Study Shows an Industrial Internet of Insecure Things

The rate of embedded security protocols is not keeping pace with the increased number of cyber attacks.

Feb 22, 2018
Barr Group 2018 Security Infographic Final

Barr Group recently unveiled some findings from their 2018 Embedded Systems Safety & Security Survey. According to the survey, of the embedded systems developers working on internet-connected or IoT projects, 22 percent do not list security as a product requirement. This would seem to counter the trend of an increasing number of cyberattacks targeting internet-connected devices. Barr Group sees it as a warning that these attacks will continue against the embedded system industry.

Based on survey data from 2018 as well as results from prior years, the embedded industry is showing modest improvement when it comes to making security a design consideration during product development, rising six percentage points from 2016 to today’s 67 percent. However, 33 percent of embedded engineers and 22 percent of engineers designing internet-connected devices are still neglecting to focus on security during product design.

According to Barr Group CTO Michael Barr. “For both new internet-connected and non-internet-connected projects, developers are increasingly designing applications that use more than four CPUs per system. These complex systems significantly increase the potential attack surface and are inherently more difficult to secure.

“Failing to focus on security during the design process, especially for internet-connected devices, may be putting the entire network and potentially the devices’ end users at risk.” According to the 2018 survey, 25 percent of developers designing products for the IoT are working on devices that could kill or injure people if hacked.

Further compromising the state of IoT security, survey results reveal that engineers developing IoT devices are still neglecting to implement industry-recommended design practices known to raise security levels of embedded systems. Of the engineers designing internet-connected devices:

  • 54 percent lack regular code reviews.
  • 49 percent fail to perform static analysis.
  • 33 percent lack a written coding standard.
  • 17 percent lack a bug database.
  • Less than half of all embedded engineers designing for the IoT encrypt their data. 
Latest in Home
Manufacturing Business Management
Sponsored
Manufacturing Business Management
May 1, 2024
Workers remove wreckage of the collapsed Francis Scott Key Bridge, Thursday, April 25, 2024, in Baltimore.
Maryland Officials Release Timeline, Cost Estimate for Rebuilding Bridge
May 3, 2024
Nippon Steel Corporation's logo is displayed on a sign outside its headquarters in Tokyo on Nov. 26, 2021.
Nippon Steel Delays Closing of Acquisition of U.S. Steel
May 3, 2024
Andy Jassy, Amazon president and CEO, attends the premiere of 'The Lord of the Rings: The Rings of Power' at The Culver Studios on Monday, Aug. 15, 2022, in Culver City, Calif. An administrative law judge ruled Wednesday, May 1, 2024, that Jassy violated labor law by making certain anti-union comments during media interviews two years ago.
NLRB: Amazon CEO's Union Comments Violated Law
May 3, 2024
Related Stories
Out Of Office Written In Speech Bubble, Winter, Christmas Vacation Concept 1333583899 1154x914 (1)
Home
No MBT Newsletters Until Jan. 3
Mbtmag com Why Industry Specific Erp Systems
Home
Why Industry-Specific ERP Systems are Essential in Today’s Economy
Out Of Office I Stock 1075416202 5efe1da207e14 5fe278ce57373
Home
Heads Up: No MBT Newsletters Until Jan. 4th
Manufacturing Business Management
Sponsor Content
Manufacturing Business Management
More
Intuitive and Flexible Manufacturing ERP
Sponsored
Intuitive and Flexible Manufacturing ERP
Acumatica looks to offer new solutions.
May 1, 2024
Workers remove wreckage of the collapsed Francis Scott Key Bridge, Thursday, April 25, 2024, in Baltimore.
Quality Control
Maryland Officials Release Timeline, Cost Estimate for Rebuilding Bridge
It will take over four years at an estimated cost between $1.7 billion and $1.9 billion.
May 3, 2024
Nippon Steel Corporation's logo is displayed on a sign outside its headquarters in Tokyo on Nov. 26, 2021.
Operations
Nippon Steel Delays Closing of Acquisition of U.S. Steel
The sale has drawn opposition from both U.S. presidential candidates.
May 3, 2024
Andy Jassy, Amazon president and CEO, attends the premiere of 'The Lord of the Rings: The Rings of Power' at The Culver Studios on Monday, Aug. 15, 2022, in Culver City, Calif. An administrative law judge ruled Wednesday, May 1, 2024, that Jassy violated labor law by making certain anti-union comments during media interviews two years ago.
Operations
NLRB: Amazon CEO's Union Comments Violated Law
Comments that workers “would be better off” without a union ran afoul of federal labor law.
May 3, 2024
Ep160
Video
Beermaker to Be Fined Daily Over Rotten Egg Smell
The company has already spent more than $1 million on repair efforts that have come up dry.
May 2, 2024
I Stock 1146714788
Operations
Florida Man to Pay Cisco $100 Million in Restitution for Fake Equipment Scheme
He was sentenced to more than six years in prison.
May 2, 2024
Ep92tn
Video
Security Breach: Predictions That Hit
A look back at Security Breach guest's most accurate and timely industrial cybersecurity predictions.
May 2, 2024
Ap24122568655562
Operations
Tesla Laid Off its EV Charging Division. Other Automakers Are Worried
Nearly all automakers selling EVs in the U.S. have signed up to join Tesla's Supercharger network.
May 1, 2024
Ep159
Video
Heineken Uproots Huge Apple Orchard as Cider Sales Slip
How do you like them apples? Well, a lot of people don’t like them at all.
May 1, 2024
I Stock 484459870
Operations
Boeing Takes Over GKN Plant to Support F/A-18, F-15 Programs
The aerospace giant also brought along some 550 workers.
May 1, 2024
Johnson & Johnson Consumer Health in Flourtown, Pa., Friday, April 28, 2023.
Quality Control
J&J Subsidiary Proposes $6.48 Billion Over 25 Years to Settle Talc Lawsuits
The settlement would cover allegations that its baby powder containing talc caused ovarian cancer.
May 1, 2024
The Miller OptX 2kW handheld laser welder is ideal for precision welding applications with tight fit-up and minimal gaps where high productivity is needed, including sheet metal, fabrication, manufacturing, aerospace and defense, transportation and HVAC.
Operations
Miller OptX 2kW Laser Welder Looks to Combat Skill Shortage
The device provides a five to 10-time productivity increase compared to precision welding processes.
May 1, 2024
People arrive before the start of a naturalization ceremony at the U.S. Citizenship and Immigration Services Miami Field Office in Miami, Aug. 17, 2018.
Operations
Lottery Bids for H-1B Visas Plunge
The U.S. made changes to target fraud and abuse from those "gaming the system."
April 30, 2024
Ep158
Video
Report: SpaceX Injuries Far Exceed Industry Average
SpaceX’s 2023 records indicate an injury rate of 5.9 incidents per 100 workers.
April 30, 2024
Aurora Flight Sciences held a grand opening event last week to debut its expansion in Bridgeport, West Virginia. The event was attended by employees and state and local leaders, like U.S. Senator Shelley Moore Capito (left).
Operations
Boeing Company Expands to Make Parts for Stingrays, Red Hawks, Military Helicopters
The site is already home to some advanced manufacturing technology.
April 30, 2024