The Internet of Things Security Foundation (IoTSF) has officially launched and set out its plans to respond to rising concerns surrounding cybersecurity challenges in IoT. The creation of IoTSF follows an eight month investigative and consultative process which included staging the IoT Security Summit at the world famous Bletchley Park earlier this year. The summit validated a need to bring more focus to security issues and since that time work has continued to determine an appropriate response to both business and technical threats. As of now, IoTSF will bring an international and expert focus to promote excellence in IoT security with the ambition to "make it safe to connect".
To meet identified needs, IoTSF has been setup as a non-profit, technology neutral body, which will take a system wide, holistic perspective on IoT security best practice. It is not a standards body but intends to work collaboratively with existing standards and other consortia "by default". The programme of activities of the foundation will initially target three key stakeholder groups: technology providers, systems adopters and end users.
IoTSF has an executive steering board comprised of leading technology organisations and security experts including BT, Vodafone, Imagination Technologies, Royal Holloway University of London, Copper Horse Solutions, Secure Thingz, NMI and PenTest Partners. John Haine, industry veteran and visiting professor at the University of Bristol has been announced as the inaugural chair.
To accompany the launch, IoTSF announced three activities to initiate its work:
1.IoT security: the big picture.
2.Self-certification for product developers.
3.An inaugural conference which takes place on December 1st in London
IoTSF is funded by a low-cost membership model and will supplement income through its own operations. It will also accept donation from benefactors who support its mission.
John Moor, VP Segment Development at NMI and IoTSF Director said "the formation of the Internet of Things Security Foundation has been through a rigorous process to make sure it is fit for purpose.
With so many concerns and a new complexity of security in IoT, it is important that we now start the necessary work in earnest to address known, yet not always addressed, and emerging vulnerabilities. The scale and scope of the issues are formidable and as such they require a formidable response. This can only be achieved effectively by working together, so I am delighted to announce IoTSF is open for business and invite organisations to back the mission and join us.
Together we can raise standards and make it harder for criminals, adversaries and rogues of all denominations to exploit us."