Why device security is up to the user

Carsten Rhod Gregersen of Nabto

More devices mean more susceptible connections from server to receiver. While that might be a cynical view, it is a factual one. Smart doorbells with face recognition, pet tech with microphones, Teslas with cameras: devices are only becoming more widespread but, generally speaking, not improving when it comes to security.

Internet of Things devices have the ability to capture many data points about users and it is this fact which makes their hackability all the more worrying. Further, the varying data rights of global citizens means that IoT eyes are everywhere with little legal oversight. Let’s explore what security means in the age of internet-connected devices and what must be done to ensure it, says Carsten Rhod Gregersen, CEO and founder of Nabto.

Easy access

It is hard to escape the fact that security standards vary between vendors and devices. Most jurisdictions do not have regulated device standards, therefore leaving it up to device makers and users to put protections in place.

This is necessary because device fallibilities are widely known. For example, Russian hackers used printers, video decoders, and other connected devices to penetrate targeted computer networks, Microsoft officials warned in August.

Further, medical devices have even been threatened by poor security standards. In 2017, The Food and Drug Administration announced the discovery of a serious vulnerability in implantable pacemakers. The vulnerability targetted the transmitter that pacemakers used to communicate with external services, meaning hackers could theoretically alter its functioning, deplete the battery, and administer potentially fatal shocks.

Onus on the user

It is not acceptable that many modern devices do not come loaded with appropriate security safeguards. This is especially important as such devices continue to play growing roles in modern life, from smart homes to security cameras and gaming consoles. The homes and lives of today are connected and must be adequately protected.

The bottom line is that if you have a connected device, it needs protection. Personal information is not easy to get back once it is gone. The only way to ensure this happens is to shift the onus of protection from company to user, and this is why it is important to have a defence plan for personal devices.

Protecting what’s yours

Both device creators and lawmakers have proved slow to move on device security protections. Default passwords and weak security systems simply are not good enough when it comes to devices which collect countless user data points. While Europe has attempted to data rights through its General Data Protection Regulation, the same cannot be said for the United States. Data rights vary widely from state to state with little federal movement on the horizon, creating an uneven legislative playing field across the country.

This means users – no matter their level of computational ability – are the ones who must act to ensure their data stays safe. This is the only certain way to make sure data travels from server to receiver without interception. So, what must users do?

Users are best advised to inspect their default settings. Cybercriminals already know the default passwords that come with many IoT products, making it easy to access the information on them. Therefore, users should change the password into something made up of letters, numbers, and symbols.

Better yet, tailor the device connection. Many devices use cloud connection to relay commands. All the data is thereby kept at this third-party server, making it susceptible to outside forces. Installing a peer-to-peer connection removes this danger by establishing direct communication between device and receiver without the need for a middleman.

It is sad but true that device security is increasingly up to the user than the companies they buy their devices from. While regulatory bodies are gradually moving in the right direction on this issue, it is looking like too little, too late. Therefore, users with personal data protection at the front of their minds are best advised to act today to ensure data freedom tomorrow. The smallest changes can make big differences when it comes to who knows what about your actions on the internet.

The author is Carsten Rhod Gregersen, CEO and founder of Nabto

Comment on this article below or via Twitter: @IoTNow_OR @jcIoTnow


T-Mobile launches advanced industry solutions

Posted on: October 3, 2022

Bellevue, United States – T-Mobile unveiled advanced industry solutions, an end-to-end suite of connectivity, compute, devices, and applications needed to make smart cities, autonomous factories, and more, possible. Businesses and municipalities no longer have to wade through endless options of technology vendors because the un-carrier is bringing it all together.

Read more

Fibocom Launches New Generation of 5G Sub-6GHz and mmWave Module FX170(W) Series Based on Snapdragon X65 5G Modem-RF System at MWC Las Vegas 2022

Posted on: October 3, 2022

(Sponsored News) During MWC Las Vegas 2022, Fibocom launches 5G Sub-6GHz and mmWave module FX170(W) series based on Snapdragon® X65 5G Modem-RF System, delivering enhanced broadband capabilities with superior performance.

Read more

9 IoT applications that will change everything

Posted on: September 1, 2021

Whether you are a future-minded CEO, tech-driven CEO or IT leader, you’ve come across the term IoT before. It’s often used alongside superlatives regarding how it will revolutionize the way you work, play, and live. But is it just another buzzword, or is it the as-promised technological holy grail? The truth is that Internet of

Read more

Which IoT Platform 2021? IoT Now Enterprise Buyers’ Guide

Posted on: August 30, 2021

There are several different parts in a complete IoT solution, all of which must work together to get the result needed, write IoT Now Enterprise Buyers’ Guide – Which IoT Platform 2021? authors Robin Duke-Woolley, the CEO and Bill Ingle, a senior analyst, at Beecham Research. Figure 1 shows these parts and, although not all

Read more

CAT-M1 vs NB-IoT – examining the real differences

Posted on: June 21, 2021

As industry players look to provide the next generation of IoT connectivity, two different standards have emerged under release 13 of 3GPP – CAT-M1 and NB-IoT.

Read more

IoT and home automation: What does the future hold?

Posted on: June 10, 2020

Once a dream, home automation using iot is slowly but steadily becoming a part of daily lives around the world. In fact, it is believed that the global market for smart home automation will reach $40 billion by 2020.

Read more

5 challenges still facing the Internet of Things

Posted on: June 3, 2020

The Internet of Things (IoT) has quickly become a huge part of how people live, communicate and do business. All around the world, web-enabled devices are turning our world into a more switched-on place to live.

Read more

What is IoT?

Posted on: July 7, 2019

What is IoT Data as a new oil IoT connectivity What is IoT video So what’s IoT? The phrase ‘Internet of Things’ (IoT) is officially everywhere. It constantly shows up in my Google news feed, the weekend tech supplements are waxing lyrical about it and the volume of marketing emails I receive advertising ‘smart, connected

Read more
IoT Newsletter

Join the IoT Now online community for FREE, to receive: Exclusive offers for entry to all the IoT events that matter, round the world

Free access to a huge selection of the latest IoT analyst reports and industry whitepapers

The latest IoT news, as it breaks, to your inbox