“CHERI (Capability Hardware Enhanced RISC Instructions) is a joint research project of SRI International and the University of Cambridge to revisit fundamental design choices in hardware and software to dramatically improve system security”. It is commended in a new White House Report and by CISA, the NCSC and other international government
The proliferation of IoT devices and legacy systems in today’s enterprise IT infrastructure has opened up new avenues for security threats. How should these devices behave and what do we know about them? To best protect IoT devices from these threats, network security managers need to find better ways to develop their operations and
The automotive industry is rapidly evolving, incorporating advanced technologies and connectivity features into vehicles. However, this progress also brings forth new security challenges. While efforts are being made to address vulnerabilities in older vehicle equipment and the CAN BUS system, there is still work to be done in terms of integrity protection and authentication. The
The IoTSF Smart Built Environment (SBE) Group includes senior professionals from all areas of security risk management. The focus on collaboration between cyber and physical security is set out in its best practice guide for Facilities Professionals, stating ‘… it is essential that those teams work together’ (p17). Without a converged security strategy it is
Digital Security by Design: Transforming Digital Technology for a Safer Future. The second day of CyberUK 2023 focused on the newly launched joint guide for Security by Design and Default by CISA and NCSC. The guide highlights the best practices for a secure hardware foundation, including fine-grained memory protection as provided by the CHERI
The Digital Security by Design Programme and the Secure Networking by Design Project: Part 1 CyberUK23, the UK's National Cyber Security Centre’s flagship event took place on 19 – 20 April in Belfast. I represented the IoT Security Foundation (IoTSF) together with the Secure Networking by Design team, Professor Andrew Martin (University of Oxford),
The IoT Security Foundation (IoTSF) is delighted to announce the release of its latest best practice guide on IoT cybersecurity for Facilities Professionals in the Smart Built Environment (SBE). The IoTSF established a Smart Building working group in 2017, which has expanded its membership to over 50 senior leaders from a range of stakeholder
The Secure Networking by Design project is part of the Digital Security by Design Challenge aimed at improving cybersecurity in today's digital landscape. It recognises the importance of continuous assurance processes in mitigating the risks of advanced attacks and evolving threat scenarios. Continuous assurance is a key component of the ManySecured® system, an open ecosystem
