Future Thinking: Cyrating on Cyber Threats

In 2017, the Internet Society unveiled the 2017 Global Internet Report: Paths to Our Digital Future. The interactive report identifies the drivers affecting tomorrow’s Internet and their impact on Media & Society, Digital Divides, and Personal Rights & Freedoms. In February 2018, we interviewed two stakeholders – Cyrating, a cybersecurity ratings agency, and Niel Harper, Senior Manager, Next Generation Leaders at the Internet Society – to hear their different perspectives on the forces shaping the Internet’s future.

Cyrating is the first cybersecurity ratings agency anchored in Europe, and helps forward-thinking organizations maximize their cybersecurity performance and investments. It identifies potential for improvement, benchmarks it against industry best practices, and provides standardized cybersecurity metrics. We spoke to François Gratiolet, one of Cyrating’s founders, about the future of a secure and trusted Internet.

(You can read Niel Harper’s interview here).

The Internet Society: Experts predict an increase of frequency and impact of cyberattacks. What form are they likely to take in the next three to five years?

François Gratiolet: We believe cyberattacks will intensify in the next three to five years; targeting both Internet users and the Internet’s underlying infrastructure. User attacks will move from phishing to social media, with users increasingly being exposed through their mobile devices. While the use of IDs such as digital certificates and biometry might reinforce security in some regards, it will simultaneously introduce new targets for cyberattacks. And as the adoption of blockchain technology and cryptocurrencies will become a new norm, we also expect more cyberattacks on virtual currencies’ platforms. Because physical and digital worlds become increasingly entwined, IoT and utility infrastructure will similarly become more attractive targets for cyberattacks. Attacks on national telecommunications infrastructure, for example, can endanger economies in developed and developing countries alike.

In parallel, organisations’ boards, consumers and citizens are also becoming increasingly aware of the potential danger and risk of data breaches, botnets, denial of service attacks, and malware. Similarly, organisations’ obligation to keep stakeholders informed about breaches is also becoming more concrete as a result of codifications like the General Data Protection Regulation (GDPR) and the European NIS directive, which comes into effect in May 2018. GDPR harmonizes data protection in Europe, and imposes new duties for organisations offering goods or services to the EU. The obligation to notify stakeholders (investors, customers, partners and insurers) of data breaches compels organisations to be ever more responsible and transparent in terms of cybersecurity and to demand strict cybersecurity safeguards from their chain of suppliers.

What needs to be done to address cyber threats, put users in control of their data, and increase accountability for data handlers?

Organisations need to understand their enemies’ tactics and techniques and should be better prepared for dealing with cyber threats. At the same time, they need to understand their own information systems better, including how to monitor them continuously. This requires organisations to appropriately train all employees on dealing with cyber threats: from senior executives to IT operations. For that, organisations will need to work as a team and to share threat intelligence information. As data handlers and organisations will become hyper accountable with new regulations, they will need to ensure security by design of all digital products, including data breach notifications and remediation, suppliers’ security, etc. It will also be important for them to learn to demonstrate the effectiveness of the controls in place to protect their organisation, its systems, and the data it has to deal with.

Where users are concerned, there is a significant need to improve users’ own understanding and control of their data. Education and raising awareness is critical to ensure that users can handle their data securely. The tipping point will be to enforce the rules, especially new European regulations.

We believe security rating services like those offered by Cyrating will help organisations to improve their cybersecurity effectiveness and that of their suppliers or partners, introducing more transparency and trust to their overall business ecosystem, and contributing to enhanced resiliency overall. Such rating systems must be based on specific criteria and cybersecurity best practices, and must respect widely shared standards. These practices are crucial for the benefit of our economy, our society, and the safety of all.

How do you see insurance policies and companies evolving to cater for cybersecurity risks in the future?

The overall cyber insurance market will continue to grow at a great pace, with organisations realizing that, regardless of their current security processes, security can never be 100% guaranteed. All organisations therefore have to mitigate potential financial damage that is bound to arise from cybersecurity incidents. To fully equip themselves in the face of a cybersecurity tsunami, organisations will recognize and include cyber insurance as a key component of their risk management strategy. We predict that cyber insurance will, in the future, be a prerequisite in business relationships. With such growing adoption, reinsurance companies will have to prevent the “black swan” risk.

Cyber insurance does not remove the need for businesses to manage their risk from cyberattacks, however. A challenge is to effectively remediate cyber risks for a large volume of digital assets. A cultural shift towards the adoption of more cyber hygiene measures is arguably needed. This is why we advocate for a return to the fundamentals of cybersecurity with the enforcement of standards such as the establishment of SPF (Sender Policy Framework), which is designed to limit email usurpation, or the DNSSEC (Domain Name System Security Extensions) protocol to protect Internet domain names.

What are your fears for the future of the Internet?

We fear that security issues of the Internet will not be tackled in a consistent, technical, legal, and political way. Security Internet protocols such as DNSSEC or encryption will need to be fully embraced so that the lnternet users will have more confidence in the online activities that are increasingly becoming a part of our lives at work, home, and school. Cooperation and information sharing among end user organizations, providers and countries will be key to fight against cybercrime. We also fear pervasive and mass surveillance from large and dominant corporations as well as the end of the net neutrality. It will endanger the Internet as we know it, along with our digital economies.

What are your hopes for the future of the Internet?

We hope that cybersecurity will no longer be ignored in digital products and services design, but will become central to everything that an organization does, and be embedded in all processes and business operations. Thus, we hope that all the players in the value chain (e.g. operating systems and hardware makers, ISPs, registrars, SaaS providers) will offer top cybersecurity and that end-users’ organizations will buy and rely on them.

What do you think the future of the Internet looks like? Explore the 2017 Global Internet Report: Paths to Our Digital Future to see how the Internet might transform cybersecurity across the globe, then choose a path to help shape tomorrow.

The views and opinions expressed in this article are those of the interviewee and do not necessarily reflect the official position of the Internet Society.
Photo: Founders François Gratiolet, Christophe Ternat, and Charles d’Aumale, courtesy of Cyrating

The post Future Thinking: Cyrating on Cyber Threats appeared first on Internet Society.

Internet Society

What is the autonomous driving toolchain?

The autonomous driving toolchain is a toolbox for developers. It is one of three equally-weighted technology fields of autonomous driving.

Autonomous Driving Toolchain Source: Bosch

Autonomous driving developers use the toolchain to develop, test, and validate software-based functionalities, such as distinguishing a pedestrian from a plastic bag, predicting the future movements of objects, or recognizing potential hindrances before pulling out into the road. The toolchain is necessary for rendering autonomous driving applications usable and safe in everyday life.

If you look at the development, test, and validation tools needed to cover the entire autonomous driving chain, you’ll see the landscape is highly fragmented. There are hundreds of specialized open source and closed source tools available today. However, only few of these developer tools interact with each other in an efficient manner.

Individual parts of the autonomous driving toolchain Source: Bosch

The OpenADx initiative is actively addressing this challenge. Bosch and Microsoft have initiated OpenADx together with many further players in this space in 2017. OpenADx aims to bring transparency and better integration capabilities into this highly heterogeneous tool space. It focuses on interfaces between tools and creates an industry-wide reference architecture. A seamlessly integrated set of tools from different vendors enables developers from various companies to structure the development process of autonomous driving applications to be more swift and efficient.

Two men inspecting a small prototype of a autonomous vehicle. Source: Bosch Software Innovations

Lars Geyer-Blaumeiser (on the right), Open Source Expert for OpenADx at Bosch Software Innovations talking to a hackathon participant.

The post Industry 4.0: 10 use cases for software in connected manufacturing appeared first on Bosch ConnectedWorld Blog.

Bosch ConnectedWorld Blog

Strange vocal interactions with ‘you, me and all these machines’

Moscow-based artist ::vtol:: is back again with an interesting interactive exhibit entitled “you, me and all these machines.” His latest work, a collaboration with Lovozero, allows two participants to produce otherworldly vocals together.

One participant wears the device, which points a directional microphone under the control of the other participant at her mouth using a servo motor. An array of LEDs signal the vocalist in a manner agreed upon before the performance.

The head-mounted system is controlled by an Arduino Uno, and is meant to display the subtle interaction between two participating artists, as they must work together to produce the desired output.

“You, me and all these machines” is a performance for voice and electronic devices. The vocalist puts on his or her head a specially designed wearable interface tool to interact with the voice and display a visual score. Technically, the device consists of several elements: a narrowly directional microphone driven by a motor; an LED strip that shows the vocalist score; remote control with a joystick used by the second participant to control the interface.

Shifting the microphone against the mouth makes it possible to achieve interesting sound effects, and makes it easier to manipulate the vocalist’s voice. The LED line consisting of 10 diodes is a very primitive, but effective and convenient way of interacting with the vocalist, and the way of interpreting the values is predetermined before each performance. During the performance, a sound canvas is formed, thereby changing the dynamics, consisting of a set of looped fragments created within voice and interface processing elements, without using other methods to generate sounds.

Check out “you, me and all these machines” in the video below!

Arduino Blog

Arduino-compatible NB-IoT Sensor Shield

Avnet Silica unveils an NB-IoT sensor shield that is notable for its Arduino compatibility since it has an Arduino UNO R3 connector. Arduino compatibility allows developers to leverage a huge ecosystem of compatible boards, thereby offering ultimate flexibility.

Possible applications of the board include gas detectors, environmental sensors, and machinery alarm system in the industrial or agricultural sectors; public utility applications such as water/ gas metering, smart parking systems, and street lighting; as well as consumer applications such as asset tracking.

The NB-IoT Sensor Shield is based on the Quectel BG96 low power module supporting Cat M1, Cat NB1 and EGPRS fallback. GNSS is supported.

The new board enables developers to choose the microcontroller board that best fits their application, like STM32 Nucleo boards, and combine them with sensors and other peripheral boards as needed.

It also supports all major operating systems including Android, Linux and Windows. Pmod connectors allow an extended compatibility with additional boards. And mbed OS support allows quick development.

More information: https://www.avnet.com/wps/portal/silica/products/new-products/npi/avnet-nb-iot-shield-sensor

The post Arduino-compatible NB-IoT Sensor Shield appeared first on Internet Of Things | IoT India.

Internet Of Things | IoT India

The Entries are in! Here are the shortlisted nominees for the IoT Global Awards 2018

Thursday February 22nd, 2018: Finally, the news that many of you have been anxiously awaiting! The shortlist of Nominees for the IoT Global Awards 2018 have been announced and these are being assessed by our global VIP panel of independent judges.

From these shortlisted candidates, the winners of the 12 categories will be announced at the Smart IoT London event at ExCeL on March 21st by award organisers, IoT Global Network.

The winners of the 2018 IoT Global Awards will be broadcast by leading IoT media brands; IoT Global Network, this site IoT Now, IoT Now Transport and VanillaPlus through their online portals and in the print magazine IoT Now.

“In the inaugural year of the IoT Global Awards it is inspiring to see so many exciting Internet of Things products already in service,” says Jeremy Cowan, Editorial Director of IoT Global Network, the site behind the Awards. “We have been truly impressed by the hard work and ingenuity that has gone into so many IoT applications submitted to us by organisations worldwide. The Shortlisted Entries met our strict selection criteria and will now be assessed by an unrivalled Judging Panel of IoT Experts.”

They are:

IoT PRODUCT / SERVICE OF THE YEAR

AUTOMOTIVE, TRANSPORT & TRAVEL
Products:
Globalstar,
Innoviz Technologies Ltc.,
Altizon Systems,
Designworks Windsor Limited,
Bsquare

Services:
Yacht Sentinel Ltd,
Biz4Intellia, Geotab

INDUSTRY & CONSTRUCTION
Products:
Globalstar,
TELLMEPLUS,
Versasense,
hyBee Inc.,
Temboo,
EUROTECH,
FreeWave Technologies,
Senseye,
Wind River,
LEC IQ2,
McObject,
SalesGoals LLC

Services:
Biz4Intellia,
IOETEC Ltd,
Sensolus,
EY,
SYSMON

RETAIL, MARKETING & HOSPITALITY
Products:
Lantronix,
SAP,
iQ2 LEC,
Amscreen,
Designworks Windsor,
SalesGoals

Services:
SMARTRAC Technology GmbH

BIG DATA, CLOUD & ANALYTICS
Products:
Altair,
EUROTECH,
Enlighted,
Senseye,
SAP SE,
FreeWave Technologies,
McObject,
Seadrill,
Designworks Windsor Limited

Services:
Cybeats, EY

PLATFORM OF THE YEAR
Products:
Stream Technologies Ltd, Flexera,
PTC,
EUROTECH,
Wind River,
CyanConnode,
LEC Incorporated,
Moxa Europe GmbH

Services:
Aeris,
Creuna

SECURING IOT
Products:
SmartAxiom,
EUROTECH,
Lantronix,
Device Authority,
iQ2 LEC,
Flexera,
Moxa Europe

Services:
Cybeats,
Red Alert Labs,
IOETEC

CONNECTED CONSUMER & SMART HOME
Products:
Yacht Sentinel,
MQTT Buddy,
tado,
Switchee,
hyBee Inc,
Comcast Xfi,
NuCurrent,
Eddy Home,
Designworks Windsor

Services:
Softeq

RESEARCH & DEVELOPMENT OR NEW LAUNCH
Products:
XIM,
RapidValue Solutions,
Mobile TeleSystems PJSC,
Designworks Windsor Limited,
NetOP IoT Network EU B.V.

Services:
DevicePilot,
Ioetec limited

SMART CITIES, GOVERNMENT & UTILITIES
Products:
Altair,
Ayyeka,
CyanConnode,
KERLINK,
Eddy Home,
Amscreen

Services:
Ioetec limited,
Terracom,
Gemalto

CONNECTED HEALTH OR WEARABLE TECH
Products:
Temboo,
NuCurrrent,
Designworks Windsor

IoT BUSINESS EXCELLENCE

CXO OF THE YEAR
Yair Poleg,
Jim Heppelmann,
Syed Zaeem Hosain,
Pilgrim Beart,
Catherine Michel,
Ady Moores

START-UP, BUSINESS DEVELOPMENT OR ECOSYSTEM OF THE YEAR
VersaSense,
Temboo,
Satisfi Labs,
SAP SE

 

Thank you to all those who entered their IoT products, services and individuals in the awards. Congratulations to the shortlisted nominees, and good luck on March 21st when the Awards are announced.

Comment on this article below or via Twitter: @IoTNow  OR  @jcIoTnow

 

The post The Entries are in! Here are the shortlisted nominees for the IoT Global Awards 2018 appeared first on IoT Now – How to run an IoT enabled business.

Blogs – IoT Now – How to run an IoT enabled business