This is part 2 of the Semiconductor Engineering security issue discussion with Asaf Shen, vice president of marketing for security IP in ARM’s Systems & Software Group; Timothy Dry, principal staff marketing manager for the Industrial IoT segment at GlobalFoundries; Chowdary Yanamadala, senior vice president of business development at ChaoLogix; and Eric Sivertson, CEO of Quantum Trace. What follows are excerpts of this discussion.  To view part one, click here.

SE: Do we have a handle on what needs to be done to secure connected devices?

Dry: With the Mirai attacks, there was security in place. But there is an education process that isn’t being followed. Is it fair to say they were not secure? Maybe.

Sivertson: People were possibly lazy, too. They don’t want to do security. It’s hard. I love my Apple watch and my Apple laptop. I open it up, I twist my watch, and I don’t have to log in. I hate passwords. Most people do. I don’t like it when my bank says I have to update my password. But I would bet almost everyone has at least one password that is at least five years old. It’s the ease of things that the bad guys take advantage of. We have to make security better and easier for the consumer.

SE: Shodan is an interesting search engine because it tells you all the devices that are connected and, potentially, which ones are not secure. So in that context, how do you build a chain of trust if all the pieces aren’t secure or if people aren’t using them properly or effectively?

read more

Read the whole Q&A article in Semiconductor Engineering.