CYBERSPACE, March 10, 2016 (Maximpact.com News) – Billions of physical objects – devices, vehicles, buildings – embedded with electronics, software and sensors and connected to the Internet, are continuously and automatically collecting and exchanging information about human activities right now. It’s the emerging Internet of Things (IoT).
Companies have a big appetite for this form of data that needs no human intervention to gather, yet can produce enormous business value, so analysts see nearly unlimited opportunities as the Internet of Things grows. Yet there are risks, as hackers, too, see opportunities.
“Corporate IoT use is surging. It is projected that more than 50 billion devices will be connected to the Internet within five years,” writes Evan Sinar, PhD, who serves as director for the Center for Analytics and Behavioral Research and chief scientist at Development Dimensions International (DDI), a multi-national corporation based in Pennsylvania.
Anyone with a Fitbit on their wrist or a Nest Thermostat in their home is using an IoT device, explains Dr. Sinar, who says that “outside the home, many systems track and communicate about our daily activities without our knowledge.”
IoT devices range from front door locks, garage door openers, thermostats, webcams, baby monitors and coffee makers to security systems, medical devices such as heart monitors, smart TVs and refrigerators, lighting controls, office equipment and vehicle fuel monitoring systems.
Connecting a car can be accomplished easily using the OBD-II port to install a small device that will bring in WiFi and connected apps. Every car made in the United States since 1996 has been required to have an OBD-II port, usually located under the dash near the steering wheel.
A new device can be plugged into this port to connect a car to the Internet. This enables drivers to monitor their cars’ locations anywhere, anytime, and download trip history, maintenance alerts, engine diagnostics and driving insights to a smartphone.
A burgeoning network of business connections supporting the Internet of Things is emerging.
For instance, in February at the Mobile World Congress in Barcelona, Actility, the industry leader in Low Power Wide Area networks, announced a collaboration with information technology giant Cisco to accelerate digital transformation and the development of new business models based on the Internet of Things.
Actility’s ThingPark provides long-range network connectivity for low-power sensors used in multiple applications such as smart cities, facility management and asset tracking.
The Cisco IoT gateways and Cisco Field Network Director tools provide the vital link between the low power, long range radio connections to sensors and devices, and the global Internet or private customer network.
Actility and Cisco are both members of the LoRa Alliance, a non-profit organization that aims to drive the global success of the LoRa protocol (LoRaWAN) by sharing knowledge and experience for interoperability among operators in one open global standard.
The Massachusetts-based global provider of market intelligence International Data Corporation (IDC) has been doing research on the rapid growth of the Internet of Things and what it will take to succeed in this new field.
David Tapper, vice president of outsourcing, managed and offshore services at IDC, said last August, “According to a recent IDC survey, while U.S. consumers are showing interest in procuring managed IoT and home automation services in areas such as energy management, security, appliances and housewares, and home environmental monitoring, there are a broad range of requirements and needs that providers of these services need to meet in order to penetrate this emerging market.”
Success for those seeking to compete in the managed IoT and home automation services market requires that many factors be brought to bear.
Tapper listed the requirements as: “justifying investing in managed home automation services, understanding the housing market and household needs and requirements for home automation services; viewing consumers from a market basket of IoT needs; identifying first adopters of managed home automation services; leveraging the success of the outsourcing-managed services business model; developing a marketing strategy that addresses key elements such as price, product, promotion, place, and packaging; and establishing a clear position within the ecosystem of vendors, while creating a new ecosystem of partners.”
Not only will the IoT change how we run our in-home electronics, it will transform health care services, says Nino Giguashvili, a senior research analyst with IDC Health Insights.
She believes that IoT-driven digital transformation will contribute to major improvements in the performance of healthcare systems across Central and Eastern Europe, Middle East, and Africa (CEMA).
“The Internet of health is gaining momentum fast in the CEMA region, and the innovation-accelerating impact of IoT on CEMA healthcare markets will be massive,” writes Giguashvili in a March 2015 IDC report.
Giguashvili concludes that the Internet of Things will act as an accelerator of digital transformation in CEMA healthcare in eight ways.
- Medical care will be more accessible
- Hospitals will become safer and smarter
- Plenty of health-relevant data will become available, but gaps in analytics and security will widen
- Patients will become true partners with their caregivers and care managers
- Diagnostics will become more preventative
- Treatments will become more personalized
- Medical care will follow the patients
- Patients will be happier and so will their families and friends
Baby monitors like this one are part of the Internet of Things, convenient but hackable. (Photo by NYC Media Lab) creative commons license via Flickr
But despite the many benefits flowing from the Internet of Things, there are also risks and dangers.
The U.S. Federal Bureau of Investigation (FBI) warns of potential security risks of using interconnected devices such as smart light bulbs, smart fridges, wearables, home security systems, network connected printers, connected cars and fuel monitoring systems.
The FBI warns that cybercriminals can take advantage of system and human vulnerabilities by exploiting the IoT’s deficient security capabilities and patching difficulties.
The FBI said that the lack of consumer awareness can open windows of opportunities for attackers to not only execute online attacks, but threaten the physical safety of consumers as well.
“Since the conception of IoT, we’ve seen several incidents that involved attacks on smart home systems and devices, and the prevalent smartification process could only mean new security challenges,” warned the FBI in a statement. “With the new developments in public-facing technologies, risks and actual attacks aren’t limited to IoT devices, and are becoming widespread among public utilities as well.”
Car hacking through new built-in automotive smart systems has become a reality.
German security specialist Dieter Spaar points to vulnerabilities in the BMW ConnectedDrive technology that could allow attackers to gain control of vehicles and enable them to remotely access function apps.
And last July, automotive security researchers Chris Valasek and Charlie Miller demonstrated how a Jeep Cherokee’s brakes and other systems can be remotely controlled by anyone with an Internet connection. Working with “Wired” writer Andy Greenberg, they showed how a hacker could take control of Greenberg’s vehicle by sending data to its interconnected entertainment system and navigation system via a mobile phone network.
In response, Chrysler announced the recall of 1.4 million vehicles that may be affected by the security issue, and Uber hired Valasek and Miller.
More recently, computer security researcher Troy Hunt was doing a February workshop in Norway when he learned that Nissan’s electric Leaf app could be used to remotely hack any of the Leaf’s systems. A workshop attendee who owns a Leaf discovered was that not only could he connect to his Leaf over the Internet and control features independently of the way Nissan had designed the app, he could control other people’s Leafs as well.
The FBI warns that once cyber criminals find a way into your home or business through cyberspace, “they can move laterally and compromise your network devices, including routers, laptops, phones, tablets, and hard drives to steal your personally identifiable information, identify bank account logins and credit card numbers, send malicious and spam e-mails, abscond with proprietary business information, interfere with business transactions, engage in digital eavesdropping, etc.”
Consumers can minimize these risks. The FBI advises:
- Understand your IoT devices. Many come with default passwords or open WiFi connections, so change to a strong password and only allow the device to operate on a network with a secured WiFi router.
- Protect your Wi-Fi networks. Set up firewalls and use strong, complex passwords, and consider using media access control address filtering to limit the devices able to access your network.
- Many routers give you the option to set up more than one network. If yours does, separate your computing devices from your IoT devices and spread them throughout several different networks. That way, if cyber criminals break into one network, the damage they do will only be limited to the devices on that one network.
- Disable the Universal Plug and Play protocol (UPnP) on your router. UPnP can be exploited to access many IoT devices.
- Purchase IoT devices from manufacturers with a track record of providing secure devices, and set your devices for automatic updates when available.
Award-winning journalist Sunny Lewis is founding editor in chief of the Environment News Service (ENS), the original daily wire service of the environment, publishing since 1990.