VF2017: Cyber Security in the Internet of Things

Conference: Verification Futures 2017 (click here to see full programme)
Speaker: Hugh Boyes (Principal Engineer, Cyber Security Centre), University of Warwick
Presentation Title: Cyber Security in the Internet of Things and Complex Cyber Physical Systems
Abstract: This presentation will look at the cyber security challenges related to the development of industrial, control and signalling applications in the Internet of Things and the cyber aspects of complex cyber-physical systems. It will draw on the research undertaken in the WMG Cyber Security Centre and its application in construction, transport and manufacturing industries. Using case studies the speaker will illustrate how a failure to adopt a security minded approach and/or the application of engineering good practice can result in security breaches that may result in incidents that lead to damage, financial loss or reputations damage.

  • The increasing reliance on commercial technology, including software, poses significant challenges for the security of complex systems
  • There is a need to adopt a security-minded approach to the design of systems and the publication of information about them
  • If a system is not appropriately secure then it is likely to be vulnerable from a safety perspective
Speaker Bio: Hugh is a Chartered Engineer, a Fellow of the IET and holds the CISSP credential issued by (ISC)2. He divides his time between working as a Principal Fellow at WMG, University of Warwick, acting as the Cyber Security lead for the Institution of Engineering and Technology (IET), and undertaking cyber security consultancy assignments. At the University he focuses on cyber resilience and the cyber security of physical-cyber systems, whilst at the IET he focuses on develop cyber security skills initiatives for engineering and technology communities. His consultancy work focusses on the design and operation of cyber-physical systems, e.g. building automation systems, industrial control systems, vehicles, etc.

Hugh has written a technical briefing document for the IET and CPNI on resilience and cyber security of technology in the built environment, is author of the IET “Code of Practice for cyber security in the built environment” and the IET “Code of Practice for Cyber Security in the Built Environment. Last year he led the drafting of the DfT/Dstl/IET “Code of Practice for Cyber Security of Ports and Port Systems”. He was the joint technical author of BS PAS 1192-5: 2015 – “Specification for security-minded building information modelling, digital built environments and smart asset management” and for the forthcoming BS PAS 185 on cyber security of smart cities.