Internet of Things Security Council
The Internet Society defines Internet of Things (IoT) to mean “the extension of network connectivity and computing capability to objects, devices, sensors and items not ordinarily considered to be computers. These ‘smart objects’ require minimal human intervention to generate, exchange and consume data; they often feature data collection, analysis and management capabilities.”
Analysts are forecasting over 26 billion IoT connections by 2020 for a wide variety of applications in many industries, including industrial, energy, automotive, smart city, healthcare, freight/logistics, and home automation. The pervasiveness of connected devices and the impact that they will have on society demands proactive discussion of potential security vulnerabilities and architectures/technologies that have been designed to mitigate the vulnerabilities. Security vulnerabilities have already been found in initial IoT implementations; it is critical for the growth of the market that security and privacy be designed into the IoT ecosystem.
The Secure Technology Alliance IoT Security Council was formed to develop and promote best practices and provide educational resources on implementing secure IoT architectures using “embedded security and privacy.” The Council will focus on IoT markets where security, safety and privacy are key requirements and will leverage the industry expertise and knowledge gained from implementing embedded security technology for payment, identity, healthcare, transport and telecommunications systems to provide practical guidance for secure IoT implementations. The Council will provide a unified voice for the industry to the broader IoT ecosystem.
The Iot Security Council will work on projects to:
- Accelerate market adoption of secure IoT architectures that incorporate embedded security and privacy
- Provide a forum for intra-industry and cross-industry collaboration on secure IoT architectures
- Provide a business-focused organization to discuss best practices and implementation of IoT architectures using embedded security and privacy
- Provide a single organization where all industry stakeholders can network, share implementation experiences, and discuss applications and security approaches
- Identify and collaborate with other industry organizations to define and promote standards for secure IoT architectures using technologies that provide embedded security and privacy
Download description of Council mission, activities and membership.
Council Resources and Publications
- Embedded Hardware Security for IoT Applications, Secure Technology Alliance IoT Security Council white paper, December 2016
- IoT and Payments: Current Market Landscape, Smart Card Alliance Payments Council and IoT Security Council white paper, November 2017
- IoT Security: Mitigating Security Risks in Secure Connected Environments Webinar
- IoTSecurityConnection.com web portal
- Secure Technology Alliance Response: NIST “IoT Security and Privacy Risk Considerations” Questions, April 2018
- Security in the IoT Ecosystem Webinar Series
IoT Security Council participation is open to any Secure Technology Alliance member who wishes to contribute to the Council projects.
For more information about the IoT Security Council or for more information on becoming a member of the Alliance, please contact the Alliance office via email at [email protected] or via telephone at (800) 556-6828.
