Are we prepared to pay the price for better security?

haydn.thompson Friday October 19, 2018

As we ride the wave of digitisation and become increasingly dependent on technology, security becomes more and more important. Recent high-profile security breaches have highlighted our vulnerability and as a result a lot of work addressing security has been funded. However, is this work focused on the right areas and threats? From a technical point of view, high levels of security can be achieved, however, the real issue is more a matter of adoption of security solutions by CPS/IoT actors. There a number of different challenges that need to be addressed:

So, in addition to performing research on security, there is also a need to invest in and train security engineers to think in terms of business, opportunities and ROI. There is also a need to educate high-level management of traditional industrial sectors to make them more aware about risks and opportunities related to security specifically, and ICT in general. Until this happens we cannot be confident that the products we are buying are truly secure, but are we prepared to pay the price for good security?