On Tue, Dec 12, 2023 at 04:56:48AM +0000, Stephen Loosley wrote: > "[...] Industrial IoT [...]"
Does the phrase "Industrial IoT" fill anyone else with horror? Consumer IoT is bad enough, and current wired industrial computer-controlled tech is insecure garbage. Wireless can only be worse because it hugely multiplies the attack surface - no need for physical access, just be within range - a few hundred metres, or even further with higher quality Tx/Rx equipment. I'm really looking forward to that on water, gas, electricity, rail, etc infrastructure. and on things like industrial robots, manufacturing plants, steel mills and more. and it's even worse when you consider that almost all of the "security" software budget will go to enabling manufacturer remote sabotage for failure to pay on-going rent on expensive *purchased* equipment and for contempt-of-business-model "crimes" like interoperability (e.g. extracting your own data for use with "non-approved" software, or non-approved control software) and third-party repairs (as demonstrated by Apple phones/tablets etc, John Deere tractors, and Newag trains in Poland). That's NOT security to protect the purchaser/owner from criminal activity, but to privilege the manufacturer against their customer. craig _______________________________________________ Link mailing list [email protected] https://mailman.anu.edu.au/mailman/listinfo/link
