The number of cyber-attacks around the world exploded in 2020: exploiting the Covid-19 pandemic as an opportunity for cybercriminals to take advantage of the shift in focus towards smart working and hospital staff transferred to the frontline.
Software lies at the core of every IoT system and service, enabling their functionality and providing value added features. Establishing secure development guidelines across the IoT ecosystem, is a fundamental building block for IoT security.
This ENISA study (November 2019) introduces good practices for IoT security, with a particular focus on software development guidelines for secure IoT products and services throughout their lifetime.
By providing good practices on how to secure the IoT software development process, this study tackles one aspect for achieving security by design, a key recommendation that was highlighted in the ENISA Baseline Security Recommendations study which focused on the security of the IoT ecosystem from a horizontal point of view.
Examples of how software provides essence to IoT include:
Due consideration needs to be given to supply chain issues, including the integration of software and hardware. ENISA recommendations include:
PANACEA Research perspectives: PANACEA is analysing the cyber threat landscape as part of it market perimeter analysis and evaluation of best practices in cybersecurity across enabling technologies and critical infrastructures like healthcare organisations.
Lookout Watch entry date: 27/11/2019