Presentation is loading. Please wait.

Presentation is loading. Please wait.

WTF… About the unsecurity of IoT

Published byPaula Golden Modified over 5 years ago

Similar presentations

Presentation on theme: "WTF… About the unsecurity of IoT"— Presentation transcript:

1 WTF… About the unsecurity of IoT
DIY.DESPAIR.COM WTF… About the unsecurity of IoT

2 The Problem % Fail. WTF.

3 CERN: Under attack like everyone else

4 Emerging Threats? Not really

5 CERN’s Internet of Stupid Things

6 Complexity Vulnerabilities
Exposure Threats Complexity Vulnerabilities Dependencies Consequences This will not go away!

7 The CERN Computing Rules
“Computer Security” governed by OC5 All CERN staff & users as well as all users of CERN’s computing facilities are bound to it In first instance, you are responsible for the cyber-security of your accounts, devices, systems, software, … Violation of OC5 might lead to sanctions Control System Cyber-Security regulated by the “CNIC” All systems should follow their respective “Security Baseline” The CERN Computing Rules

8 Stay mainstream: Do not reinvent the wheel
Stay mainstream: Do not reinvent the wheel. With the crowd, you benefit from the below. Keep your system up-to-date: Be able to patch in reasonable time. Control remote access: Delete default accounts. Change default passwords. Filter inputs: Every remotely provided input must be validated and sanitized! Use encryption: …for confidential information (e.g. passwords). Kill all unnecessary services: Disable Telnet, FTP …and run a local firewall. Understand dependencies: DHCP? NTP? SSO/LDAP/AD? Defend in depth: Network segregation and firewalls help, but do not prevent lateral movements. Do not span up a local WLAN, wireless access point, etc.! Have a plan: For patching. For incident response. Get training & let us help you: & 10 Points to Consider

Download ppt "WTF… About the unsecurity of IoT"

Similar presentations

The Whole/Hole of Security Public (DoD) v. Corporate Carl Bourland US Army Judge Advocate Generals Corps.

The Whole/Hole of Security Public (DoD) v. Corporate Carl Bourland US Army Judge Advocate Generals Corps.
INADEQUATE SECURITY POLICIES Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA standards.

INADEQUATE SECURITY POLICIES Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA standards.
Lecture Materials for the John Wiley & Sons book: Cyber Security: Managing Networks, Conducting Tests, and Investigating Intrusions October 12, 2014 DRAFT1.

Lecture Materials for the John Wiley & Sons book: Cyber Security: Managing Networks, Conducting Tests, and Investigating Intrusions October 12, 2014 DRAFT1.
Voice over the Internet Protocol (VoIP) Technologies… How to Select a Videoconferencing System for Your Agency Based on the Work of Watzlaf, V.M., Fahima,

Voice over the Internet Protocol (VoIP) Technologies… How to Select a Videoconferencing System for Your Agency Based on the Work of Watzlaf, V.M., Fahima,
1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.

1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.
Guanjong High School Group 2. Physical Network Access Security Getting into a network closet could easily allow someone to disable computers and connect.

Guanjong High School Group 2. Physical Network Access Security Getting into a network closet could easily allow someone to disable computers and connect.
Johnson Logistics Solutions Office of Systems and Information Technology.

Johnson Logistics Solutions Office of Systems and Information Technology.
CSCI 530 Lab Firewalls. Overview Firewalls Capabilities Limitations What are we limiting with a firewall? General Network Security Strategies Packet Filtering.

CSCI 530 Lab Firewalls. Overview Firewalls Capabilities Limitations What are we limiting with a firewall? General Network Security Strategies Packet Filtering.
Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.

Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.
© 2008 Prentice Hall Business Publishing Accounting Information Systems, 11/e Romney/Steinbart1 of 222 C HAPTER 7 Information Systems Controls for Systems.

© 2008 Prentice Hall Business Publishing Accounting Information Systems, 11/e Romney/Steinbart1 of 222 C HAPTER 7 Information Systems Controls for Systems.
Network and Systems Security Security Awareness, Risk Management, Policies and Network Architecture.

Network and Systems Security Security Awareness, Risk Management, Policies and Network Architecture.
Network Security. Trust Relationships (Trust Zones) High trust (internal) = f c (once you gain access); g p Low trust ( ) = more controls; fewer privileges.

Network Security. Trust Relationships (Trust Zones) High trust (internal) = f c (once you gain access); g p Low trust ( ) = more controls; fewer privileges.
The Top Ten of Security. Ten best practices for securing your network. Ten best security web sites. Eight certifications.

The Top Ten of Security. Ten best practices for securing your network. Ten best security web sites. Eight certifications.
Securing a Wireless Network

Securing a Wireless Network
1 Chapter 8 Securing Information Systems. Outline Security Threats (External: malware, spoofing/phishing, sniffing, & data theft: Internal: unauthorized.

1 Chapter 8 Securing Information Systems. Outline Security Threats (External: malware, spoofing/phishing, sniffing, & data theft: Internal: unauthorized.
Cyber Patriot Training

Cyber Patriot Training
Web Server Administration Chapter 10 Securing the Web Environment.

Web Server Administration Chapter 10 Securing the Web Environment.
Csci5233 Computer Security1 Bishop: Chapter 27 System Security.

Csci5233 Computer Security1 Bishop: Chapter 27 System Security.
E-Security: 10 Steps to Protect Your School’s Network NEN – the education network.

E-Security: 10 Steps to Protect Your School’s Network NEN – the education network.
Thomas Levy. Agenda 1.Aims: Reducing Cyber Risk 2.Information Risk Management 3.Secure Configuration 4.Network Security 5.Managing User Access 6.Education.

Thomas Levy. Agenda 1.Aims: Reducing Cyber Risk 2.Information Risk Management 3.Secure Configuration 4.Network Security 5.Managing User Access 6.Education.

Similar presentations

Ads by Google