Friday, January 10, 2014

Internet of Things and Security

I've seen several articles about the Internet of Things (IoT) being big in 2014. I am, in general a fan of the advantages of connected devices and the cloud, but I'm not unaware of the problems.

Bruce talks about the security issues of the IoT and routers:
"And the Internet of Things will only make this problem worse, as the Internet -- as well as our homes and bodies -- becomes flooded with new embedded devices that will be equally poorly maintained and unpatchable. But routers and modems pose a particular problem, because they're: (1) between users and the Internet, so turning them off is increasingly not an option; (2) more powerful and more general in function than other embedded devices; (3) the one 24/7 computing device in the house, and are a natural place for lots of new features."
Hans pointed out an example of a security issue on my post about the WRT54G router.

Part of my hope is that companies will take this issues more seriously. Security should be planned just as any other requirement for the application or tool. The market should severely punish companies like SnapChat that approach security issues with arrogance. And Nest had a painful, confusing experience when some of their smart/connected thermostat users were left without heat. I'm sure it will get worse before it gets better, but like given time I expect these devices will mature... or we will quit using them. At least the ones we have a choice in.

And maybe I don't want my toothbrush connected after all.


  1. I just hacked your fridge and was very disappointed. You're out of beer.

    1. That's just the fruit and vegetable fridge. The beer and steak fridge are an isolated LAN. I'm no dummy. ;)