Upload File

iot & regulation

23
IOT & Regulation Jean Goetzinger Président du CLUSIL [email protected] www.clusil.lu

Upload: others

Post on 24-Apr-2022

0 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: IOT & Regulation

IOT & Regulation

Jean GoetzingerPrésident du CLUSIL

[email protected]

mailto:[email protected]
Page 2: IOT & Regulation

Agenda

• What is Internet of Things ?

• Some Security Aspects

• IOT and Regulatory Issues

• Recommendations

• Questions & Answers

ISED Days 28/04/2017 2

Page 3: IOT & Regulation

IntroductionThe Internet of Things (IoT) refers to the ever-growing network of physical objects that feature an IP address for internet connectivity, and the communication that occurs between these objects and other Internet-enabled devices and systems.

ISED Days 28/04/2017 3

Page 4: IOT & Regulation

Introduction

ISED Days 28/04/2017 4

Page 5: IOT & Regulation

We believe that our dependence on computer technology is

increasing faster than our ability to safeguard ourselves.

ISED Days 28/04/2017 5

Page 6: IOT & Regulation

Introduction

Vidéo

ISED Days 28/04/2017 6

Page 7: IOT & Regulation

Examples of IOT

• Smart Home

• Smart Cities

• Smart Devices

• Wearables

ISED Days 28/04/2017 7

• Automobiles

• Transport Systems

• Manufacturing

• Smart Metering

• eHealth

Page 8: IOT & Regulation

Security Considerations

The market can’t fix this becauseneither the buyer nor the sellercares.

ISED Days 28/04/2017 8

Page 9: IOT & Regulation

IOT Expands Security Needs

ISED Days 28/04/2017 9

ConvergedManagedNetwork

Resilienceat scale Security

DistributedIntelligence

Application Enablement

Page 10: IOT & Regulation

Security Considerations

ISED Days 28/04/2017 10

Page 11: IOT & Regulation

Regulatory Issues

Licensing and spectrum managementEnsure spectrum is available for a wide range of IoT applications, at short and longrange, in licensed and unlicensed bands.

Switching and roamingEncourage development of SIMs and mobile network accounts suitable for large M2Musers, roaming mobile devices, and fixed devices in areas of poor reception

Addressing and numberingLarge address space needed for globally addressable things

CompetitionEnsure competition regulators have capability to monitor IoT markets for abuses ofdominant positions. Provide institutional mechanism for ongoing review of laws andregulations for impact on IoT competitiveness.

Security and privacy

ISED Days 28/04/2017 11

Page 12: IOT & Regulation

Security and PrivacyGoal Significantly reduce security vulnerabilities in IoT systems,

Encourage security and vulnerability patching of devices.

Smart city vulnerabilities can be hard to fix due to legacy systems, but present significant safety issues

(e.g. in traffic lights).

Ensure individual control of profiles, which can be used to infer sensitive personal information, such as

medical disorders.

Reduce potential for discrimination in employment, financial and healthcare services.

Best practice Ensuring security and privacy from outset of IoT system design process.

Development of co-regulation by all stakeholders to protect security and privacy.

Further development of privacy and consumer protection rules to ensure security testing of IoT systems

that process sensitive personal data.

ISED Days 28/04/2017 12

Page 13: IOT & Regulation

Incorporate Security at the Design Phase

Promote Security Updates and Vulnerability Management

Build on Recognized Security Practices

Prioritize Security Measures According to Potential Impact

Promote Transparency across IoT

Connect Carefully and Deliberately

Development of further guidance for privacy requirements PIA, data minimisation,

Collaboration telecoms and DP agencies

Security and Privacy Measures

ISED Days 28/04/2017 13

Page 14: IOT & Regulation

OWASP Top 10 Insecure Web Interface

Insufficient Authentication/Authorization

Insecure Network Services

Lack of Transport Encryption

Privacy Concerns

Insecure Cloud Interface

Insecure Mobile Interface

Insufficient Security Configurability

Insecure Software/Firmware

Poor Physical Security

ISED Days 28/04/2017 14

Page 15: IOT & Regulation

The Internet of Things Device

The Cloud

The Mobile Application

The Network Interfaces

The Software

Use of Encryption

Use of Authentication

Physical Security

USB ports

All elements need to be considered

ISED Days 28/04/2017 15

Page 16: IOT & Regulation

• Data Protection and Privacy

• Communications Law

• Cyber Security

• Cybercrime

• Intellectuel Property Law

• Consumer and product liability law

ISED Days 28/04/2017 16

Regulations

Page 17: IOT & Regulation

Regulations

ISED Days 28/04/2017 17

Stricter Consent Req.Privacy by DesignPrivacy by defaultData PortabilityEncryption, anonymisation

Page 18: IOT & Regulation

Regulations

ISED Days 28/04/2017 18

Page 19: IOT & Regulation

Regulations

ISED Days 28/04/2017 19

The overall goal of the establishment of the AIOTI isthe creation of a dynamic European IoT ecosystem tounleash the potentials of the IoT. This also offers anopportunity to discuss policy obstacles to further IoTtake up, and to forge consensus.WG4 makes Policy recommandations on:- Privacy- Security- Liability- Net Neutrality

Page 20: IOT & Regulation

Regulations

ISED Days 28/04/2017 20

Prioritizing IOT Security

Page 21: IOT & Regulation

Regulations

• Increased competition

• Stronger Consumer Protection

• Better use of radio frequencies

• A safer online environment

Modernisation of current telecoms rules to drive investment !

ISED Days 28/04/2017 21

Page 22: IOT & Regulation

Regulations

22ISED Days 28/04/2017

Page 23: IOT & Regulation

Thank You

ISED Days 28/04/2017 23


InsureTech 2020: Regulation – Will it ever catch up? · P2P Digital platforms Underwriting Administration and Claims Robotics and automatic IoT Blockchain / Distributed Ledgers

Eclipse IoT stack with Java and the End-to-end IoT solutions IoT... · with Java and the Eclipse IoT stack. IoT is Big. Open IoT Stack for Java. End-to-end IoT? Actuators/Sensors

IoT Trust Framework leading to self regulation code of conduct and certification models Craig Spiezle Executive Director & President Online Trust Alliance

Open Source IoT (OS-IoT) - ATIS

An in-depth exam of IoT, IoT Core Components, IoT Layers

Engineering Secure Software. Agenda What is IoT? Security implications of IoT IoT Attack Surface Areas IoT Testing Guidelines Top IoT Vulnerabilities

IoT / Innovation : Data ethics, regulation and responsible design · 21 February 2019 h. 3.00 pm Sala Agorà - I3P Via Pier Carlo Boggio 59/A IoT / Innovation : Data ethics, regulation

policy perspectives - Florence School of Regulation · EU certification schemes for ICT ... AGEing well: Active and healthy ageing. ... IoT Platforms Interoperability and Integration

A new digitAl Union I What’s in it for citizens with IoT ... · A digital Union should make more space for innovation. Cases of double-regulation or over-regulation of some market

HPE Universal IoT Platform oneM2M and beyond … Universal IoT Platform oneM2M and beyond. ... IoT Platform for effectively monetizing the IoT ... between IoT applications and IoT

PyPortal IoT Plant Monitor with AWS IoT and …...AWS IoT AWS IoT ( is an IoT service for those looking for an incredibly scalable and secure Internet-of-Things (IoT) service. Integration

IoT BBQ Carve Systems. Outline About us (Carve) About IoT Our IoT assessment methodology The Sacred Tenants of IoT Security Some bugs IoT IRL

Implementation of Industrial IoT to Deliver Value Industrial IoT...Implementing Industrial IoT Systems IoT Reference Model* Industrial IoT Technologies *Rob Soderbury, Cisco, 2014

V 1.4 April 2020€¦ · Internet Of Things IOT core Amazon FreeRTOS IOT I-CIiCk IOT Analytics IOT Device Detender IOT Device Management IOT Events IOT Greengrass IOT Sitewjse IOT

network SECURITY · IoT and regulation – striking the right balance 8 The IoT network has huge potential for businesses to help support cost reduction, streamline opera-tional processes

BIG IoT Pitch: IoT-Meetup-Vienna

IoT Prospects of Worldwide Development and Current · PDF file• Examines enabling technologies ... system of item identification ... frequency allocation and regulation, health and

Paul Egan, IoTUK, IoT Forum 2016, Regulation: What is it good for? Absolute Innovation

IoT Connectivity & IoT Analytics

Architecting the - Sciences · IoT devices Sensors Cloud IoT solutions. ... language IoT devices Sensors Cloud IoT solutions. Benefits. Making IoT seamless. Solution architecture—IoT

Realistic IoT vs. visionary IoT

Eclipse IOT [IoT World Santa Clara]

Workshop AWS IoT @ IoT World Paris

Internet of Things (IoT) Enhancing regulatory frameworks ...€¦ · Internet of Things (IoT) Mark O’Keefe, VP Product April 2020 1. CONTENTS 2 1. Regulation as a carrot for change

Redesigning the Wireless Network for IoT · • What is IoT • IoT Trends • Security and IoT • IoT and the Business • Wireless Networking • Containerization • IoT Value

IoT Developer Survey · •The Eclipse IoT Working Group, IEEE IoT, AGILE IoT and IoT Council co-sponsored an online survey to better understand how developers are building IoT solutions

IoT - Big Data & Security · IoT - Big Data & Security MWC Smart Cities Seminar Telefónica Global IoT Group Feb 2017. IoT Big Data and IoT Security in Smart Cities IoT Security IoT

COMPANY PROFILE BOSCH: IoT SUITE PLATFORM AND IoT CLOUD ... · BOSCH: IoT Suite platform and IoT cloud ... IoT Suite platform and IoT cloud services ... irregular messages which in

With the Internet of Things (IoT) every- where, can …...January, 2018 How ICT regulators can enable IoT ecosystem development With the Internet of Things (IoT) every-where, can regulation

IoT Cybersecurity: Regulation Ready · Whether IoT providers are prepared or not, a range of existing regulations could have serious financial and reputational implications for an

The IoT Opportunaty, IoT Israel 2014

SEC-101: IoT Security Regulation and How it Drives Innovation

AWS IoT - Guida per gli sviluppatori · AWS IoT Guida per gli sviluppatori Che cos'è AWS IoT? AWS IoT

IoT SECURITY CHAMPIONS - IoT News - IoT Business News€¦ · IoT SECURITY CHAMPIoNS: Building trust into the iot IOT SECURITY ChAMPIOnS: Building Trust into the IoT p.3 \ Source

Stream iot-x iot forum 2015