https://www.iotworldtoday.com/wp-content/themes/ioti_child/assets/images/logo/IoTWorldToday-mobile-logo.png
  • Home
  • News
    • Back
    • Roundups
  • Strategy
  • Special Reports
  • Business Resources
    • Back
    • Webinars
    • White Papers
    • Industry Perspectives
    • Featured Vendors
  • Other Content
    • Back
    • Q&As
    • Case Studies
    • Features
    • How-to
    • Opinion
    • Podcasts
    • Strategic Partners
    • Latest videos
  • More
    • Back
    • About Us
    • Contact
    • Advertise
    • Editorial Submissions
  • Events
Iot World Today
  • NEWSLETTER
  • Home
  • News
    • Back
    • Roundups
  • Strategy
  • Special Reports
  • Business Resources
    • Back
    • Webinars
    • White Papers
    • Industry Perspectives
    • Featured Vendors
  • Other Content
    • Back
    • Q&As
    • Case Studies
    • Features
    • How-to
    • Opinion
    • Podcasts
    • Strategic Partners
    • Latest videos
  • More
    • Back
    • About Us
    • Contact
    • Advertise
    • Editorial Submissions
  • Events
  • newsletter
  • IIoT
  • Cities
  • Energy
  • Homes/Buildings
  • Transportation/Logistics
  • Connected Health Care
  • Retail
  • AI
  • Metaverse
  • Development
  • Security
ioti.com

Security


Thinkstock

Global network security and data protection concept

NCCoE Seeks IoT Device, Networking Vendors to Beat Botnets

The National Cybersecurity Center of Excellence is working to better secure connected products.
  • Written by Courtney Bjorlin
  • 17th January 2018

The federal government is looking to work with IoT device and networking vendors to demonstrate new security standards in practice, with the aim of better securing connected products used by consumers and small businesses against botnets and six other automated distributed threats.

Botnets, like the Mirai DDoS-attack that took down large portions of the web in 2016, aren’t new, and aren’t limited to IoT devices, according to Tim Polk, internet standards lead for the National Cybersecurity Center of Excellence. But because there are so many connected devices, and so many more being developed, security must be implemented in a more scalable way – and in a way that does not put the onus on the consumer or the small business to be a security expert.

“DDoS has always been a problem, but we’ve…not made big changes in how we work to address it,” Polk said. “We’re going to have to be smarter, and find ways to do security in a more scalable way, especially for IoT devices, but not just for IoT devices.”

With that goal, the project, “Mitigating IoT-based Distributed Denial of Service (DDoS)” calls for vendors to leverage standards, specifically, the Manufacturer Usage Description (MUD) specification, and security best practices, to demonstrate a proposed approach for secured deployment of IoT devices in home and small enterprise networks. MUD has particular relevance for small businesses and independent users, because it’s designed to reduce the workload in terms of configuration management, according to Polk.

The deployment will be “in a manner that provides significantly higher security than is typically achieved in today’s environments,” according to the project description. The project also includes dimensions such as easing the patching process by automating security updates and eliminating hard-coded passwords on devices.

Documentation from the project, tailored to the CEO, CISO and more technical audiences, will be published by approximately the end of the year. It will include demonstrating how the MUD protocol works, and what enterprises need to do to take advantage of it within real-world situations, according to Polk. The project will also create an online community of interest through which participants and non-participants alike can share questions and more.

NCCoE is part of the National Institute of Standards and Technology, which is a part of the U.S. Department of Commerce. Unlike NIST, which is focused on developing standards, NCCoE focuses its work on demonstrating real-world applications of the technology.  

The project dovetails with a draft report issued last week by NIST on botnet security, part of which recommends a private, industry-led certification for connected devices, a “Good Housekeeping Seal of Approval,” of sorts for security, according to Polk. The work of both agencies is driven in part by an executive order issued in May, “Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure,” a piece of which commissions the Department of Commerce and Department of Homeland Security to recommend actions that need to be taken by stakeholders to make the internet more resilient against botnets.

Two-dozen companies have already contacted the NCCoE since the project announcement on Dec. 27, Polk said. NCCoE is talking about adding a third use case for the enterprise, Polk added.

The advantage for participating vendors, Polk said, is networking and building relationships with other vendors, publicity for their solutions, and a chance to try out the newest protocols and specifications within their products.

“If they’re interested in taking what they’re building today and moving it to meet this vision, it’s a smart place to come and work with us,” Polk said.

Tags: Article Security Technologies News

Related Content


  • Caltech campus
    Robots Could Gain Sense of Touch, With New Artificial Skin
    New design can help businesses determine the presence of hazardous materials, offer greater safety for workers
  • Clearview AI Fined $9.4M Over Facial Data Scraping
    The company was ordered to delete any data it held on U.K. citizens.
  • Microsoft Ramping up Cybersecurity Service Offerings
    Three new managed services will boost the company’s presence in the security space
  • IoT Product Roundup
    IoT Product Roundup: PTC, Nokia, Arm and More
    All the latest Internet of Things products

Leave a comment Cancel reply

-or-

Log in with your IoT World Today account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Latest News

  • Microsoft Extends Secured-Core Program to IoT Devices
  • Spot the Robot Dog Helps Police Ahead of Boston’s Fourth of July Celebration
  • Unmanned Robotic Combat Vehicle Being Tested
  • Image shows a Close up of lens on black background
    Carnegie Mellon Researchers Invent System to Find Hidden Cameras

Roundups

View all

IoT Product Roundup: Canonical, InfluxData, Wiliot and More

23rd June 2022

IoT Product Roundup: Cisco, Telit, Draganfly and More

9th June 2022

IoT Deals, Partnerships Roundup: Google, Arm, Senet and More

26th May 2022

White Papers

View all

The Role of Manufacturing Technology in Continuous Improvement Ebook

6th April 2022

IIoT Platform Trends for Manufacturing in 2022

6th April 2022

Latest Videos

View all
Image shows Unilever's Alberto Prado at AI Summit 2022 in London

AI Summit 2022: Unilever’s Alberto Prado

Prado talks about how Unilever is using AI to accelerate the speed of new discoveries and gives them access to more breakthrough innovation

Image Shows John Lewis' Barry Panai at AI Summit London 2022

AI Summit 2022: John Lewis’ Barry Panayi on AI in Retail

Panayi talks about data and AI in retail and how individuals and the technology can work together

E-books

View all

How Remote Access Helps Enterprises Improve IT Service and Employee Satisfaction

12th January 2022

An Integrated Approach to IoT Security

6th November 2020

Webinars

View all

Rethinking the Database in the IoT Era

18th May 2022

Jumpstarting Industrial IoT solutions with an edge data management platform

12th May 2022

AI led Digital Transformation of Manufacturing: Time is NOW

9th December 2021

Special Reports

View all

Omdia’s Smart Home Market Dynamics Report

7th January 2022

Cybersecurity Protection Increasingly Depends on Machine Learning

28th October 2020

IoT Security Best Practices for Industry and Enterprise

20th October 2020

Twitter

IoTWorldToday, IoTWorldSeries

IoT Product Roundup: Nokia, Energous, Dashbot and more dlvr.it/STRKDh https://t.co/YgTAI5SXSB

6th July 2022
IoTWorldToday, IoTWorldSeries

A new #IoT bug monitoring system from @CENSIS121 is helping the UK’s #forestry industry fight pests, and save money… twitter.com/i/web/status/1…

6th July 2022
IoTWorldToday, IoTWorldSeries

NHTSA Boss Hints at Federally Regulating Autonomous Vehicles dlvr.it/STQrrw https://t.co/Yjp1UKuaE5

6th July 2022
IoTWorldToday, IoTWorldSeries

Nvidia Powered Driverless Three-Wheelers Set to Debut dlvr.it/STQq0H https://t.co/RrYyVPgFzB

6th July 2022
IoTWorldToday, IoTWorldSeries

New Drone System Aims for Full Autonomy dlvr.it/STQnvV https://t.co/S4O8hb6gQh

6th July 2022
IoTWorldToday, IoTWorldSeries

Bosch, VW Approved to Develop Automated Driving dlvr.it/STQllD https://t.co/neI30dVmC6

6th July 2022
IoTWorldToday, IoTWorldSeries

🤔 Looking for 3 Strategies to Avoid IoT Key Theft? We’ve got you covered! As tech companies continue to develop an… twitter.com/i/web/status/1…

5th July 2022
IoTWorldToday, IoTWorldSeries

AI Summit 2022: Unilever’s Alberto Prado dlvr.it/STMpRN https://t.co/1dyLREr8N6

5th July 2022

Newsletter

Sign up for IoT World Today newsletters: vertical industry coverage on Tuesdays and horizontal tech coverage on Thursdays.

Special Reports

Our Special Reports take an in-depth look at key topics within the IoT space. Download our latest reports.

Business Resources

Find the latest white papers and other resources from selected vendors.

Media Kit and Advertising

Want to reach our audience? Access our media kit.

DISCOVER MORE FROM INFORMA TECH

  • IoT World Series
  • Channel Futures
  • RISC-V
  • Dark Reading
  • ITPro Today
  • Web Hosting Talk

WORKING WITH US

  • Contact
  • About Us
  • Advertise
  • Login/Register

FOLLOW IoT World Today ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookies Policy
  • Terms
Copyright © 2022 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X