Story image

Fujitsu Labs takes network control approach IoT security

29 May 2018

Fujitsu Technologies has developed a new kind of network control technology that is able to secure IoT devices installed in the field.

According to the company, it technology analyses and manages interconnectivity between IoT devices and network devices, based on operating information collected in gateways.

This responds to changes in network structure so it can spot IoT devices that may be behaving in a suspicious way.

Fujitsu Laboratories also developed the technology so that can control communication blocks. The technology can be used in cases where an IoT device is infected in malware and started to attack other devices. The technology can detect that communication by comparing ordinary communication routes through a gateway with the actual routes.

A statement from Fujitsu Laboratories says that IoT adoption has been increasing in many industrial fields, particularly as sensors and manufacturing equipment become connected to networks.

IoT devices have also been damaged by malware attacks worldwide, which has created an urgent need for security countermeasures in IoT devices.

“In many cases, however, IoT devices do not support antivirus software due to CPU, memory, or OS restrictions, and even if antivirus software is deployed, often software updates that require the device to be rebooted are not executed as the IoT device cannot be stopped while in operation. Due to these factors, the current situation is that many IoT devices are operating with insufficient security measures.”

While some vendors have suggested using gateways to separate IoT networks from other networks, however cyber attacks don’t necessarily need to use gateways. If a device is infected with malware and connected inside the network, it’s not possible to protect them from cyber attacks, Fujitsu Laboratories says.

The company approached IoT security from a network topology viewpoint, in which technology can “collect operating information about IoT devices and network devices from gateway devices, deduce the topology of the network the IoT devices are connected to, and appropriately control the network devices based on this information”.

The company tested the technology using a fake malware variant and found that its technology could minimize the impact of cyber attacks when it is installed in gateways.

“With this technology, it will be possible to provide secure operations using existing setups, without exchanging or deploying new IoT devices with security countermeasures in sites such as factories, which require the continued operation of production equipment with long service lifespans.”

Fujitsu Laboratories says it plans to commercialize the technology during fiscal 2018 as gateway functionality for the Fujitsu Network Virtuora series of network products. The company will also continue to develop the technology.

Avi Networks: Using visibility to build trust
Visibility, also referred to as observability, is a core tenet of modern application architectures for basic operation, not just for security.
Privacy: The real cost of “free” mobile apps
Sales of location targeted advertising, based on location data provided by apps, is set to reach $30 billion by 2020.
Myth-busting assumptions about identity governance - SailPoint
The identity governance space has evolved and matured over the past 10 years, changing with the world around it.
Forrester names Crowdstrike leader in incident response
The report provides an in-depth evaluation of the top 15 IR service providers across 11 criteria.
Slack doubles down on enterprise key management
EKM adds an extra layer of protection so customers can share conversations, files, and data while still meeting their own risk mitigation requirements.
Security professionals want to return fire – Venafi
Seventy-two percent of professionals surveyed believe nation-states have the right to ‘hack back’ cybercriminals.
Alcatraz AI to replace corporate badges with AI security
The Palo Alto-based startup supposedly leverages facial recognition, 3D sensing, and machine learning to enable secure access control.
Unencrypted Gearbest database leaves over 1.5mil shoppers’ records exposed
Depending on the countries and information requirements, the data could give hackers access to online government portals, banking apps, and health insurance records.