Operationally, you can deploy a firewall, but have no say in the poor software development practices of your IoT vendor. Compartmentalization -- yes, within the compartment, the IoT devices can kill each other. :-) If the compartment granularity is not fine enough, improve it.
P.S.: Yes, I'd like secure IoT devices. I would also like to erradicate poverty and other things... Fernando On Mon, Dec 11, 2017 at 6:09 PM, Pete Mundy <p...@fiberphone.co.nz> wrote: > > But the FW doesn't (can't) protect the IoT device from other malicious IoT > devices sharing the local network behind the firewall. > > Isn't it better to forego the boarder firewall completely and make > implementing that service the responsibility of each host for itself? > > Pete > > > > On 12/12/2017, at 10:00 AM, Fernando Gont <ferna...@gont.com.ar> wrote: > > > > The crap doesn't get fixed because that's the software development we > are used to. Windows 10 was Windows '95 in the '90s. So give the IoT stuff > 15-20 years to get to a sensible quality/state/security and/or enough > widespread trouble/exploitation. > > > > Pragmatically speaking, people will connect that crap to the 'net... and > the "less connected" such devices are, the better. > > So, please, don't remove FWs. :-) > > > > Cheers, > > Fernando > > -- Fernando Gont e-mail: ferna...@gont.com.ar || fg...@acm.org PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1