Home > Resources > Articles > What’s in Your IoT Cybersecurity Kit?

What’s in Your IoT Cybersecurity Kit?

Did you know the average internet-enabled household contains more than ten connected devices? With IoT devices proliferating almost every aspect of our everyday lives, it’s no wonder IoT-based attacks are becoming smarter and more widespread than ever before. From DDoS to home network exposures, it appears cybercriminals have set their sights on the digital dependence inside the smart home and users must be prepared. A smart home in today’s world is no longer a wave of the future, but rather just a sign of the times we live in. You would be hard pressed to find a home that didn’t contain some form of smart device. From digital assistants to smart plugs, with more endpoints comes more avenues bad actors can use to access home networks. As recently as 2018, users saw virtual assistants, smart TVs, and even smart plugs appear secure, but under the surface have security flaws that could facilitate home network exposures by bad actors in the future. Whereas some IoT devices were actually used to conduct botnet attacks, like an IoT thermometer and home Wi-Fi routers.

Spotlight

Adita Technologies

Adita Technologies is a Specialist Solutions Reseller and Services Company. We provide Thought Leadership, Business Process Improvement, Software Implementation and Support Services to our customers. Our strengths are our people and the attention we pay to our clients to provide them with strategic digital enterprise solutions to support their current and future business needs.

OTHER ARTICLES
Industrial IoT, IoT Security

Essential IoT Security Books for IoT Professionals

Article | July 12, 2023

Explore the world of readings on IoT security, to address complex cyber security challenges and privacy issues. It caters to a wide range of readers including industrialists, students & enthusiasts. The Internet of Things (IoT) has revolutionized industries, enabling innovative applications and improved efficiency. However, along with the numerous benefits of the IoT comes the pressing need for robust security measures. As IoT devices become more prevalent and interconnected, their risks and vulnerabilities also increase. The experts in the domain must stay updated with the latest security practices and techniques to ensure IoT systems' integrity, confidentiality, and availability. A wide range of books has been explicitly tailored address these security concerns. 1. Analytics for the Internet of Things (IoT) Author: Andrew Minteer Analytics for the Internet of Things (IoT): Intelligent analytics for your intelligent devices provides a comprehensive guide for businesses aiming to make informed decisions and gain greater control over their IoT infrastructure. Written by an expert in the field, this book equips readers with the essential knowledge and techniques to solve the unique challenges associated with IoT and extract valuable insights from vast amounts of data. The book begins by tackling the complex task of extracting value from large volumes of often complex IoT data, empowering readers to make data-driven decisions. Strategies to address data quality concerns are discussed, ensuring that readers are equipped to handle the inherent challenges. It offers readers approaches to optimize business value and bring down costs. Scaling both data storage and analytics is a critical consideration in IoT deployments, and the book provides practical insights into handling scale effectively. The book covers a range of topics, including transmission protocols, data flow, value extraction, geospatial analytics, machine learning, and optimizing business value. 2. Industrial Internet of Things (IIoT) Editors: R. Anandan, Suseendran Gopalakrishnan, Souvik Pal, Noor Zaman One of the essential IoT security books, Industrial Internet of Things (IIoT): Intelligent Analytics for Predictive Maintenance comprehensively explores how the industrial internet is transforming through increased network agility and the ability to deploy, automate, integrate artificial intelligence, orchestrate, and secure diverse use cases at hyperscale. The adoption of industrial automation on a large scale is revolutionizing business processes, with the market for industrial robots projected to reach $73.5 billion by 2023. The book highlights how IoT industrial automation provides numerous advantages, including enhanced efficiency, high accuracy, cost-effectiveness among others. This book presents real-world case studies in IIoT, robotic and intelligent systems, and web-based applications. The content is tailored to appeal to a broad audience, including working professionals, educators, and researchers in various technical disciplines. The book provides industry leaders with valuable insights by proposing business models that revitalize the workforce. 3. IoT and OT Security Handbook Authors: Smita Jain, Vasantha Lakshmi, Foreword: Dr Rohini Srivathsa IoT and OT Security Handbook: Assess risks, manage vulnerabilities, and monitor threats with Microsoft Defender for IoT is a comprehensive guide that equips industrial security, IoT security, and IT security professionals with the knowledge and tools to effectively address cybersecurity challenges in the rapidly evolving world of IoT and OT. In the era of the Fourth Industrial Revolution, where digital transformation and connected industries dominate, the book sheds light on the pressing security concerns that must be addressed to ensure data protection and operational resilience. Through a deep dive into the Purdue model of reference architecture, readers gain a solid understanding of common cyber-attacks prevalent in IoT and OT environments. The centerpiece of the book revolves around Microsoft Defender for IoT, a powerful security solution specifically designed to safeguard IoT and OT ecosystems. Furthermore, the concept of zero trust, which is crucial for establishing a robust security foundation, is thoroughly explored with practical insights on its implementation in the context of IoT devices. 4. Practical Internet of Things Security Author: Brian Russell, Drew Van Duren Practical Internet of Things Security: Design a security framework for an Internet connected ecosystem is an indispensable guide that navigates the complex realm of securely building and deploying systems in our IoT-connected world. The book primarily targets IT security professionals, security engineers, and individuals responsible for ensuring the security of their organization's data in the IoT landscape. However, it also serves as a valuable resource for business analysts and managers seeking to understand and address the security challenges associated with IoT deployments. Readers will gain a wealth of knowledge and practical skills, including breaking down cross-industry barriers, building a rock-solid security program, applying systems security engineering and privacy-by-design principles, and harnessing cloud-based systems. It delves into the unique security challenges associated with IoT and provides practical guidelines for architecting and deploying a secure IoT ecosystem within an enterprise. 5. IoT: Security and Privacy Paradigm (Internet of Everything (IoE)) Editors: Souvik Pal, Vicente García Díaz, Dac-Nhuong Le IoT: Security and Privacy Paradigm is a comprehensive and authoritative resource that explores the evolution of security and privacy issues within the realm of the IoT. This book serves as a single reference point for students, researchers, and practitioners seeking to better understand the IoT security platforms and privacy landscape. The book adopts security engineering and privacy-by-design principles to design and implement robust cyber-security solutions within IoT ecosystems. It takes readers on a journey, starting with exploring security issues in IoT-enabled technologies and their practical applications. The book provides practical guidance on tackling security challenges and constructing a secure infrastructure for IoT devices. The book thoroughly discusses security challenges and solutions in areas such as RFID, WSNs, and IoT. The primary audience for this book includes specialists, researchers, graduate students, designers, experts, and engineers focused on security-related issues and research. 6. IoT Security Issues Author: Alasdair Gilchrist IoT Security Issues addresses the rapid proliferation of internet-connected devices, where security often takes a backseat to product development. This book delves into the inherent vulnerabilities and IoT security challenges, offering insights on how to address and mitigate these issues. By examining the root causes of these problems and emphasizing the importance of programming and security best practices, the author presents practical solutions to combat the lax security processes prevalent in the IoT landscape. This book caters to a wide range of readers, including programmers who have yet to focus on the IoT, security professionals, and individuals with a keen interest in hacking and making. While a basic programming background would be beneficial for certain chapters later in the book, the core content is explained in a manner that is approachable for readers from various backgrounds. 7. Security and Privacy Issues in IoT Devices and Sensor Networks Editors: Sudhir Kumar Sharma, Bharat Bhushan, Narayan C. Debnath This book, of all the IoT security books, delves into the critical aspects of security breaches in IoT and sensor networks, offering a comprehensive exploration of potential solutions. The book takes a two-fold approach, thoroughly examining the fundamentals and theoretical foundations of sensor networks and IoT security. It then explores the practical IoT security solutions that can be implemented to enhance the security of these elements, providing illuminating case studies to reinforce understanding. The book is an invaluable resource for industry professionals working with wireless sensor networks (WSN) and IoT systems, enabling them to elevate the security of these interconnected systems. Additionally, researchers, material developers, and technology specialists grappling with the intricate nuances of data privacy and security enhancement will find the book's comprehensive information highly beneficial. Final thoughts IoT security for professionals involves implementing secure communication protocols, strong authentication, device management, data encryption, access control, and regular security audits. It is crucial to stay updated, maintain a security-aware culture, and prioritize the ongoing monitoring and adaptation of security measures to address emerging threats. The above listed books delve into various aspects of IoT security, providing insights, strategies, and practical solutions to mitigate risks and protect IoT ecosystems. This article highlights some essential IoT security books that are indispensable resources for IoT professionals striving to enhance the security posture of their organizations. They also provide real world case studies, best practices and strategies to minimize risks.

Read More
Industrial IoT, IoT Security

Evolution of Industry: IIoT a Vital Component

Article | July 11, 2023

Introduction Automation, interconnectivity, machine-learning, and real-time data are part of Industry 4.0, a new phase in the Industrial Revolution. Industry 4.0, which includes IIoT and smart manufacturing, combines physical production and operations with smart digital technologies. It creates a more holistic and linked environment for manufacturing and supply chain management organizations. In today's production environment, "automation" has a new, more advanced meaning than it has in the past. Industry 4.0 refers to the necessity of lean, efficient operations and the function of sustaining and improving production. In contrast, IIoT distinguishes manufacturing gadgets from consumer products that can connect wirelessly to internal networks and the internet. IIoT Powering the Fourth Industrial Revolution Manufacturing, logistics, oil and gas, transportation, mining, aviation, energy, and other industries use the IIoT. Its main goal is to improve operations, mainly through process automation and maintenance. IIoT capabilities improve asset performance and allow for improved maintenance management. The introduction of Industry 4.0 technologies marked a significant milestone in the human-machine relationship's history. I4.0 was first talked about in 2011. Since then, it has proliferated because of new technologies such as cyber-physical systems, IT/OT convergence, AI/ML, Blockchain, and AR/VR. Data is at the heart of the Fourth Industrial Revolution. The growth of the Internet of Things (IoT) is one of the main reasons behind this. The IoT is making a significant contribution in making businesses smarter and improving their workflows. Moreover, more data is being made and used by connected devices than ever before, from the home to the factory. In order to thrive in the fourth industrial revolution, businesses must embrace new technologies. The general structure of IIoT applications is defined by standards-based industrial system architectures such as the Industrial Internet Consortium's Reference Architecture. Sensors and IoT devices, IoT middleware platforms, IoT gateways, edge/cloud infrastructures, and analytics applications are all part of the stack. The Future of the IIoT The Industrial Internet of Things (IIoT) is primarily regarded as one of the most significant current and future trends influencing industrial companies. To comply with new rules, industries are rushing to upgrade their systems, machinery, and equipment. This is necessary to keep up with market volatility and deal with disruptive technologies. Safety, efficiency, and profitability have all improved dramatically in industries that have adopted IIoT. As IIoT technologies become more widely adopted, this tendency is projected to continue. Conclusion The fourth industrial revolution has drastically altered our perceptions of things in the workplace. At a rapid rate, capitalists are becoming more interested in sophisticated ideas. The way forward is to embrace existing and emerging technology throughout fundamental operations to unleash more enticing possibilities. It emphasizes the importance of comprehending the impact collaborative ecosystems can have as well as how they will become a major differentiator for generating value with a better-trained workforce.

Read More
Enterprise Iot

Securing Real-world IoT Applications through Penetration Testing

Article | July 20, 2023

Enhancing IoT security: Unveiling the significance of penetration testing in securing real-world IoT applications, identifying vulnerabilities, and mitigating risks for the protection of IoT data. Contents 1. Introduction to IoT Application Security and Penetration Testing 1.1 Vulnerabilities of IoT application security 2. Fundamentals of IoT Penetration Testing 3. Considerations for IoT Penetration Testing 4. Methodologies and Approaches for IoT Penetration Testing 5. Takeaway 1. Introduction to IoT Application Security and Penetration Testing Securing real-world IoT applications is paramount as the Internet of Things (IoT) permeates various aspects of any individuals lives. Penetration testing serves as a vital tool in identifying vulnerabilities and assessing the resilience of IoT systems against cyber threats. In this article, delve into the significance of penetration testing in securing IoT applications, exploring its role in identifying weaknesses, mitigating risks, and ensuring the integrity and confidentiality of IoT data. 1.1 Vulnerabilities of IoT application security Expanded Attack Surface: The proliferation of IoT devices has dramatically expanded the attack surface, increasing the potential for security breach enterprise networks. With billions of interconnected devices, each presenting a potential vulnerability, the risk of unauthorized access, data breaches, and other security incidents is significantly heightened. Risks: IoT devices often possess limited computational resources, making them susceptible to software and firmware vulnerabilities. Their resource-constrained nature can limit the implementation of robust security measures, leaving them exposed to potential attacks. Furthermore, a significant concern is the prevalence of default or weak credentials on these devices. Diverse Threat Landscape: The threat landscape surrounding IoT devices is extensive and ever-evolving. It encompasses various attack vectors, including malware, botnets, DDoS attacks, physical tampering, and data privacy breaches. One notable example is the Mirai botnet, which compromised a vast number of IoT devices to launch large-scale DDoS attacks, leading to significant disruptions in internet services. In addition, IoT devices can serve as entry points for infiltrating larger networks and systems, allowing attackers to pivot and gain control over critical infrastructure. Botnets: IoT devices can be infected with malware and become part of a botnet, which can be used for various malicious activities. Botnets are often utilized to launch distributed denial-of-service (DDoS) attacks, where a network of compromised devices overwhelms a target system with traffic, causing it to become inaccessible. Ransomware: IoT devices are also vulnerable to ransomware attacks. Ransomware is malicious software that encrypts the data on a device and demands a ransom payment in exchange for the decryption key. Data Breaches: IoT devices can be targeted to steal sensitive data, including personal identifiable information (PII) or financial data. Due to inadequate security measures, such as weak authentication or unencrypted data transmissions, attackers can exploit IoT devices as entry points to gain unauthorized access to networks and systems. 2. Fundamentals of IoT Penetration Testing IoT penetration testing, also known as ethical hacking or security assessment, is a critical process for testing and identifying vulnerabilities and assessing the security posture of IoT devices, networks, and applications. It involves simulating real-world attacks to uncover weaknesses and provide insights for remediation. IoT penetration testing involves identifying vulnerabilities, conducting targeted attacks, and evaluating the effectiveness of security controls in IoT systems. IoT pen-testing aims to proactively identify and address potential weaknesses that malicious actors could exploit. The methodology of IoT pen-testing typically follows a structured approach. It begins with attack surface mapping, which involves identifying all potential entry and exit points that an attacker could leverage within the IoT solution. This step is crucial for understanding the system's architecture and potential vulnerabilities. Pentesters spend considerable time gathering information, studying device documentation, analyzing communication protocols, and assessing the device's hardware and software components. Once the attack surface is mapped, the following steps involve vulnerability identification and exploitation. This includes conducting security tests, exploiting vulnerabilities, and evaluating the system's resilience to attacks. The penetration testers simulate real-world attack scenarios to assess the device's ability to withstand threats. After exploitation, post-exploitation activities are performed to determine the extent of the compromise and evaluate the potential impact on the device and the overall IoT ecosystem. Finally, a detailed technical report summarizes the findings, vulnerabilities, and recommendations for improving the device's security. 3. Considerations for IoT Penetration Testing Fuzzing and Protocol Reverse Engineering: Employ advanced techniques like fuzzing to identify vulnerabilities in communication protocols used by IoT devices. Fuzzing involves sending malformed or unexpected data to inputs and analyzing the system's response to uncover potential weaknesses. Radio Frequency (RF) Analysis: Perform RF analysis to identify weaknesses in wireless communication between IoT devices. This includes analyzing RF signals, monitoring wireless communication protocols, and identifying potential vulnerabilities such as replay attacks or unauthorized signal interception. Red Team Exercises: Conduct red team exercises to simulate real-world attack scenarios and evaluate the organization's detection and response capabilities. Red team exercises go beyond traditional penetration testing by emulating the actions and techniques of skilled attackers. This helps uncover any weaknesses in incident response, detection, and mitigation processes related to IoT security incidents. Embedded System Analysis: Gain expertise in analyzing and reverse engineering embedded systems commonly found in IoT devices. This includes understanding microcontrollers, debugging interfaces, firmware extraction techniques, and analyzing the device's hardware architecture. Embedded system analysis helps identify low-level vulnerabilities and potential attack vectors. Zero-Day Vulnerability Research: Engage in zero-day vulnerability research to identify previously unknown vulnerabilities in IoT devices and associated software. This requires advanced skills in vulnerability discovery, exploit development, and the ability to responsibly disclose vulnerabilities to vendors. 4. Methodologies and Approaches for IoT Penetration Testing Mobile, Web and Cloud Application Testing Mobile, web, and cloud application testing is integral to IoT penetration testing, focusing on assessing the security of applications that interact with IoT devices. This methodology involves various steps to evaluate the security of these applications across different platforms. For mobile applications, the methodology includes reviewing the binary code, conducting reverse engineering to understand the inner workings, and analyzing the file system structure. Sensitive information such as keys and certificates embedded within the mobile app are scrutinized for secure storage and handling. The assessment extends to examining the application's resistance to unauthorized modifications. In web applications, the testing covers common vulnerabilities like cross-site scripting (XSS), insecure direct object references (IDOR), and injection attacks. Application reversing techniques are employed to gain insights into the application's logic and potential vulnerabilities. Additionally, hardcoded API keys are identified and assessed for their security implications. Firmware Penetration Testing Firmware penetration testing is a crucial aspect of IoT security assessments, aiming to identify vulnerabilities within the firmware running on IoT devices. The methodology encompasses multiple steps to uncover weaknesses. The process begins with binary analysis, dissecting the firmware to understand its structure, functionality, and potential vulnerabilities. Reverse engineering techniques are applied to gain deeper insights into the firmware's inner workings, exposing potential weaknesses like hardcoded credentials or hidden functionality. The analysis extends to examining different file systems used in the firmware and evaluating their configurations and permissions. Sensitive keys, certificates, and cryptographic material embedded within the firmware are scrutinized for secure generation, storage, and utilization. Additionally, the resistance of the firmware to unauthorized modification is assessed, including integrity checks, secure boot mechanisms, and firmware update processes. IoT Device Hardware Pentest IoT device hardware penetration testing involves a systematic methodology to assess the security of IoT devices at the hardware level. This comprehensive approach aims to identify vulnerabilities and weaknesses that attackers could exploit. The methodology includes analyzing internal communication protocols like UART, I2C, and SPI to understand potential attack vectors. Open ports are examined to evaluate the security controls and risks associated with communication interfaces. The JTAG debugging interface is explored to gain low-level access and assess the device's resistance to unauthorized access. Extracting firmware from EEPROM or FLASH memory allows testers to analyze the code, configurations, and security controls. Physical tampering attempts are made to evaluate the effectiveness of the device's physical security measures. 5. Takeaway Penetration testing is crucial in securing real-world IoT applications, enabling organizations to identify vulnerabilities and mitigate risks effectively. By conducting comprehensive and regular penetration tests, organizations can proactively identify and address security weaknesses, ensuring the integrity and confidentiality of IoT data. With the ever-growing threat landscape and increasing reliance on IoT technologies, penetration testing has become indispensable to safeguard IoT applications and protect against potential cyber-attacks. Several key factors will shape the future of IoT penetration testing. First, the increasing complexity of IoT systems will require testing methodologies to adapt and assess intricate architectures, diverse protocols, and a wide range of devices. Second, there will be a greater emphasis on security by design, with penetration testing focusing on verifying secure coding practices, robust access controls, and secure communication protocols. Third, supply chain security will become crucial, necessitating penetration testing to assess the security measures implemented by vendors, third-party components, and firmware updates. Fourth, integrating IoT penetration testing with DevSecOps practices will ensure continuous monitoring and improvement of IoT system security. Lastly, as attackers become more sophisticated, future IoT penetration testing methodologies will need to keep pace with evolving IoT-specific attack techniques. By embracing these advancements, IoT penetration testing will play a vital role in ensuring the security and privacy of IoT deployments.

Read More

5G vs. Wi-Fi 6: How Two Wireless Technologies are Revolutionizing the Internet of Things

Article | June 25, 2020

The year 2020 was supposed to be a breakthrough year for many technologies but, most businesses have now been forced back into building an infrastructure to transit their workforce to work remotely and ensure continuity of workflow. Nevertheless, an unprecedented set of events have pushed several industries to accelerate the adoption of technologies as they continue to work from home. 5G and Wi-Fi 6 are two tech advancements that have been turning eyes around the world since their introduction. The two wireless technologies are well on their way to revolutionize the Internet of Things as businesses move fast towards digitization and the world is excited. Table of Contents: - Wi-Fi 6: A Breakthrough in Wireless Technology - 5G: For a Better Connected World - How are Wi-Fi 6 and 5G Transforming the IoT? - 5G and Wi-Fi 6: Rivals or Allies? Wi-Fi 6: A Breakthrough in Wireless Technology The next-generation Wi-Fi with boosted speed was introduced last year to meet the demand for faster internet amongst the rising internet users. But, Wi-Fi 6 is simply more than a tweak in the speed. Technically called 802.11ax, Wi-Fi 6 is the advancement in the wireless standard doing the same basic things but with greater efficiency in the device-dense areas, and offering much greater bandwidth than its predecessor 802.11ac or Wi-Fi 5. Wi-Fi 6 promises a speed up to 9.6 Gbps up four times than that of Wi-Fi 5 (3.5Gbps). In reality, this is just a theoretical maximum that one is not expected to reach. Even still, the 9.6Gbps is higher speed and doesn’t have to go to a single device but split up across a network of devices. A new technology in Wi-Fi 6 called the Target Wake Time (TWT) lets routers set check-in times with devices, allowing communications between the router and the devices. The TWT also reduces the time required to keep the antennas powered to search for signals, which in turn also improves battery life. Wi-Fi 6 also comes with a new security protocol called WPA3, making it difficult to hack the device passwords by simple guesswork. In short, Wi-Fi 6 means better speeds with optimized battery lives, and improved security. 5G: For a Better Connected World 5G is the next in line to replace 4G LTE. While Wi-Fi covers small scale internet requirements, cellular networks like 5G are here to connect everyone and everything virtually on a larger scale. The technology is based on the Orthogonal frequency-division Multiplexing (OFDM) that reduces interference by modulating a digital signal across several channels. Ability to operate in both lower bands (like sub-6 GHz) and mmWave (24 GHz and above), 5G promises increased network capacity, low latency and multi-Gbps throughput. 5G also uses the new 5G NR air interface to optimize OFDM to deliver not just better user experience but also a wider one extending to many industries, and mission-critical service areas. The 5G technology, in a nutshell, has brought with it ultra-high speeds, increased and scalable network capacity, and very low latency. How are Wi-Fi 6 and 5G Transforming the IoT? 5G and Wi-Fi 6 will fill up the speed gaps that our existing networks are not able to especially, in crowded homes or congested urban areas. It's not just about the speed. The two wireless technologies will increase network capacity and improve signal strengths. On the business front, 5G and Wi-Fi 6 are both living up to the hype they created since their introduction. Wi-Fi 6 has emerged, as the enabler of converged IoT at the edge. It has put IT into OT applications, connected devices and processed data from devices such as IP security cameras, LED lighting, and digital signage with touch screen or voice command. Wi-Fi 6 can now be used in office buildings for intelligent building management systems, occupancy sensors, access control (smart locks), smart parking, and fire detection and evacuation. It’s (Wi-Fi 6) built for IoT. It will connect many, many more people to mobile devices, household appliances, or public utilities, such as the power grid and traffic lights. The transfer rates with Wi-Fi 6 are expected to improve anywhere from four times to 10 times current speeds, with a lower power draw, i.e. while using less electricity. - Tom Soderstrom, IT Chief Technology and Innovation Officer at NASA’s Jet Propulsion Laboratory (JPL) Similarly, 5G will open doors for more devices and data. It will increase the adoption of edge computing for faster data processing close to the point of action. The hype around 5G is because of the three key attributes it comes with: enhanced mobile broadband (eMBB), ultra-reliable low-latency (uRLLC), and massive IoT device connectivity (mMTC). But there is the fourth attribute that sets it apart from its predecessor: use of a spectrum that operates at the low-end frequency range (typically 600 MHz). Called as ‘low-band 5G’, it delivers high speeds with signals that go for miles without propagation losses and ability to penetrate obstacles. The 5G operates in the new millimetre-wave bands (24 to 86 GHz) delivering more capacity to enable many low-power IoT connections. If we were to point down the benefits, these two wireless technologies are bringing to the Internet of Things those would be: Increased Human-Device Interactions Increased Data and Devices More IoT investments Advancing to the Edge Acceleration towards Industrial IoT Enhanced use of IoT devices Better VUI 5G and Wi-Fi 6: Rivals or Allies? In February, Cisco estimated that by 2023 M2M communications will contribute to 50% or about 14.7 billion of all networked connections. Cisco’s Annual Internet Report reveals that 5G will enable new IoT applications with greater bandwidth and lower latencies and will accelerate innovations at scale. The same report estimates that 10.6% of global mobile connections in 2023 will be 5G, while Wi-Fi 6 hotspots will be 11.6% of all public Wi-Fi hotspots growing 13 times from 2020 through 2023. Wi-Fi6 will serve as a necessary complement to 5G. A significant portion of cellular traffic is offloaded to Wi-Fi networks to prevent congestion and degraded performance of cellular networks (due to demand). - Thomas Barnett, Director of Thought Leadership, Cisco Systems The two technologies are here to feed different data-hungry areas with gigabit speeds. With lower deployment costs, Wi-Fi 6 will be dominating the home and business environments where access points need to serve more users covering devices like smartphones, tablets, PCs, printers, TV sets, and streaming devices. With an unlicensed spectrum, the performance of Wi-Fi 6 depends on the number of users, that are using the network at the same time. 5G, with its longer range, will deliver mobile connections and accelerate smart city deployments and manufacturing operations. Like LTE, 5G speeds will depend upon users’ proximity to base stations and the number of people using that network. The performance of the two depends largely on the area where they are being deployed. For instance, Wi-Fi can very well handle machine-to-machine communications in a managed manufacturing unit, whereas 5G can enhance campus-wide manufacturing operations efficiently. Businesses will have a decision to make which among the two wireless networks fulfils their data appetite. In conclusion, the two wireless technologies continue to develop in parallel and causing the next big wave in the Internet of Things.

Read More
Industrial IoT, IoT Security

Key IoT Security Certifications to Boost Your Career in IoT Industry

Article | July 12, 2023

Explore the world of readings on IoT security, to address complex cyber security challenges and privacy issues. It caters to a wide range of readers including industrialists, students & enthusiasts. The Internet of Things (IoT) has revolutionized industries, enabling innovative applications and improved efficiency. However, along with the numerous benefits of the IoT comes the pressing need for robust security measures. As IoT devices become more prevalent and interconnected, their risks and vulnerabilities also increase. The experts in the domain must stay updated with the latest security practices and techniques to ensure IoT systems' integrity, confidentiality, and availability. A wide range of books has been explicitly tailored address these security concerns. 1. Analytics for the Internet of Things (IoT) Author: Andrew Minteer Analytics for the Internet of Things (IoT): Intelligent analytics for your intelligent devices provides a comprehensive guide for businesses aiming to make informed decisions and gain greater control over their IoT infrastructure. Written by an expert in the field, this book equips readers with the essential knowledge and techniques to solve the unique challenges associated with IoT and extract valuable insights from vast amounts of data. The book begins by tackling the complex task of extracting value from large volumes of often complex IoT data, empowering readers to make data-driven decisions. Strategies to address data quality concerns are discussed, ensuring that readers are equipped to handle the inherent challenges. It offers readers approaches to optimize business value and bring down costs. Scaling both data storage and analytics is a critical consideration in IoT deployments, and the book provides practical insights into handling scale effectively. The book covers a range of topics, including transmission protocols, data flow, value extraction, geospatial analytics, machine learning, and optimizing business value. 2. Industrial Internet of Things (IIoT) Editors: R. Anandan, Suseendran Gopalakrishnan, Souvik Pal, Noor Zaman One of the essential IoT security books, Industrial Internet of Things (IIoT): Intelligent Analytics for Predictive Maintenance comprehensively explores how the industrial internet is transforming through increased network agility and the ability to deploy, automate, integrate artificial intelligence, orchestrate, and secure diverse use cases at hyperscale. The adoption of industrial automation on a large scale is revolutionizing business processes, with the market for industrial robots projected to reach $73.5 billion by 2023. The book highlights how IoT industrial automation provides numerous advantages, including enhanced efficiency, high accuracy, cost-effectiveness among others. This book presents real-world case studies in IIoT, robotic and intelligent systems, and web-based applications. The content is tailored to appeal to a broad audience, including working professionals, educators, and researchers in various technical disciplines. The book provides industry leaders with valuable insights by proposing business models that revitalize the workforce. 3. IoT and OT Security Handbook Authors: Smita Jain, Vasantha Lakshmi, Foreword: Dr Rohini Srivathsa IoT and OT Security Handbook: Assess risks, manage vulnerabilities, and monitor threats with Microsoft Defender for IoT is a comprehensive guide that equips industrial security, IoT security, and IT security professionals with the knowledge and tools to effectively address cybersecurity challenges in the rapidly evolving world of IoT and OT. In the era of the Fourth Industrial Revolution, where digital transformation and connected industries dominate, the book sheds light on the pressing security concerns that must be addressed to ensure data protection and operational resilience. Through a deep dive into the Purdue model of reference architecture, readers gain a solid understanding of common cyber-attacks prevalent in IoT and OT environments. The centerpiece of the book revolves around Microsoft Defender for IoT, a powerful security solution specifically designed to safeguard IoT and OT ecosystems. Furthermore, the concept of zero trust, which is crucial for establishing a robust security foundation, is thoroughly explored with practical insights on its implementation in the context of IoT devices. 4. Practical Internet of Things Security Author: Brian Russell, Drew Van Duren Practical Internet of Things Security: Design a security framework for an Internet connected ecosystem is an indispensable guide that navigates the complex realm of securely building and deploying systems in our IoT-connected world. The book primarily targets IT security professionals, security engineers, and individuals responsible for ensuring the security of their organization's data in the IoT landscape. However, it also serves as a valuable resource for business analysts and managers seeking to understand and address the security challenges associated with IoT deployments. Readers will gain a wealth of knowledge and practical skills, including breaking down cross-industry barriers, building a rock-solid security program, applying systems security engineering and privacy-by-design principles, and harnessing cloud-based systems. It delves into the unique security challenges associated with IoT and provides practical guidelines for architecting and deploying a secure IoT ecosystem within an enterprise. 5. IoT: Security and Privacy Paradigm (Internet of Everything (IoE)) Editors: Souvik Pal, Vicente García Díaz, Dac-Nhuong Le IoT: Security and Privacy Paradigm is a comprehensive and authoritative resource that explores the evolution of security and privacy issues within the realm of the IoT. This book serves as a single reference point for students, researchers, and practitioners seeking to better understand the IoT security platforms and privacy landscape. The book adopts security engineering and privacy-by-design principles to design and implement robust cyber-security solutions within IoT ecosystems. It takes readers on a journey, starting with exploring security issues in IoT-enabled technologies and their practical applications. The book provides practical guidance on tackling security challenges and constructing a secure infrastructure for IoT devices. The book thoroughly discusses security challenges and solutions in areas such as RFID, WSNs, and IoT. The primary audience for this book includes specialists, researchers, graduate students, designers, experts, and engineers focused on security-related issues and research. 6. IoT Security Issues Author: Alasdair Gilchrist IoT Security Issues addresses the rapid proliferation of internet-connected devices, where security often takes a backseat to product development. This book delves into the inherent vulnerabilities and IoT security challenges, offering insights on how to address and mitigate these issues. By examining the root causes of these problems and emphasizing the importance of programming and security best practices, the author presents practical solutions to combat the lax security processes prevalent in the IoT landscape. This book caters to a wide range of readers, including programmers who have yet to focus on the IoT, security professionals, and individuals with a keen interest in hacking and making. While a basic programming background would be beneficial for certain chapters later in the book, the core content is explained in a manner that is approachable for readers from various backgrounds. 7. Security and Privacy Issues in IoT Devices and Sensor Networks Editors: Sudhir Kumar Sharma, Bharat Bhushan, Narayan C. Debnath This book, of all the IoT security books, delves into the critical aspects of security breaches in IoT and sensor networks, offering a comprehensive exploration of potential solutions. The book takes a two-fold approach, thoroughly examining the fundamentals and theoretical foundations of sensor networks and IoT security. It then explores the practical IoT security solutions that can be implemented to enhance the security of these elements, providing illuminating case studies to reinforce understanding. The book is an invaluable resource for industry professionals working with wireless sensor networks (WSN) and IoT systems, enabling them to elevate the security of these interconnected systems. Additionally, researchers, material developers, and technology specialists grappling with the intricate nuances of data privacy and security enhancement will find the book's comprehensive information highly beneficial. Final thoughts IoT security for professionals involves implementing secure communication protocols, strong authentication, device management, data encryption, access control, and regular security audits. It is crucial to stay updated, maintain a security-aware culture, and prioritize the ongoing monitoring and adaptation of security measures to address emerging threats. The above listed books delve into various aspects of IoT security, providing insights, strategies, and practical solutions to mitigate risks and protect IoT ecosystems. This article highlights some essential IoT security books that are indispensable resources for IoT professionals striving to enhance the security posture of their organizations. They also provide real world case studies, best practices and strategies to minimize risks.

Read More
Industrial IoT, IoT Security

Top 10 Tools for IoT Security Testing: Mitigating Cyber Threats

Article | July 11, 2023

Introduction Automation, interconnectivity, machine-learning, and real-time data are part of Industry 4.0, a new phase in the Industrial Revolution. Industry 4.0, which includes IIoT and smart manufacturing, combines physical production and operations with smart digital technologies. It creates a more holistic and linked environment for manufacturing and supply chain management organizations. In today's production environment, "automation" has a new, more advanced meaning than it has in the past. Industry 4.0 refers to the necessity of lean, efficient operations and the function of sustaining and improving production. In contrast, IIoT distinguishes manufacturing gadgets from consumer products that can connect wirelessly to internal networks and the internet. IIoT Powering the Fourth Industrial Revolution Manufacturing, logistics, oil and gas, transportation, mining, aviation, energy, and other industries use the IIoT. Its main goal is to improve operations, mainly through process automation and maintenance. IIoT capabilities improve asset performance and allow for improved maintenance management. The introduction of Industry 4.0 technologies marked a significant milestone in the human-machine relationship's history. I4.0 was first talked about in 2011. Since then, it has proliferated because of new technologies such as cyber-physical systems, IT/OT convergence, AI/ML, Blockchain, and AR/VR. Data is at the heart of the Fourth Industrial Revolution. The growth of the Internet of Things (IoT) is one of the main reasons behind this. The IoT is making a significant contribution in making businesses smarter and improving their workflows. Moreover, more data is being made and used by connected devices than ever before, from the home to the factory. In order to thrive in the fourth industrial revolution, businesses must embrace new technologies. The general structure of IIoT applications is defined by standards-based industrial system architectures such as the Industrial Internet Consortium's Reference Architecture. Sensors and IoT devices, IoT middleware platforms, IoT gateways, edge/cloud infrastructures, and analytics applications are all part of the stack. The Future of the IIoT The Industrial Internet of Things (IIoT) is primarily regarded as one of the most significant current and future trends influencing industrial companies. To comply with new rules, industries are rushing to upgrade their systems, machinery, and equipment. This is necessary to keep up with market volatility and deal with disruptive technologies. Safety, efficiency, and profitability have all improved dramatically in industries that have adopted IIoT. As IIoT technologies become more widely adopted, this tendency is projected to continue. Conclusion The fourth industrial revolution has drastically altered our perceptions of things in the workplace. At a rapid rate, capitalists are becoming more interested in sophisticated ideas. The way forward is to embrace existing and emerging technology throughout fundamental operations to unleash more enticing possibilities. It emphasizes the importance of comprehending the impact collaborative ecosystems can have as well as how they will become a major differentiator for generating value with a better-trained workforce.

Read More
Enterprise Iot

Securing Real-world IoT Applications through Penetration Testing

Article | July 20, 2023

Enhancing IoT security: Unveiling the significance of penetration testing in securing real-world IoT applications, identifying vulnerabilities, and mitigating risks for the protection of IoT data. Contents 1. Introduction to IoT Application Security and Penetration Testing 1.1 Vulnerabilities of IoT application security 2. Fundamentals of IoT Penetration Testing 3. Considerations for IoT Penetration Testing 4. Methodologies and Approaches for IoT Penetration Testing 5. Takeaway 1. Introduction to IoT Application Security and Penetration Testing Securing real-world IoT applications is paramount as the Internet of Things (IoT) permeates various aspects of any individuals lives. Penetration testing serves as a vital tool in identifying vulnerabilities and assessing the resilience of IoT systems against cyber threats. In this article, delve into the significance of penetration testing in securing IoT applications, exploring its role in identifying weaknesses, mitigating risks, and ensuring the integrity and confidentiality of IoT data. 1.1 Vulnerabilities of IoT application security Expanded Attack Surface: The proliferation of IoT devices has dramatically expanded the attack surface, increasing the potential for security breach enterprise networks. With billions of interconnected devices, each presenting a potential vulnerability, the risk of unauthorized access, data breaches, and other security incidents is significantly heightened. Risks: IoT devices often possess limited computational resources, making them susceptible to software and firmware vulnerabilities. Their resource-constrained nature can limit the implementation of robust security measures, leaving them exposed to potential attacks. Furthermore, a significant concern is the prevalence of default or weak credentials on these devices. Diverse Threat Landscape: The threat landscape surrounding IoT devices is extensive and ever-evolving. It encompasses various attack vectors, including malware, botnets, DDoS attacks, physical tampering, and data privacy breaches. One notable example is the Mirai botnet, which compromised a vast number of IoT devices to launch large-scale DDoS attacks, leading to significant disruptions in internet services. In addition, IoT devices can serve as entry points for infiltrating larger networks and systems, allowing attackers to pivot and gain control over critical infrastructure. Botnets: IoT devices can be infected with malware and become part of a botnet, which can be used for various malicious activities. Botnets are often utilized to launch distributed denial-of-service (DDoS) attacks, where a network of compromised devices overwhelms a target system with traffic, causing it to become inaccessible. Ransomware: IoT devices are also vulnerable to ransomware attacks. Ransomware is malicious software that encrypts the data on a device and demands a ransom payment in exchange for the decryption key. Data Breaches: IoT devices can be targeted to steal sensitive data, including personal identifiable information (PII) or financial data. Due to inadequate security measures, such as weak authentication or unencrypted data transmissions, attackers can exploit IoT devices as entry points to gain unauthorized access to networks and systems. 2. Fundamentals of IoT Penetration Testing IoT penetration testing, also known as ethical hacking or security assessment, is a critical process for testing and identifying vulnerabilities and assessing the security posture of IoT devices, networks, and applications. It involves simulating real-world attacks to uncover weaknesses and provide insights for remediation. IoT penetration testing involves identifying vulnerabilities, conducting targeted attacks, and evaluating the effectiveness of security controls in IoT systems. IoT pen-testing aims to proactively identify and address potential weaknesses that malicious actors could exploit. The methodology of IoT pen-testing typically follows a structured approach. It begins with attack surface mapping, which involves identifying all potential entry and exit points that an attacker could leverage within the IoT solution. This step is crucial for understanding the system's architecture and potential vulnerabilities. Pentesters spend considerable time gathering information, studying device documentation, analyzing communication protocols, and assessing the device's hardware and software components. Once the attack surface is mapped, the following steps involve vulnerability identification and exploitation. This includes conducting security tests, exploiting vulnerabilities, and evaluating the system's resilience to attacks. The penetration testers simulate real-world attack scenarios to assess the device's ability to withstand threats. After exploitation, post-exploitation activities are performed to determine the extent of the compromise and evaluate the potential impact on the device and the overall IoT ecosystem. Finally, a detailed technical report summarizes the findings, vulnerabilities, and recommendations for improving the device's security. 3. Considerations for IoT Penetration Testing Fuzzing and Protocol Reverse Engineering: Employ advanced techniques like fuzzing to identify vulnerabilities in communication protocols used by IoT devices. Fuzzing involves sending malformed or unexpected data to inputs and analyzing the system's response to uncover potential weaknesses. Radio Frequency (RF) Analysis: Perform RF analysis to identify weaknesses in wireless communication between IoT devices. This includes analyzing RF signals, monitoring wireless communication protocols, and identifying potential vulnerabilities such as replay attacks or unauthorized signal interception. Red Team Exercises: Conduct red team exercises to simulate real-world attack scenarios and evaluate the organization's detection and response capabilities. Red team exercises go beyond traditional penetration testing by emulating the actions and techniques of skilled attackers. This helps uncover any weaknesses in incident response, detection, and mitigation processes related to IoT security incidents. Embedded System Analysis: Gain expertise in analyzing and reverse engineering embedded systems commonly found in IoT devices. This includes understanding microcontrollers, debugging interfaces, firmware extraction techniques, and analyzing the device's hardware architecture. Embedded system analysis helps identify low-level vulnerabilities and potential attack vectors. Zero-Day Vulnerability Research: Engage in zero-day vulnerability research to identify previously unknown vulnerabilities in IoT devices and associated software. This requires advanced skills in vulnerability discovery, exploit development, and the ability to responsibly disclose vulnerabilities to vendors. 4. Methodologies and Approaches for IoT Penetration Testing Mobile, Web and Cloud Application Testing Mobile, web, and cloud application testing is integral to IoT penetration testing, focusing on assessing the security of applications that interact with IoT devices. This methodology involves various steps to evaluate the security of these applications across different platforms. For mobile applications, the methodology includes reviewing the binary code, conducting reverse engineering to understand the inner workings, and analyzing the file system structure. Sensitive information such as keys and certificates embedded within the mobile app are scrutinized for secure storage and handling. The assessment extends to examining the application's resistance to unauthorized modifications. In web applications, the testing covers common vulnerabilities like cross-site scripting (XSS), insecure direct object references (IDOR), and injection attacks. Application reversing techniques are employed to gain insights into the application's logic and potential vulnerabilities. Additionally, hardcoded API keys are identified and assessed for their security implications. Firmware Penetration Testing Firmware penetration testing is a crucial aspect of IoT security assessments, aiming to identify vulnerabilities within the firmware running on IoT devices. The methodology encompasses multiple steps to uncover weaknesses. The process begins with binary analysis, dissecting the firmware to understand its structure, functionality, and potential vulnerabilities. Reverse engineering techniques are applied to gain deeper insights into the firmware's inner workings, exposing potential weaknesses like hardcoded credentials or hidden functionality. The analysis extends to examining different file systems used in the firmware and evaluating their configurations and permissions. Sensitive keys, certificates, and cryptographic material embedded within the firmware are scrutinized for secure generation, storage, and utilization. Additionally, the resistance of the firmware to unauthorized modification is assessed, including integrity checks, secure boot mechanisms, and firmware update processes. IoT Device Hardware Pentest IoT device hardware penetration testing involves a systematic methodology to assess the security of IoT devices at the hardware level. This comprehensive approach aims to identify vulnerabilities and weaknesses that attackers could exploit. The methodology includes analyzing internal communication protocols like UART, I2C, and SPI to understand potential attack vectors. Open ports are examined to evaluate the security controls and risks associated with communication interfaces. The JTAG debugging interface is explored to gain low-level access and assess the device's resistance to unauthorized access. Extracting firmware from EEPROM or FLASH memory allows testers to analyze the code, configurations, and security controls. Physical tampering attempts are made to evaluate the effectiveness of the device's physical security measures. 5. Takeaway Penetration testing is crucial in securing real-world IoT applications, enabling organizations to identify vulnerabilities and mitigate risks effectively. By conducting comprehensive and regular penetration tests, organizations can proactively identify and address security weaknesses, ensuring the integrity and confidentiality of IoT data. With the ever-growing threat landscape and increasing reliance on IoT technologies, penetration testing has become indispensable to safeguard IoT applications and protect against potential cyber-attacks. Several key factors will shape the future of IoT penetration testing. First, the increasing complexity of IoT systems will require testing methodologies to adapt and assess intricate architectures, diverse protocols, and a wide range of devices. Second, there will be a greater emphasis on security by design, with penetration testing focusing on verifying secure coding practices, robust access controls, and secure communication protocols. Third, supply chain security will become crucial, necessitating penetration testing to assess the security measures implemented by vendors, third-party components, and firmware updates. Fourth, integrating IoT penetration testing with DevSecOps practices will ensure continuous monitoring and improvement of IoT system security. Lastly, as attackers become more sophisticated, future IoT penetration testing methodologies will need to keep pace with evolving IoT-specific attack techniques. By embracing these advancements, IoT penetration testing will play a vital role in ensuring the security and privacy of IoT deployments.

Read More

5G vs. Wi-Fi 6: How Two Wireless Technologies are Revolutionizing the Internet of Things

Article | June 25, 2020

The year 2020 was supposed to be a breakthrough year for many technologies but, most businesses have now been forced back into building an infrastructure to transit their workforce to work remotely and ensure continuity of workflow. Nevertheless, an unprecedented set of events have pushed several industries to accelerate the adoption of technologies as they continue to work from home. 5G and Wi-Fi 6 are two tech advancements that have been turning eyes around the world since their introduction. The two wireless technologies are well on their way to revolutionize the Internet of Things as businesses move fast towards digitization and the world is excited. Table of Contents: - Wi-Fi 6: A Breakthrough in Wireless Technology - 5G: For a Better Connected World - How are Wi-Fi 6 and 5G Transforming the IoT? - 5G and Wi-Fi 6: Rivals or Allies? Wi-Fi 6: A Breakthrough in Wireless Technology The next-generation Wi-Fi with boosted speed was introduced last year to meet the demand for faster internet amongst the rising internet users. But, Wi-Fi 6 is simply more than a tweak in the speed. Technically called 802.11ax, Wi-Fi 6 is the advancement in the wireless standard doing the same basic things but with greater efficiency in the device-dense areas, and offering much greater bandwidth than its predecessor 802.11ac or Wi-Fi 5. Wi-Fi 6 promises a speed up to 9.6 Gbps up four times than that of Wi-Fi 5 (3.5Gbps). In reality, this is just a theoretical maximum that one is not expected to reach. Even still, the 9.6Gbps is higher speed and doesn’t have to go to a single device but split up across a network of devices. A new technology in Wi-Fi 6 called the Target Wake Time (TWT) lets routers set check-in times with devices, allowing communications between the router and the devices. The TWT also reduces the time required to keep the antennas powered to search for signals, which in turn also improves battery life. Wi-Fi 6 also comes with a new security protocol called WPA3, making it difficult to hack the device passwords by simple guesswork. In short, Wi-Fi 6 means better speeds with optimized battery lives, and improved security. 5G: For a Better Connected World 5G is the next in line to replace 4G LTE. While Wi-Fi covers small scale internet requirements, cellular networks like 5G are here to connect everyone and everything virtually on a larger scale. The technology is based on the Orthogonal frequency-division Multiplexing (OFDM) that reduces interference by modulating a digital signal across several channels. Ability to operate in both lower bands (like sub-6 GHz) and mmWave (24 GHz and above), 5G promises increased network capacity, low latency and multi-Gbps throughput. 5G also uses the new 5G NR air interface to optimize OFDM to deliver not just better user experience but also a wider one extending to many industries, and mission-critical service areas. The 5G technology, in a nutshell, has brought with it ultra-high speeds, increased and scalable network capacity, and very low latency. How are Wi-Fi 6 and 5G Transforming the IoT? 5G and Wi-Fi 6 will fill up the speed gaps that our existing networks are not able to especially, in crowded homes or congested urban areas. It's not just about the speed. The two wireless technologies will increase network capacity and improve signal strengths. On the business front, 5G and Wi-Fi 6 are both living up to the hype they created since their introduction. Wi-Fi 6 has emerged, as the enabler of converged IoT at the edge. It has put IT into OT applications, connected devices and processed data from devices such as IP security cameras, LED lighting, and digital signage with touch screen or voice command. Wi-Fi 6 can now be used in office buildings for intelligent building management systems, occupancy sensors, access control (smart locks), smart parking, and fire detection and evacuation. It’s (Wi-Fi 6) built for IoT. It will connect many, many more people to mobile devices, household appliances, or public utilities, such as the power grid and traffic lights. The transfer rates with Wi-Fi 6 are expected to improve anywhere from four times to 10 times current speeds, with a lower power draw, i.e. while using less electricity. - Tom Soderstrom, IT Chief Technology and Innovation Officer at NASA’s Jet Propulsion Laboratory (JPL) Similarly, 5G will open doors for more devices and data. It will increase the adoption of edge computing for faster data processing close to the point of action. The hype around 5G is because of the three key attributes it comes with: enhanced mobile broadband (eMBB), ultra-reliable low-latency (uRLLC), and massive IoT device connectivity (mMTC). But there is the fourth attribute that sets it apart from its predecessor: use of a spectrum that operates at the low-end frequency range (typically 600 MHz). Called as ‘low-band 5G’, it delivers high speeds with signals that go for miles without propagation losses and ability to penetrate obstacles. The 5G operates in the new millimetre-wave bands (24 to 86 GHz) delivering more capacity to enable many low-power IoT connections. If we were to point down the benefits, these two wireless technologies are bringing to the Internet of Things those would be: Increased Human-Device Interactions Increased Data and Devices More IoT investments Advancing to the Edge Acceleration towards Industrial IoT Enhanced use of IoT devices Better VUI 5G and Wi-Fi 6: Rivals or Allies? In February, Cisco estimated that by 2023 M2M communications will contribute to 50% or about 14.7 billion of all networked connections. Cisco’s Annual Internet Report reveals that 5G will enable new IoT applications with greater bandwidth and lower latencies and will accelerate innovations at scale. The same report estimates that 10.6% of global mobile connections in 2023 will be 5G, while Wi-Fi 6 hotspots will be 11.6% of all public Wi-Fi hotspots growing 13 times from 2020 through 2023. Wi-Fi6 will serve as a necessary complement to 5G. A significant portion of cellular traffic is offloaded to Wi-Fi networks to prevent congestion and degraded performance of cellular networks (due to demand). - Thomas Barnett, Director of Thought Leadership, Cisco Systems The two technologies are here to feed different data-hungry areas with gigabit speeds. With lower deployment costs, Wi-Fi 6 will be dominating the home and business environments where access points need to serve more users covering devices like smartphones, tablets, PCs, printers, TV sets, and streaming devices. With an unlicensed spectrum, the performance of Wi-Fi 6 depends on the number of users, that are using the network at the same time. 5G, with its longer range, will deliver mobile connections and accelerate smart city deployments and manufacturing operations. Like LTE, 5G speeds will depend upon users’ proximity to base stations and the number of people using that network. The performance of the two depends largely on the area where they are being deployed. For instance, Wi-Fi can very well handle machine-to-machine communications in a managed manufacturing unit, whereas 5G can enhance campus-wide manufacturing operations efficiently. Businesses will have a decision to make which among the two wireless networks fulfils their data appetite. In conclusion, the two wireless technologies continue to develop in parallel and causing the next big wave in the Internet of Things.

Read More
MORE ARTICLES

Spotlight

Adita Technologies

Adita Technologies is a Specialist Solutions Reseller and Services Company. We provide Thought Leadership, Business Process Improvement, Software Implementation and Support Services to our customers. Our strengths are our people and the attention we pay to our clients to provide them with strategic digital enterprise solutions to support their current and future business needs.

Related News

Industrial IoT

Tuya Smart Delivers IoT Best Practice Using Amazon Aurora, Leads the Direction of Cloud Database Innovation Use Cases with Amazon Web Services

Tuya Smart | January 24, 2024

Tuya Smart, the global IoT developer service provider, has delivered its Best Practices in using Amazon Aurora at IoT industry. Amazon Aurora is a relational database management system (RDBMS) built for the cloud with full MySQL and PostgreSQL compatibility. Tuya and Amazon Web Services (AWS) built a solid basis of collaboration in database use cases exploration while also delivering smooth operation of billions of devices requiring high concurrency and low latency. Tuya and AWS: Building a benchmark for database implementation practice Tuya is a leading technology company focused on making our lives smarter. Tuya does this by offering a cloud platform that connects a range of devices via the IoT. By building interconnectivity standards, Tuya bridges the intelligent needs of brands, OEMs, developers, and retail chains across a broad range of smart devices and industries. Tuya's solutions enable partners and customers by improving the value of their products while making consumers' lives more convenient through the application of technology. As of September 30, 2023, the Tuya IoT Developer Platform has accumulated over 909,000 registered developers from over 200 countries and regions, covering industries including real estate, hospitality, residential, industry, agriculture, etc. The greater the breadth of business coverage, the more advanced technological support required. Tuya faces high-frequency reads and writes as well as enormous data storage challenges from billion-level online devices. Meanwhile, due to the commercial scenarios involving smart homes and smart industries, Tuya's operating response demands low latency in order to deliver a smoother user experience. Furthermore, Tuya's quick expansion and regular business changes have posed significant challenges to its operation and maintenance management. Tuya selected Amazon Aurora as core database engine for its unparalleled performance and availability at global scale. How does Tuya specifically leverage the Amazon Aurora database? Tuya currently manages billions of real-time online devices and can keep cloud message processing response times under 10 milliseconds. However, billions online devices provide a challenge. During holidays, there will be peak traffic volume, with tens of millions of devices going online and offline virtually simultaneously. Tuya used Amazon Aurora to construct a data storage solution to solve the main problem of rapid increase in short-term traffic, and to fully utilize resources. Aurora's design, which separates compute and storage and low-latency replication functionality, improves system throughput by enhancing the effect of read-write separation. Aurora provides up to 15 read replicas, setting the groundwork for Tuya's read flexibility development. At the same time, Tuya has integrated Aurora Serverless, which includes seconds-level elastic expansion and contraction, allowing Tuya to handle extremely heavy business traffic smoothly. Tuya's customers are located throughout more than 200 nations and regions, and they deal with widespread access to IoT data. Different countries and regions have different regulations on data compliance, such as GDPR and local PII. Tuya needs to adhere to each region's data security compliance regulations. As Tuya's primary business data storage provider, Amazon Aurora was among the first in the public cloud sector to enable physical encryption for database products, which significantly decreased the cost of Tuya's security compliance transformation and gave Tuya excellent basic security guarantees. In addition, Tuya is continuously testing out additional new innovation unique to Aurora, such as Enhanced Binlog, zero-ETL, and Limitless Database. Aurora's ongoing investment in innovative technologies provides more opportunities for Tuya to expand its business. Additionally, based on Tuya's comprehensive IoT developer platform architecture, both parties have collaborated to enhance Tuya IoT applications performance indicators like stability, low latency, scalability, and security in the real-world application of databases, revealing more potential and possibilities and enabling the IoT. Tuya and AWS: Continuously promoting the evolution of cloud experience Data-driven approaches will usher in a new era of innovation in tandem with the swift advancement of data applications. At this year's re:Invent conference, Peter DeSantis, Senior Vice President of AWS, reviewed the relational database's development history in great detail. In 2014, AWS created Aurora based on log architecture. In 2018, the release of Aurora Serverless allowed for seamless scaling of database resources through virtualization technology. This year, AWS announced the launch of the Amazon Aurora Limitless Database, which automatically scales to millions of write transactions per second well beyond current limits of a single PostgreSQL instance. It is apparent from Amazon Aurora's development history that AWS has always been dedicated to innovation. Customers and partners from a range of industries actively utilizes AWS to enable rapid innovation in a variety of ways, while also working together to enhance the cloud experience. Similar to how Tuya and AWS work together, Tuya's effective and user-friendly IoT developer platform and rich and varied IoT solutions have built a significant lighthouse, embracing the Amazon Aurora's innovation and accelerated the process of building a more secure and reliable IoT database use case. Amazon Aurora VP Yan Leshinsky said, "Amazon Aurora is the fastest growing service in the history of AWS and is trusted by hundreds of thousands of customers. We innovate by working backwards from customers' needs, and we appreciate the feedback that Tuya has shared. We remain committed in developing new Aurora features and capabilities so all customers can accelerate their applications' capabilities and business growth by using Aurora." "Tuya has always committed to strengthening advanced and valuable innovations, while offering open and neutral ecosystem assistance for global partners. We provide our developers with enhanced operational and maintenance control, adaptable data storage options, superior product experience, and a global business layout by utilizing the Amazon Aurora database. We will continue to work with AWS to benefit the world in the future in areas including technology, ecosystems, and cloud computing, helping customers achieve commercial success." said Eva Na, Vice President of Marketing and Strategic Cooperation, and CMO of Tuya Smart. Enhancing the partnership with AWS, Tuya delivered IoT best practice using Amazon Aurora database, giving the industry's growth additional impetus. Tuya will maintain its open and neutral stance going forward, collaborating with cloud service providers like AWS to offer global developers a more secure, reliable, and productive cloud environment, thereby advancing the innovation and development of the entire industry.

Read More

Enterprise Iot

Nozomi Networks Delivers Industry's First Multi-Spectrum Wireless Security Sensor for Global OT and IoT Environments

Nozomi Networks | January 25, 2024

Nozomi Networks Inc., the leader in OT and IoT security, today introduced Guardian Air™, the industry's only wireless spectrum sensor purpose-built for OT and IoT environments worldwide. With 80 percent of new IoT deployments wirelessly connected, wireless is quickly becoming a preferred network. The explosion of wirelessly connected devices increases potential access points and exploitation of networks. This puts critical infrastructure at risk of cyberattacks and disruptions to operations. Guardian Air provides much-needed visibility into wirelessly enabled devices which until now were only detected once connected to the wired network. Guardian Air monitors several prominent wireless frequencies, not just Bluetooth and Wi-Fi, to provide security teams with immediate visibility of connected sensors, devices, laptops and cell phones. With the addition of Guardian Air, customers have a comprehensive network solution all in one integrated platform. "Nozomi Networks has once again innovated to address an unmet need for wireless-level monitoring in OT and IoT environments," said Danielle VanZandt, an industry manager for commercial and public security research at Frost & Sullivan. "From smart manufacturing to digital medicine, to building automation, to modern oil field production and more, today industrial organizations are relying on billions of wireless devices to speed production and time to market. Guardian Air gives IT security professionals and OT operators the visibility they need to get a firm handle on wireless risk management and response." With Guardian Air, IT security professionals and OT operators can: Continuously monitor prominent wireless frequency technologies used in OT and IoT environments including Bluetooth, Wi-Fi, cellular, LoRaWAN, Zigbee, GPS, drone RF protocols, WirelessHART and more, Immediately detect wirelessly connected assets and gain asset information to quickly address unauthorized installations, Detect wireless-specific threats, including brute force attacks, spoofing, and bluejacking – with the added ability to determine the location of the devices performing the attacks, Seamlessly integrate wireless data into a single OT & IoT security platform that unifies asset visibility from the endpoint and across wired and wireless networks. "Wireless is fundamentally changing the way industrial organizations operate. Unfortunately, it also massively expands the potential attack surface," said Nozomi Networks Co-founder and Chief Product Officer Andrea Carcano. "Guardian Air solves this problem by giving customers the accurate visibility they need at the wireless level to minimize risk while maximizing resiliency. Because Guardian Air integrates easily into the Nozomi Networks Vantage platform, customers can combine network, endpoint and wireless for the greatest visibility, threat detection and AI-powered analysis for real-time security management and remediation across the entire attack surface." The Nozomi Guardian Air wireless sensor will be available this spring from Nozomi Networks and its extensive global network of channel partners. About Nozomi Networks Nozomi Networks accelerates digital transformation by protecting the world's critical infrastructure, industrial and government organizations from cyber threats. Our solution delivers exceptional network and asset visibility, threat detection, and insights for OT and IoT environments. Customers rely on us to minimize risk and complexity while maximizing operational resilience. www.nozominetworks.com

Read More

IoT Security

AppViewX Digital Trust Platform Named IoT Security Product of the Year

AppViewX | January 12, 2024

AppViewX, the leader in automated machine identity management (MIM) and application infrastructure security, today announced the AppViewX Digital Trust Platform has been named IoT Security Product of the Year in the 8th annual IoT Breakthrough awards program, which showcases technologies and companies that drive innovation and exemplify the best in IoT technology solutions across the globe. IoT Breakthrough is a leading market intelligence organization that recognizes the top companies, technologies and products in the global IoT market. The mission of the IoT Breakthrough Awards program is to recognize the innovators, leaders and visionaries from around the globe in a range of IoT categories, including Industrial and Enterprise IoT, Smart City technology, Connected Home and Home Automation, Connected Car, and many more. This year's program attracted nominations from companies all over the world. “Unmanaged machine identities for IoT devices can create critical security vulnerabilities, but for most organizations discovering, maintaining visibility into and controlling them has become manually unfeasible,” said Gregory Webb, CEO of AppViewX. “The AppViewX Digital Trust Platform automates IoT identity management at scale across the largest, most complex and distributed customer environments, allowing customers to achieve significantly stronger security posture and meet compliance requirements.” All IoT Breakthrough Award nominations were evaluated by an independent panel of experts within the IoT industry, with the winning products and companies selected based on a variety of criteria, including most innovative and technologically advanced products and services. About AppViewX Digital Trust Platform Out of the box, AppViewX provides instant value to customers by discovering all certificates across complex enterprise environments, building and maintaining inventories, provisioning both private and public trust certificates from any CA, alerting to expiring certificates and fully automating renewals and revocation to eliminate outages and security weaknesses across machines, applications, services, and security infrastructure. About AppViewX AppViewX is trusted by the world’s leading organizations to reduce risk, ensure compliance, and increase visibility through automated machine identity management and application infrastructure security and orchestration. The AppViewX platform provides complete certificate lifecycle management and PKI-as-a-Service using streamlined workflows to prevent outages, reduce security incidents and enable crypto-agility. Fortune 1000 companies, including six of the top ten global commercial banks, five of the top ten global media companies, and five of the top ten managed healthcare providers rely on AppViewX to automate NetOps, SecOps, and DevOps. AppViewX is headquartered in New York with offices in the U.K., Australia and three development centers of excellence in India. For more information, visit https://www.appviewx.com and follow us on LinkedIn and Twitter.

Read More

Industrial IoT

Tuya Smart Delivers IoT Best Practice Using Amazon Aurora, Leads the Direction of Cloud Database Innovation Use Cases with Amazon Web Services

Tuya Smart | January 24, 2024

Tuya Smart, the global IoT developer service provider, has delivered its Best Practices in using Amazon Aurora at IoT industry. Amazon Aurora is a relational database management system (RDBMS) built for the cloud with full MySQL and PostgreSQL compatibility. Tuya and Amazon Web Services (AWS) built a solid basis of collaboration in database use cases exploration while also delivering smooth operation of billions of devices requiring high concurrency and low latency. Tuya and AWS: Building a benchmark for database implementation practice Tuya is a leading technology company focused on making our lives smarter. Tuya does this by offering a cloud platform that connects a range of devices via the IoT. By building interconnectivity standards, Tuya bridges the intelligent needs of brands, OEMs, developers, and retail chains across a broad range of smart devices and industries. Tuya's solutions enable partners and customers by improving the value of their products while making consumers' lives more convenient through the application of technology. As of September 30, 2023, the Tuya IoT Developer Platform has accumulated over 909,000 registered developers from over 200 countries and regions, covering industries including real estate, hospitality, residential, industry, agriculture, etc. The greater the breadth of business coverage, the more advanced technological support required. Tuya faces high-frequency reads and writes as well as enormous data storage challenges from billion-level online devices. Meanwhile, due to the commercial scenarios involving smart homes and smart industries, Tuya's operating response demands low latency in order to deliver a smoother user experience. Furthermore, Tuya's quick expansion and regular business changes have posed significant challenges to its operation and maintenance management. Tuya selected Amazon Aurora as core database engine for its unparalleled performance and availability at global scale. How does Tuya specifically leverage the Amazon Aurora database? Tuya currently manages billions of real-time online devices and can keep cloud message processing response times under 10 milliseconds. However, billions online devices provide a challenge. During holidays, there will be peak traffic volume, with tens of millions of devices going online and offline virtually simultaneously. Tuya used Amazon Aurora to construct a data storage solution to solve the main problem of rapid increase in short-term traffic, and to fully utilize resources. Aurora's design, which separates compute and storage and low-latency replication functionality, improves system throughput by enhancing the effect of read-write separation. Aurora provides up to 15 read replicas, setting the groundwork for Tuya's read flexibility development. At the same time, Tuya has integrated Aurora Serverless, which includes seconds-level elastic expansion and contraction, allowing Tuya to handle extremely heavy business traffic smoothly. Tuya's customers are located throughout more than 200 nations and regions, and they deal with widespread access to IoT data. Different countries and regions have different regulations on data compliance, such as GDPR and local PII. Tuya needs to adhere to each region's data security compliance regulations. As Tuya's primary business data storage provider, Amazon Aurora was among the first in the public cloud sector to enable physical encryption for database products, which significantly decreased the cost of Tuya's security compliance transformation and gave Tuya excellent basic security guarantees. In addition, Tuya is continuously testing out additional new innovation unique to Aurora, such as Enhanced Binlog, zero-ETL, and Limitless Database. Aurora's ongoing investment in innovative technologies provides more opportunities for Tuya to expand its business. Additionally, based on Tuya's comprehensive IoT developer platform architecture, both parties have collaborated to enhance Tuya IoT applications performance indicators like stability, low latency, scalability, and security in the real-world application of databases, revealing more potential and possibilities and enabling the IoT. Tuya and AWS: Continuously promoting the evolution of cloud experience Data-driven approaches will usher in a new era of innovation in tandem with the swift advancement of data applications. At this year's re:Invent conference, Peter DeSantis, Senior Vice President of AWS, reviewed the relational database's development history in great detail. In 2014, AWS created Aurora based on log architecture. In 2018, the release of Aurora Serverless allowed for seamless scaling of database resources through virtualization technology. This year, AWS announced the launch of the Amazon Aurora Limitless Database, which automatically scales to millions of write transactions per second well beyond current limits of a single PostgreSQL instance. It is apparent from Amazon Aurora's development history that AWS has always been dedicated to innovation. Customers and partners from a range of industries actively utilizes AWS to enable rapid innovation in a variety of ways, while also working together to enhance the cloud experience. Similar to how Tuya and AWS work together, Tuya's effective and user-friendly IoT developer platform and rich and varied IoT solutions have built a significant lighthouse, embracing the Amazon Aurora's innovation and accelerated the process of building a more secure and reliable IoT database use case. Amazon Aurora VP Yan Leshinsky said, "Amazon Aurora is the fastest growing service in the history of AWS and is trusted by hundreds of thousands of customers. We innovate by working backwards from customers' needs, and we appreciate the feedback that Tuya has shared. We remain committed in developing new Aurora features and capabilities so all customers can accelerate their applications' capabilities and business growth by using Aurora." "Tuya has always committed to strengthening advanced and valuable innovations, while offering open and neutral ecosystem assistance for global partners. We provide our developers with enhanced operational and maintenance control, adaptable data storage options, superior product experience, and a global business layout by utilizing the Amazon Aurora database. We will continue to work with AWS to benefit the world in the future in areas including technology, ecosystems, and cloud computing, helping customers achieve commercial success." said Eva Na, Vice President of Marketing and Strategic Cooperation, and CMO of Tuya Smart. Enhancing the partnership with AWS, Tuya delivered IoT best practice using Amazon Aurora database, giving the industry's growth additional impetus. Tuya will maintain its open and neutral stance going forward, collaborating with cloud service providers like AWS to offer global developers a more secure, reliable, and productive cloud environment, thereby advancing the innovation and development of the entire industry.

Read More

Enterprise Iot

Nozomi Networks Delivers Industry's First Multi-Spectrum Wireless Security Sensor for Global OT and IoT Environments

Nozomi Networks | January 25, 2024

Nozomi Networks Inc., the leader in OT and IoT security, today introduced Guardian Air™, the industry's only wireless spectrum sensor purpose-built for OT and IoT environments worldwide. With 80 percent of new IoT deployments wirelessly connected, wireless is quickly becoming a preferred network. The explosion of wirelessly connected devices increases potential access points and exploitation of networks. This puts critical infrastructure at risk of cyberattacks and disruptions to operations. Guardian Air provides much-needed visibility into wirelessly enabled devices which until now were only detected once connected to the wired network. Guardian Air monitors several prominent wireless frequencies, not just Bluetooth and Wi-Fi, to provide security teams with immediate visibility of connected sensors, devices, laptops and cell phones. With the addition of Guardian Air, customers have a comprehensive network solution all in one integrated platform. "Nozomi Networks has once again innovated to address an unmet need for wireless-level monitoring in OT and IoT environments," said Danielle VanZandt, an industry manager for commercial and public security research at Frost & Sullivan. "From smart manufacturing to digital medicine, to building automation, to modern oil field production and more, today industrial organizations are relying on billions of wireless devices to speed production and time to market. Guardian Air gives IT security professionals and OT operators the visibility they need to get a firm handle on wireless risk management and response." With Guardian Air, IT security professionals and OT operators can: Continuously monitor prominent wireless frequency technologies used in OT and IoT environments including Bluetooth, Wi-Fi, cellular, LoRaWAN, Zigbee, GPS, drone RF protocols, WirelessHART and more, Immediately detect wirelessly connected assets and gain asset information to quickly address unauthorized installations, Detect wireless-specific threats, including brute force attacks, spoofing, and bluejacking – with the added ability to determine the location of the devices performing the attacks, Seamlessly integrate wireless data into a single OT & IoT security platform that unifies asset visibility from the endpoint and across wired and wireless networks. "Wireless is fundamentally changing the way industrial organizations operate. Unfortunately, it also massively expands the potential attack surface," said Nozomi Networks Co-founder and Chief Product Officer Andrea Carcano. "Guardian Air solves this problem by giving customers the accurate visibility they need at the wireless level to minimize risk while maximizing resiliency. Because Guardian Air integrates easily into the Nozomi Networks Vantage platform, customers can combine network, endpoint and wireless for the greatest visibility, threat detection and AI-powered analysis for real-time security management and remediation across the entire attack surface." The Nozomi Guardian Air wireless sensor will be available this spring from Nozomi Networks and its extensive global network of channel partners. About Nozomi Networks Nozomi Networks accelerates digital transformation by protecting the world's critical infrastructure, industrial and government organizations from cyber threats. Our solution delivers exceptional network and asset visibility, threat detection, and insights for OT and IoT environments. Customers rely on us to minimize risk and complexity while maximizing operational resilience. www.nozominetworks.com

Read More

IoT Security

AppViewX Digital Trust Platform Named IoT Security Product of the Year

AppViewX | January 12, 2024

AppViewX, the leader in automated machine identity management (MIM) and application infrastructure security, today announced the AppViewX Digital Trust Platform has been named IoT Security Product of the Year in the 8th annual IoT Breakthrough awards program, which showcases technologies and companies that drive innovation and exemplify the best in IoT technology solutions across the globe. IoT Breakthrough is a leading market intelligence organization that recognizes the top companies, technologies and products in the global IoT market. The mission of the IoT Breakthrough Awards program is to recognize the innovators, leaders and visionaries from around the globe in a range of IoT categories, including Industrial and Enterprise IoT, Smart City technology, Connected Home and Home Automation, Connected Car, and many more. This year's program attracted nominations from companies all over the world. “Unmanaged machine identities for IoT devices can create critical security vulnerabilities, but for most organizations discovering, maintaining visibility into and controlling them has become manually unfeasible,” said Gregory Webb, CEO of AppViewX. “The AppViewX Digital Trust Platform automates IoT identity management at scale across the largest, most complex and distributed customer environments, allowing customers to achieve significantly stronger security posture and meet compliance requirements.” All IoT Breakthrough Award nominations were evaluated by an independent panel of experts within the IoT industry, with the winning products and companies selected based on a variety of criteria, including most innovative and technologically advanced products and services. About AppViewX Digital Trust Platform Out of the box, AppViewX provides instant value to customers by discovering all certificates across complex enterprise environments, building and maintaining inventories, provisioning both private and public trust certificates from any CA, alerting to expiring certificates and fully automating renewals and revocation to eliminate outages and security weaknesses across machines, applications, services, and security infrastructure. About AppViewX AppViewX is trusted by the world’s leading organizations to reduce risk, ensure compliance, and increase visibility through automated machine identity management and application infrastructure security and orchestration. The AppViewX platform provides complete certificate lifecycle management and PKI-as-a-Service using streamlined workflows to prevent outages, reduce security incidents and enable crypto-agility. Fortune 1000 companies, including six of the top ten global commercial banks, five of the top ten global media companies, and five of the top ten managed healthcare providers rely on AppViewX to automate NetOps, SecOps, and DevOps. AppViewX is headquartered in New York with offices in the U.K., Australia and three development centers of excellence in India. For more information, visit https://www.appviewx.com and follow us on LinkedIn and Twitter.

Read More

Events