SBOM and Memory Safety Software Bill of Materials (SBOM) are gaining momentum within the industry, largely due to the enactment of the “Executive Order on Improving the Nation’s Cybersecurity”. This act will lay the foundations for formally publishing an “ingredient list” for software based products. This ingredient list is intended to provide transparency to
The IoT landscape is notoriously under-secured. In the rush to meet demand for online products, services and infrastructure, many manufacturers have adopted a ‘connect first, think later’ strategy where security has been an afterthought. This has resulted in years of serious security and privacy breaches.
This is a guest blog authored by Eric Greenwald, General Counsel at Finite State, and Matt Wyckhouse, Founder and CEO at Finite State.
By John Moor, MD IoTSF It’s hard for me to recall the first time I came across the term ‘the Internet of Things’, but it is likely to be circa 2005. I do remember thinking it quite vulgar – a load of bull, as my lingua franca of the day used terms such as
March 7th 2018 The UK’s Department of Digital, Culture, Media and Sport (DCMS) published its Secure by Design Report today for improving the cyber security of consumer IoT. [www.gov.uk/government/publications/secure-by-design]. Naturally it is a development that we welcome at the Foundation and we have been active contributors through this first consultation occupying positions as industry
Welcome to 2018, and welcome #Meltdown and #Spectre - a new duo of vulnerabilities which are shaking the security world, and the IoT world, to the very core - the processor core(s) that is. We've been having quite a discussion internally at IoTSF as to the technical nature of the exploits, the impact they
By C.J.Abate, Director of Marketing, SecureRF In the face of ever-increasing Internet of Things (IoT) security threats, the US government has started efforts to regulate IoT security with a new bill raised in the Senate. Should the bill become law, it will require IoT equipment sold to the government be patchable and meet specific security
By Maria Marinina, Marketing Manager at the software development company Itransition. You can read the original article here. While there are real consequences for neglecting IoT security, it’s a mistake to feel as though nothing can be done about it. Users, network administrators and developers alike can take steps to make sure their assets are
The recent exposé of the nomx secure email box  got us all excited at IoTSF – mostly for the wrong reasons – but it also gave us the opportunity to reflect on a number of common security issues from an IoT perspective. We’d start by congratulating BBC Click and their security researchers, Scott