- HP’s IoT Security Research (PDF) — 70% of devices use unencrypted network services, 90% of devices collected at least one piece of personal information, 60% of those that have UIs are vulnerable to things like XSS, 60% didn’t use encryption when downloading software updates, …
- USB Security Flawed From Foundation (Wired) — The element of Nohl and Lell’s research that elevates it above the average theoretical threat is the notion that the infection can travel both from computer to USB and vice versa. Any time a USB stick is plugged into a computer, its firmware could be reprogrammed by malware on that PC, with no easy way for the USB device’s owner to detect it. And likewise, any USB device could silently infect a user’s computer. “It goes both ways,” Nohl says. “Nobody can trust anybody.” [...] “In this new way of thinking, you can’t trust a USB just because its storage doesn’t contain a virus. Trust must come from the fact that no one malicious has ever touched it,” says Nohl. “You have to consider a USB infected and throw it away as soon as it touches a non-trusted computer. And that’s incompatible with how we use USB devices right now.”
- AdBlock vs AdBlock Plus — short answer: the genuinely open source AdBlock Plus, because AdBlock resiled from being open source, phones home, has misleading changelog entries, …. No longer trustworthy.
ENTRIES TAGGED "iot"
Internet of Things, local energy sources, and online collaboration underlie the Zero Marginal Cost Society.
Government sensor networks can streamline processes, cut labor costs, and improve services.
It’s not news to anyone who works in government that we live in a time of ever-tighter budgets and ever-increasing needs. The 2013 federal shutdown only highlighted this precarious situation: government finds it increasingly difficult to summon the resources and manpower needed to meet its current responsibilities, yet faces new ones after each Congressional session.
Sensor networks are an important emerging technology that some areas of government already are implementing to bridge the widening gap between the demand to reduce costs and the demand to improve services. The Department of Defense, for instance, uses RFID chips to monitor its supply chain more accurately, while the U.S. Geological Survey employs sensors to remotely monitor the bacterial levels of rivers and lakes in real time. Additionally, the General Services Administration has begun using sensors to measure and verify the energy efficiency of “green” buildings (PDF), and the Department of Transportation relies on sensors to monitor traffic and control traffic signals and roadways. All of which is productive, but more needs to be done. Read more…
A suitable network topology for building automation.
Editor’s note: this article is part of a series exploring the role of networking in the Internet of Things.
Today we are going to consider the attributes of wireless mesh networking, particularly in the context of our building monitoring and energy application.
A host of new mesh networking technologies came upon the scene in the mid-2000s through start-up ventures such as Millennial Net, Ember, Dust Networks, and others. The mesh network topology is ideally suited to provide broad area coverage for low-power, low-data rate applications found in application areas like industrial automation, home and commercial building automation, medical monitoring, and agriculture.
Business users are becoming more comfortable with graph analytics.
The rise of sensors and connected devices will lead to applications that draw from network/graph data management and analytics. As the number of devices surpasses the number of people — Cisco estimates 50 billion connected devices by 2020 — one can imagine applications that depend on data stored in graphs with many more nodes and edges than the ones currently maintained by social media companies.
This means that researchers and companies will need to produce real-time tools and techniques that scale to much larger graphs (measured in terms of nodes & edges). I previously listed tools for tapping into graph data, and I continue to track improvements in accessibility, scalability, and performance. For example, at the just-concluded Spark Summit, it was apparent that GraphX remains a high-priority project within the Spark1 ecosystem.