There are important steps security teams should take to be ready for the evolving security threats to the IoT in 2020.
Fausto Oliveira, principal security architect at Acceptto, shared with DARKReading his view points.
In dealing both with the cloud services and the IoT devices that may be involved in the total IoT environment, security professionals need to actively engage their suppliers and partners to make sure that the basic components are capable of secure use. For example, Fausto Oliveira, principal security architect at Acceptto, says that devices must have the ability to have default usernames and passwords changed, as well as the capacity for encrypted communications with both upstream and downstream systems in the network. "Organizations need to provide strong guidance to the vendors and make sure that, in the selection process, security is a clearly defined feature that is non-optional," Oliveira says. It is, he says, in the best interest of both the vendors and their customers to make sure the total system is as secure as possible.