Successful attacks on IoT devices often combine social engineering practices with technical skills, exploiting technical vulnerabilities, insecure user behavior, poorly designed user interfaces, and, a synthesis of the abovementioned concepts, the non-compliance with data protection laws. To improve security, also adherence to reasonable security policies and corresponding behavioral changes could improve technical security.
In order to find the right balance between the technical and the social security measures, the European Telecommunication Standards Institute, recently released “Cyber Security for Consumer Internet of Things” (PDF available here) that motivated the organization of this e-workshop.
The Security Cluster, a community that works together to bring together experiences from European projects in the field of IoT, will enrich the workshop with the content and ideas needed to properly address the standard and report how the best practices it contains have been implemented or how they could be implemented.
Partners in the economic, legal and technical sectors were also invited to speak in order to provide a heterogeneous point of view on the issue.
The workshop intends to stimulate an exchange of ideas and experiences on how to design IoT systems that are secure in the real world where they interact with non-expert users and in compliance with the ETSI’s standard. It aims at bringing together experts in various areas of law and computer security.
- Pasquale Annichino – Archimede Solutions – Moderator
- Francesco Capparelli – Italian Institute for Privacy – Introduction and comment on ETSI’s standard
- Angelica Craveli – Cybersecurity for Research and Awareness – Blockchain as a security measure
- Giulio Messori – Centro IoT&Privacy – Legal Aspects
- Pietro Biondi – Università di Catania UNICT – Technical Aspects
How to participate