IoT Security: It’s Not About The Law

IoT Security: It’s Not About The Law
Tumisu / Pixabay

Jake Sprouse, Director of Software Engineering at Synapse, responds to the new California cyberbill  on IoT security as follows:

“Legislation requiring security measures in IoT devices can do little harm, but it’s a half measure at best. New exploits to existing security protocols are found on a regular basis, so those responsible for building IoT devices need to make sure those devices can be patched and upgraded to address new security flaws after they’ve been shipped.

But this is a big shift in management: manufacturers can no longer “ship and forget”. Instead they need to invest, continually improving their embedded software after launch and for the lifecycle of their devices.

Robinhood 2021 Conference: Cathie Wood discusses her investment process with Lee Ainslie [Exclusive]

Yarra Square Investing Greenhaven Road CapitalARK Invest is known for targeting high-growth technology companies, with one of its most recent additions being DraftKings. In an interview with Maverick's Lee Ainslie at the Robinhood Investors Conference this week, Cathie Wood of ARK Invest discussed the firm's process and updated its views on some positions, including Tesla. Q1 2021 hedge fund letters, Read More

And there’s a looming iceberg. For IoT devices at or beyond the edge, security updates can be orders of magnitudes larger than the data payloads the system was designed to transmit. The industry cannot afford to let this get in the way of securing the IoT.

Know more about Russia than your friends:

Get our free ebook on how the Soviet Union became Putin's Russia.

Q3 hedge fund letters, conference, scoops etc

The IoT security breaches we’ve seen so far really represent the early stage of the IoT market – These are growing pains. If we look at the consumer experience, although it took some time, consumers are familiar with looking for the green padlock in the URL address bar before proceeding with secure web services. But this level of user friendly authentication simply does not exist in the IoT.

Consumers must rely on their IoT device manufacturer or service provider for authentication but have no obvious way to understand the security in place.

However, there are measures the industry can take to improve security by pushing browser authentication into the app world. A simple approach is to enable browsers to access more peripherals and apps, adapting the API to allow access via Bluetooth. Longer term, standards bodies may need to increase focus on IoT security and look at how consumers can be provided with clearer security indicators.

Increasing security and providing a more user-friendly way of communicating this is essential for the IoT to mature and for the industry to fully benefit from its clear potential”.

Previous article Users Report Problems With iPhone XS And XS Max Earpiece Speaker
Next article The Most Talked About Meteorites Have Landed at Tellus Science Museum
Jacob Wolinsky is the founder of, a popular value investing and hedge fund focused investment website. Jacob worked as an equity analyst first at a micro-cap focused private equity firm, followed by a stint at a smid cap focused research shop. Jacob lives with his wife and four kids in Passaic NJ. - Email: jacob(at) - Twitter username: JacobWolinsky - Full Disclosure: I do not purchase any equities anymore to avoid even the appearance of a conflict of interest and because at times I may receive grey areas of insider information. I have a few existing holdings from years ago, but I have sold off most of the equities and now only purchase mutual funds and some ETFs. I also own a few grams of Gold and Silver

No posts to display