Report: Securing smart cities
- By Matt Leonard
- May 31, 2017
What: “Securing Smart Cities,” a paper by researchers at Trend Micro.
Why: The increased number of internet connections in smart city technologies also increases the attack surface for hackers. Those attacks can compromise user data, disrupt city services and hold systems for ransom.
Findings: The paper describes the smart technologies used in smart cities and outlines a few steps that can make the technology more secure:
- Test regularly. Before a technology is put into the field it should be pen tested by an independent contractor. Regular quality assurance testing is also recommended.
- Update often. Once a technology is deployed, it should be updated when the manufacturer releases updates. “Both municipalities and vendors must make sure that updates are delivered in a secure manner -- encrypted and digitally signed -- to ensure software integrity,” the paper reads. Updates won’t continue forever, and cities should plan for vendor support to end.
- Confirm privacy. Data collected from cameras and smart devices should be anonymized and encrypted to avoid “eavesdropping, interception, and modification” of data.
- Ensure continuity of service. A cyberattack should never shut down city services, so cities should consider manual overrides for automated systems and backup systems for some utilities.
Read the full paper here.
Matt Leonard is a former reporter for GCN.