Download Publication

Future Proofing the Connected World

Release Date: 10/07/2016

The Internet of Things (IoT) is transforming consumer, business, and industrial practices by creating a world that is perpetually connected to the internet. Thus, IoT has become a significant domain of cloud security. Organizations that manufacture IoT products should endeavor to protect themselves and their customers from all threats that could arise in the future since, we’ve come to find, an IoT system is only as secure as its weakest link.

This document by the IoT Working Group provides actionable and useful guidance for securing the individual products that make up an IoT system. In it, you will find a comprehensive guide to securing IoT devices, including 13 steps to integrate into your development process, and an outline of the top IoT security considerations.

Key Takeaways:

What the main security issues and challenges are for IoT
Why you should care about IoT security
How to provide a business case for IoT security
Which security options you should use for IoT development platforms
How to enact secure device design and development processes, including a detailed checklist for security engineers to follow
Which threats impact specific IoT products

Who It’s For: This document is for any manufacturer of IoT products. Organizations that have begun transforming their existing products into IoT-enabled devices will find it particularly useful. In addition, IoT startups can use this document as a starting point for creating their security strategy.

Download this Resource

Prefer to access this resource without an account? Download it now.

Acknowledgements

John Yeoh

Global Vice President of Research, CSA

John Yeoh

Global Vice President of Research, CSA

With over 15 years of experience in research and technology, John excels at executive-level leadership, relationship management, and strategy development. He is a published author, technologist, and researcher with areas of expertise in cybersecurity, cloud computing, information security, and next generation technology (IoT, Big Data, SecaaS, Quantum). John specializes in risk management, third party assessment, GRC, data protection, incid...

Luciano (J.R.) Santos

Chief Customer Officer, CSA

Luciano (J.R.) Santos

Chief Customer Officer, CSA

J.R. Santos serves as the Chief Customer Officer for the Cloud Security Alliance. In this role, J.R. serves as a CSA Member advocate, partnering with leaders across all business units to transform the member experience and ensure that members are the center of every business decision. J.R. leads the Experience Services organization that includes the CSA Membership and Sales team, who work collaboratively to promote a consistent experience f...

Brian Russell

Brian Russell

Brian Russell is co-author of the book “Practical Internet of Things Security” and is a Chief Engineer focused on Cyber Security Solutions for Leidos (www.leidos.com). He oversees the design and development of security solutions and the implementation of privacy and trust controls for customers. Brian leads efforts that include security engineering for Unmanned Aerial Systems (UAS) and Connected Cars, and the development of hig...

Aaron Guzman

Aaron Guzman

Aaron is a passionate information security professional specializing in IoT, embedded, and automotive security. He is co-author of the “IoT Penetration Testing Cookbook” and a technical editor for the "Practical Internet of Things Security” Packt Publishing books. Aaron is co-chair of CSA’s IoT working group as well as a leader for OWASP’s IoT and Embedded Application Security projects; providing practical guidance to address the most commo...

Sabri Khemissa

Sabri Khemissa

Sabri is the ICS group cybersecurity officer a French multinational corporation that produce a variety of construction and high-performance materials. He is in charge of developing and maintaining the cybersecurity strategy, building and coordinate a cross-country and cross-business cybersecurity governance, supporting business initiatives, including strategic Smart Manufacturing and IIoT projects with a large shift to cloud services, defin...

Srinivas Tatipamula

Principal Security Advisor

Srinivas Tatipamula

Principal Security Advisor

Overall 30 plus years in IT and over 18 years in Cyber Security

Publications:

1. Cloud Security Alliance Internet of Things (IoT) Working Group IoT Security Controls Guide Version Published March 2019

2. CSA IoT Controls Matrix March 2019

3. ...