Like most technological advancements, the internet of things (IoT) brings with it issues and opportunities when it comes to cyber.
The Defense Department likely will leverage all emerging IoT assets to increase the effectiveness and efficiency of operations and to meet or exceed their operating principles. All of the new IoT sensors create new information sources and new opportunities for automation that facilitate quicker response.
This has not escaped the attention of DoD. In fact, one report by Govini determined that the entire federal IoT market had a 20 percent year-over-year growth in fiscal year 2015. That trend is likely to continue as DoD applications increase, according to the report.
You can be sure that our adversaries have been busy examining emerging IoT devices and systems and determining how they can use them, as well as how they can target these digital assets.
IoT is going to be a huge challenge when it comes to cyber defense. For example, look at the challenges that are beginning to pop up with cellular IoT sensors. As the name suggests, these are sensors that use cellular communications to transmit the data they collect to the system or systems that use that data. That communication is often unencrypted, so the theft and use of that data is entirely possible.
Now consider that most IoT devices do not have firewalls or antivirus so the device itself is exposed. Similar concerns were echoed by Marine Corps Maj. Scott Cuomo, who spoke at the IoT summit hosted by the AFCEA DC Chapter. Some worry that the data could be intercepted, changed and rebroadcast to its intended recipient.
The remote IoT devices will be difficult to protest as it stands now. Why have we not learned lessons from the past? We should have already mandated all IoT devices used in mission critical system applications or critical infrastructure applications have some level of cybersecurity built in. We need a new recipe that integrates cybersecurity before the solution is fully baked.
