Order in the IoT schoolyard, the time’s come for everyone to play nice – the importance of regulation in the IoT Economy

Share Post:

Order in the IoT schoolyard, the time’s come for everyone to play nice – the importance of regulation in the IoT Economy

Session Abstract:

Last year’s Colonial Pipeline ransomware attack may well have been one of the most disruptive in history. It resulted in over 100GB of data exfiltrated, a $4.4 million ransom paid, and nearly three quarters of gas stations left without fuel on America’s east coast [1]. The year before, the malicious code that infected SolarWinds software led to an attack that compromised several US federal agencies and large corporations. In Europe, this year, we have born witness to cyberwar with 11GW of German wind farm energy taken temporarily offline [2].

As a result, Europe and US have become serious about the cyber resilience of their national infrastructure. In May 2021 President Biden issued the Executive Order on Improving the Nation’s Cybersecurity [3], Congress passed the “Strengthening American Cybersecurity Act of 2022” [4] and the EU just proposed the “EU Cyber Resilience Act”[5]. These legislative actions mandate significant hardware and software systems cybersecurity measures affecting every element of design, development, deployment, and maintenance of IoT systems.

This presentation will explore the implications of these mandates in depth and offer practical recommendations to facilitate and accelerate compliance.

[1] https://www.forbes.com/sites/servicenow/2022/08/18/beyond-compliance-the-new-mandate-to-harden-government-software/?sh=737db2933287

[2] https://www.pv-magazine.com/2022/03/01/satellite-cyber-attack-paralyzes-11gw-of-german-wind-turbines/#:~:text=The%20communication%20channels%20affected%20are%20also%20used%20by%20photovoltaic%20systems.&text=In%20the%20event%20of%20a,a%20kind%20of%20%22autopilot.%22

[3] https://www.whitehouse.gov/briefing-room/presidential-actions/2021/05/12/executive-order-on-improving-the-nations-cybersecurity/

[4] https://www.congress.gov/bill/117th-congress/senate-bill/3600#:~:text=Passed%20Senate%20(03%2F01%2F2022)&text=This%20bill%20addresses%20cybersecurity%20threats,assessments%20of%20federal%20risk%20posture.

[5] https://digital-strategy.ec.europa.eu/en/library/cyber-resilience-act#:~:text=The%20proposal%20for%20a%20regulation,secure%20hardware%20and%20software%20products.

Speaker:

Julian Durand is Intertrust’s vice president of product management and chief information security officer where he is responsible for owning the IoT product leading the PKI team and overseeing security practices for the company. He brings over 30 years of experience in bringing breakthrough products to market at a massive scale and is a named inventor in Digital Rights Management (DRM), Internet of Things (IoT) and virtual SIM technologies. Before joining Intertrust, Julian brought SaaS and PaaS products to market for construction telematics and real time cyber risk analysis at TeMeDa and CyberLucent respectively, taking both companies to profitability from initial seed funding startups. At Qualcomm Julian led product security; virtual SIM development; child tracking sold as Best Buy’s “Little Buddy”; and the company’s first efforts in IoT doubling revenue year on year for the first three years and catalyzing what is now a billion-dollar business. Prior to that, he was the technical lead for Nokia’s first music phone. Julian holds a B.Eng from Carleton University in Ottawa, Canada, an MBA from the University of Southern California (USC) and is a Certified Information System Security Professional (CISSP).

Register Now: