In-brief: Researchers from George Mason University and New York University are warning that the software used to link smart phones to in-vehicle “infotainment” (IVI) systems could make cars vulnerable to remote attack.
Recent Posts
Amazon, Microchip Partner to secure IoT Supply Chain | EE Times
EE Times notes some interesting product news involving chip maker ATMEL and Amazon, aka “the IoT’s back end.” According to the report, Amazon is partnering with ATMEL’s parent company, Microchip, to enable seamless provisioning of IoT devices with end to end encryption. The partnership will marry Microchip’s Atmel’s ECC508 chip to marry the company’s “Zero touch” platform with Amazon’s new(ish) “Just in Time Registration” service, which streamlines device activation. The partnership is designed to address some noted problems with secure IoT deployments. Namely: key generation on low power IoT devices, securing keys throughout long and complex manufacturing chain, securing communications between the IoT endpoint and the (cloud ) management server and then securing and managing the endpoint throughout its life. The ECC508 is designed to address a number of those challenges. It uses elliptic curve cryptography and is tamper resistant, with defenses against “microprobe, emissions analysis, timing, and other attacks.” Behind the scenes AWS;s Zero-touch secure […]
FTC warns consumers of rental car data theft risk
In-brief: The Federal Trade Commission is warning consumers to beware of features that allow rental car customers to connect their mobile phone or other devices to in-vehicle infotainment systems. They could result in the leak of sensitive information!
Infograph: Security Issues facing the IoT (from Microsoft)
In-brief: Microsoft put together an interesting infographic that corrals some of the companies IoT and security predictions and underscores problem areas in securing Internet of Things infrastructure.
Short Sheet: Researchers Raise Doubts on St. Jude Device Hack
In-brief: The battle of words over the security of devices by St. Jude Medical continued on Tuesday, as researchers from University of Michigan raised questions about claims that security researchers had actually “crashed” implantable pace makers.
