Cybersecurity: Finance's Digital Frontier

By Joe Mclaughlin, Chief Financial Officer, Austin...

Cybersecurity: Finance's Digital...

The Changing World of Project Management

By Steve Mauk, IT Manager, Infrastructure Project...

The Changing World of Project Management

How Does an Agile Approach Translate into Agility in Project Management Practice?

By Mark Welsh, Digital Transformation Program...

How Does an Agile Approach Translate...

Understanding the Dynamics of a Project Manager

By Kiran Marri, Chief Scientist, Digital...

Understanding the Dynamics of a...

Responsible Engineering and the Internet of Things

By Vinton G. Cerf, VP & Chief Internet Evangelist, Google

Responsible Engineering and the Internet of ThingsVinton G. Cerf, VP & Chief Internet Evangelist, Google

We are anticipating an avalanche of programmable, networked devices as the rest of this decade unfolds. It is common for this so-called "Internet of Things" to associate a mobile app with the device that allows it to be controlled or monitored through the public Internet. In the early history of the Internet, this was considered a stunt. In particular, at an Interop show in the 1990s, a remotely controlled toaster was exhibited on the show floor and we all laughed. Not so funny now.

In the rush to produce devices of this kind, manufacturers are cutting corners, grabbing open source software without much consideration for safety and security. They are thinking about the idea of "one device - one app" without giving adequate thought to the interoperability of ensembles of devices from multiple makers. Lacuna can also be felt in coping with configuration of many devices, recognizing risks of network-based attacks, ease of use, and the ability to update software from a valid source.

It is vital that engineers and programmers recognize their responsibilities in this space. Millions will rely on these devices to perform safely, to be resistant to abusive attack or incorporation into botnets and to function even when the Internet isn't accessible.

It is therefore irresponsible not to take every effort to assure that this reliance is not misplaced. Just as the famous Underwriters Laboratory has tested products in the past, a new version of that function is needed to increase the likelihood that consumers can trust these devices for safety, security, and privacy protection.

Increased reliance on the proper functioning of software should also increase demands for responsible engineering, lest we create a fragile future no one wants

‚ÄčSome of this equipment will be installed in homes and manufacturing plants with the expectation of operation for periods that could be measured in decades. There is no doubt that the associated software will need to be maintained during that time, leaving purchasers to wonder whether the associated companies will still be around to service the systems during the lifetime of the product. Operating systems are updated with some frequency and support for older versions deliberately abandoned for understandable business reasons. Somehow these support issues will have to be or should be addressed in the lifecycle planning for their manufacture and sale.

Software developers will need new tools to help them avoid exploitable bugs or, at least, to discover them before products are released into the wild. Programmers and systems engineers will need to feel empowered by ethical considerations to resist release of products that do not meet standards of safety, reliability, privacy and resilience.

Indeed, standards need to be developed to address these issues. In some extreme cases, failure to address these issues may be considered flagrantly irresponsible and lead to penalties, assuming legislation supports this interpretation of responsibility.

Returning to the interoperability theme, it seems inevitable that the uses of these devices, especially in manufacturing plants, office buildings and residences as well as smart cities, will produce pressure for communication standards at all layers in the architecture. The ability to manage and configure devices at scale will be significantly facilitated by adopting common standards which improve the operations and security of the resulting system.. There are arguments for diversity to avoid common failure modes and that notion should not be entirely discounted, but maintaining too many variations leads to insecurity and complexity that will not contribute to reliability.

We are entering an era in which software will make decisions for us that once we made for ourselves, whether we are thinking about self-driving cars, robotic manufacturing systems or smart houses and cities. Increased reliance on the proper functioning of software should also increase demands for responsible engineering, lest we create a fragile future no one wants.

Read Also

The Evolution of the Matrix

The Evolution of the Matrix

Raymond Kent, Principal, Director of the Innovative Technology Design Group, DLR Group
The Evolution of the Matrix

The Evolution of the Matrix

Raymond Kent, Principal, Director of the Innovative Technology Design Group, DLR Group
The Evolution of the Matrix

The Evolution of the Matrix

Raymond Kent, Principal, Director of the Innovative Technology Design Group, DLR Group
Thinking Intelligent Buildings? Make sure you have a Smart Team.

Thinking Intelligent Buildings? Make sure you have a Smart Team.

Brian Coogan, Director of Intelligent Buildings, Ethos Engineering
Cybersecurity: Finance's Digital Frontier

Cybersecurity: Finance's Digital Frontier

Joe Mclaughlin, Chief Financial Officer, Austin Industries
follow on linkedin follow on twitter 2021 All Rights Reserved | by: constructiontechreview
Top