!!! IoT Security & Privacy The

IoT Security & Privacy - SentryBay - Security that works security and privacy_040715.pdfPage 3: © 2015 SentryBay Corporation / IoT Security & Privacy!!! IoT Security & Privacy The

Demystifying IoT Security: An Exhaustive Survey on IoT ...eng.usf.edu/~nghani/papers/ieee_cst2019_2.pdfDemystifying IoT Security: An Exhaustive Survey on IoT Vulnerabilities and a

Demystifying IoT Security: An Exhaustive Survey on IoT ...eng.usf.edu/~nghani/papers/ieee_cst2019_2.pdfDemystifying IoT Security: An Exhaustive Survey on IoT Vulnerabilities and a

IOT SECURITY 1 Internet of Things: Survey on Security and ... · PDF fileIOT SECURITY 2 Fig. 1. Current IoT Architecture Frameworks/Standards processes and transmits the input obtained

IOT SECURITY 1 Internet of Things: Survey on Security and ... · PDF fileIOT SECURITY 2 Fig. 1. Current IoT Architecture Frameworks/Standards processes and transmits the input obtained