Re: Security for the Internet of Things and Other Things (Was: Re: Obser

ietf

Re: Security for the Internet of Things and Other Things (Was: Re: Observations on (non-technical) changes affecting IETF operations)

2016-03-11 10:51:02



On 11/03/2016 15:22, Eliot Lear wrote:


On 3/9/16 6:41 PM, Livingood, Jason wrote:

Sure, WiFi security is an issue for IoT. But there are probably much more
fundamental IoT security issues. IMHO I think one of the largest is the
lack of a secure & automatic (no end user interaction) software update
channel.

Even if it's there day 0, it won't be there at some point.  And the
device will be.

Eliot


A conventional s/w update channel is only appropriate for some devices.

For very cheap sealed devices, the update channel is via the garbage can.

For devices that only offer one way (outbound) communications the
update channel is via physical access.

For devices that only offer one way (inbound) communications the
update channel could be over the communications channel (STB's
do this today) but will be very much resource (device and
communications channel) constrained.

- Stewart

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Observations on (non-technical) changes affecting IETF operations, (continued) Re: Observations on (non-technical) changes affecting IETF operations, Randy Bush Re: Observations on (non-technical) changes affecting IETF operations, Phillip Hallam-Baker Security for the Internet of Things and Other Things (Was: Re: Observations on (non-technical) changes affecting IETF operations), Jari Arkko Re: Security for the Internet of Things and Other Things (Was: Re: Observations on (non-technical) changes affecting IETF operations), Michael Richardson Re: Security for the Internet of Things and Other Things (Was: Re: Observations on (non-technical) changes affecting IETF operations), Carsten Bormann Re: Security for the Internet of Things and Other Things (Was: Re: Observations on (non-technical) changes affecting IETF operations), Theodore V Faber Re: Security for the Internet of Things and Other Things (Was: Re: Observations on (non-technical) changes affecting IETF operations), Livingood, Jason Re: Security for the Internet of Things and Other Things (Was: Re: Observations on (non-technical) changes affecting IETF operations), Phillip Hallam-Baker Re: Security for the Internet of Things and Other Things (Was: Re: Observations on (non-technical) changes affecting IETF operations), Scott Kitterman Re: Security for the Internet of Things and Other Things (Was: Re: Observations on (non-technical) changes affecting IETF operations), Eliot Lear Re: Security for the Internet of Things and Other Things (Was: Re: Observations on (non-technical) changes affecting IETF operations), Stewart Bryant <= Re: Observations on (non-technical) changes affecting IETF operations, Michael Richardson Getting on with Things, Eliot Lear RE: Getting on with Things, Adrian Farrel Re: Getting on with Things, Carsten Bormann Re: Getting on with Things, Stewart Bryant Re: Getting on with Things, Carsten Bormann Re: Getting on with Things, Stewart Bryant Re: Getting on with Things, Medel Ramirez Re: Getting on with Things, Eliot Lear Re: Getting on with Things, Gmail

Previous by Date:	Re: Remote Hubs, Christian O'Flaherty
Next by Date:	Re: Gen-Art LC review: draft-ietf-netmod-yang-metadata-04, tom p.
Previous by Thread:	Re: Security for the Internet of Things and Other Things (Was: Re: Observations on (non-technical) changes affecting IETF operations), Eliot Lear
Next by Thread:	Re: Observations on (non-technical) changes affecting IETF operations, Michael Richardson
Indexes:	[Date] [Thread] [Top] [All Lists]