IoTSec:IoT workshop at SERI

= Venue = Domus Nova, rom 540, St. Olavs plass 5, Oslo http://www.jus.uio.no/ifp/om/organisasjon/seri/arrangementer/2018/tks-seminarer/03.04.18.html

= Agenda =
 * 11:00 Preliminary meeting Josef and Christian
 * In the cafe under SERI building
 * 12:00 Reach SERI offices
 * Mingling and preparations
 * 12:15 Presentation starts
 * 13:15 end of presentation
 * More mingling and available to further discussions

=Abstract=
 * Start from the presentation [http://its-wiki.no/images/a/aa/201711_EKOM_IoT_security_Noll.pdf The Internet of Things -  The Need for Standardisation 21 November 2017].
 * Remove some of the more PR slides like about SGSC.
 * Present Challenges that we have identified and work on. These are now in the presentation very well.
 * Add a few more technical slides, e.g.:
 * about communication in IoT (like 5G, wireless, Zigbee, bluetooth, etc),
 * about computation,
 * about energy consumption and energy independence (battery time, energy harvesting, etc),
 * about types of sensors (like in SCOTT WP7 on air quality where they use all forms of imaginable sensors, e.g. see picture in the slide 18 of the VTT presentation in the 14 Feb 2018 meeting in WP7),
 * (sensors in WP7 include temperature, humidity, pressure, various gasses, particles, sound, luminosity, 3D camera, motion, window and doors latch/open),
 * about data produced by IoT devices
 * massive amounts;
 * very intrusive in the life of people in their homes and daily routines, see Smart Meter etc;
 * unreliable from Security point of view i.e., how do we know that the measurement comes from the device and not from attacker?
 * about safety
 * life threatening if failure like bugs that do not trigger the fire alarm or home care monitor
 * if misused by attackers, like the Phillips light bulbs when controlled by attacker can produce epilepsy stroke
 * Ethical question that Brickerbot raised
 * Brickerbot targeted vulnerable IoT devices, and once taking over a device, instead of controlling it for e.g. DDoS attacks, it was Bricking them, i.e.,deleting all firmware making them completely inoperable beyond a simple restart.
 * Is the hacker right or wrong?