Over the past decade we’ve seen an increase in consumer grade IoT devices, but the security of those devices hasn’t always kept pace with the realities of the cyber threats targeting what is arguably an unmanaged computing device. These cyber threats are made more concerning when the expected lifespan of the device is factored in. After all, dishwashers, thermostats and doorbells aren’t devices like smartphones where there is social pressure to have the latest version.
This means that IoT device manufacturers need to invest in cybersecurity not only during design and for the initial software release, but also over the expected lifespan and potentially into obsolescence. For manufacturers new to the connected device world, it’s highly likely that their business plan for a new model includes a maintenance and service model that relies heavily on third parties to manufacture replacement parts and then install them.