Some very long page name that will hopefully never get created ABCDEF123

From its-wiki.no
Revision as of 21:31, 6 May 2019 by Maunyad (Talk | contribs)

Jump to: navigation, search

You do not have permission to edit this page, for the following reason:

The action you have requested is limited to users in one of the groups: Users, GravidPlussUsers, BIFUsers, Kinderdorf, IoTSecUsers, ITSadmin, UNIKUMUsers, FWAUsers, SecEDUUsers, YebooUsers, SMTUsers, MovationUsers, NextelcoUsers, Issues.


You do not have permission to edit this page, for the following reason:

The action you have requested is limited to users in one of the groups: Users, GravidPlussUsers, BIFUsers, Kinderdorf, IoTSecUsers, ITSadmin, UNIKUMUsers, FWAUsers, SecEDUUsers, YebooUsers, SMTUsers, MovationUsers, NextelcoUsers, Issues.


You do not have permission to edit this page, for the following reason:

The action you have requested is limited to users in one of the groups: Users, GravidPlussUsers, BIFUsers, Kinderdorf, IoTSecUsers, ITSadmin, UNIKUMUsers, FWAUsers, SecEDUUsers, YebooUsers, SMTUsers, MovationUsers, NextelcoUsers, Issues.


You do not have permission to edit this page, for the following reason:

The action you have requested is limited to users in one of the groups: Users, GravidPlussUsers, BIFUsers, Kinderdorf, IoTSecUsers, ITSadmin, UNIKUMUsers, FWAUsers, SecEDUUsers, YebooUsers, SMTUsers, MovationUsers, NextelcoUsers, Issues.


You do not have permission to edit this page, for the following reason:

The action you have requested is limited to users in one of the groups: Users, GravidPlussUsers, BIFUsers, Kinderdorf, IoTSecUsers, ITSadmin, UNIKUMUsers, FWAUsers, SecEDUUsers, YebooUsers, SMTUsers, MovationUsers, NextelcoUsers, Issues.


You do not have permission to edit this page, for the following reason:

The action you have requested is limited to users in one of the groups: Users, GravidPlussUsers, BIFUsers, Kinderdorf, IoTSecUsers, ITSadmin, UNIKUMUsers, FWAUsers, SecEDUUsers, YebooUsers, SMTUsers, MovationUsers, NextelcoUsers, Issues.


You do not have permission to edit this page, for the following reason:

The action you have requested is limited to users in one of the groups: Users, GravidPlussUsers, BIFUsers, Kinderdorf, IoTSecUsers, ITSadmin, UNIKUMUsers, FWAUsers, SecEDUUsers, YebooUsers, SMTUsers, MovationUsers, NextelcoUsers, Issues.


You do not have permission to edit this page, for the following reason:

The action you have requested is limited to users in one of the groups: Users, GravidPlussUsers, BIFUsers, Kinderdorf, IoTSecUsers, ITSadmin, UNIKUMUsers, FWAUsers, SecEDUUsers, YebooUsers, SMTUsers, MovationUsers, NextelcoUsers, Issues.



EyeNetworks Fagdag Apr2019

Title EyeNetworks Fagdag Apr2019
Place Månefisken
Date, Time 2019/04/28, -29Apr2019
Contact Person Linda Firveld
Participants Josef.Noll, Jan Pedro Tumusok, Linda Firveld, Maghsoud Morshedi, Maunya Doroudi Moghadam, Eren Soyak, Tom Gaffney, Christine Dalebø Gjerdevik, Ted Tøraasen, Geir Arne Rimala, Jan Richard Aspheim, Gry Tveten, Tore R. Andreassen, Jørund Kvamen, Nils Skøld, Martin Jürgensen
related to Project IoTSec, SCOTT
Keywords
this page was created by Special:FormEdit/Meeting, and can be edited by Special:FormEdit/Meeting/EyeNetworks Fagdag Apr2019
Category:Meeting


For Agenda, see: https://eyenetworks.no/display/EN/Shared+Insights+2019%3A+Tillit

Some "take-aways" by Josef

F-Secure (Tom Gaffney)

Smart = Vulnerable - Mikko Hyppönen's Law (F-Secure)

Mirai: 1 Mio DE, UK (61 username/passwd) combinations

IoT threats

  • 2016 - 5 family threats Remaiten, Mirai, Hajime, Leet
  • 2017 Satori, Persiraij, IoT_Reaper, Brickerbot, Amnesia,
  • 2018 - 35 family threats: Torai, Hide N'Seek, Satori CoinRobber, ADB.Miner, Mushtik, Prowli, GoScanSSH, VPNFilter, Anarchy, Death, Hakai,…

Router Vulnerabilities: 35%(??)

  • "IoT is wild west" (need C-standard for security)

Threat Actors

  • Criminals: Cyber Criminals (steal money)
  • Hacktivists: political or ideological agenda, or just want publicity
  • State Actors: create malware, mass collection of user data - Jeff Bezos (phone cracked by Saudi Arabia),

What do we do?

  • No updates = no Internet
  • Force default password change
  • Patch
  • Bug bounty (engage community to tell you the bugs, and pay them…)
  • Map your attack surface (partners to update you)

Major privacy concerns through IoT, as data are collected without any operation from the users

Zyxel (Tore R. Andreassen)

79% of the Internet traffic is expected through Wifi and mobile by 2022 (Gartner 2018)

  • about 15 devices in average in 2022

New features in 802.11ax

  • Target Wake Time - Battery operated IoT devices - scheduled wake up - and 20 MHz
  • 4x increase in capacity
  • higher efficiency

WAOO (Martin Jürgensen)

WAOO is a Danish Internet Service Provider