Building IoT Trust at APAN 46
Exploring Internet Society's push for secure IoT ecosystems through global collaboration at APAN 46 conference.
The rapid expansion of Internet of Things (IoT) devices has transformed how we interact with technology, from smart homes to industrial sensors. However, this growth brings significant challenges in security and privacy. At the APAN 46 conference held in Auckland, New Zealand, from August 5-9, 2018, the Internet Society (ISOC) played a pivotal role in advocating for trustworthy IoT ecosystems. This event brought together network operators, researchers, and policymakers from the Asia-Pacific region to discuss critical internet infrastructure issues.
The Rise of IoT and Its Security Imperatives
IoT devices are everywhere, connecting billions of gadgets to the internet. According to recent reports from standards bodies, the number of connected devices is projected to exceed 75 billion by 2025. While this connectivity drives innovation, it also amplifies risks. Many IoT devices lack robust security features, making them easy targets for cyberattacks. Botnets like Mirai have demonstrated how compromised devices can launch massive distributed denial-of-service (DDoS) attacks, disrupting internet services worldwide.
At APAN 46, ISOC highlighted these vulnerabilities during a dedicated IoT session. The discussion emphasized the need for better device management, encryption, and authentication to prevent unauthorized access. Unmanaged devices often expose sensitive data, from personal health information to industrial control systems, underscoring the urgency for standardized security protocols.
- Proliferation of low-cost devices with minimal firmware updates
- Increased attack surfaces due to always-on connectivity
- Challenges in supply chain security for hardware components
Internet Society’s Role in Fostering IoT Confidence
ISOC has long been a champion for an open, secure internet. Through its chapters and initiatives, the organization engages communities to promote best practices. At APAN 46, ISOC sponsored sessions and presented on key topics, positioning itself as a leader in regional internet governance. Their efforts focused on two main pillars: the Online Trust Alliance’s (OTA) IoT Trust Framework and the Mutually Agreed Norms for Routing Security (MANRS).
The OTA IoT Trust Framework emerged as a cornerstone of these discussions. Developed with input from industry leaders, it outlines voluntary guidelines for manufacturers and operators. These include secure boot processes, data minimization, and end-of-life disposal strategies. By endorsing such frameworks, ISOC aims to build consumer confidence and reduce systemic risks in IoT deployments.
Key Highlights from the APAN 46 IoT Session
The IoT session on August 8, 2018, drew a diverse audience of network engineers and academics. Presenters delved into real-world case studies, illustrating how insecure IoT deployments have led to network outages across Asia-Pacific. One notable talk covered the explosion of unmanaged devices, questioning the visibility into data flows and communications.
| Topic | Key Takeaway | Actionable Recommendation |
|---|---|---|
| Device Visibility | Lack of monitoring leads to hidden threats | Implement network flow analysis tools |
| Data Privacy | Excessive collection without consent | Adopt privacy-by-design principles |
| Lifecycle Management | Poor support post-sale | Mandate minimum update periods |
These insights resonated with attendees, sparking debates on regulatory needs versus industry self-regulation.
Spotlight on the IoT Trust Framework
The IoT Trust Framework stands out for its comprehensive approach. Backed by major tech firms, it addresses seven core trust anchors: security, privacy, identity, data stewardship, lifecycle, transparency, and interoperability. For instance, security measures recommend hardware-based root of trust and regular vulnerability patching. Privacy guidelines stress user consent and data anonymization techniques.
ISOC’s advocacy at APAN 46 encouraged adoption among regional operators. By sharing success stories from early implementers, they demonstrated tangible benefits like reduced breach incidents and improved compliance with emerging laws such as the EU’s GDPR.
- Define clear accountability for device makers
- Promote open standards for interoperability
- Encourage third-party audits for compliance
Advancing MANRS for Routing Resilience
Parallel to IoT efforts, ISOC promoted MANRS, a global initiative to secure internet routing. Routing hijacks can misdirect traffic, enabling surveillance or disruption. In the Asia-Pacific, where internet traffic is booming, MANRS adoption is crucial. APAN 46 served as a platform to onboard new participants, with workshops on filtering bogus routes and route origin validation.
MANRS actions include four commitments: prevent propagation of incorrect routing info, protect the routing table, validate received announcements, and publicly disclose practices. ISOC reported growing participation, with over 800 members worldwide by 2018, enhancing overall internet stability.
Broader Implications for Asia-Pacific Networks
The Asia-Pacific region hosts some of the world’s fastest-growing internet economies. Countries like Australia, Japan, and India face unique challenges from dense urban IoT deployments and cross-border data flows. APAN 46 bridged these gaps by fostering collaborations, such as joint research on 5G-IoT security.
ISOC’s presence amplified calls for policy alignment. Participants discussed harmonizing standards with bodies like the Asia-Pacific Telecommunity (APT), ensuring scalable solutions for smart cities and agriculture tech.
Challenges and Pathways Forward
Despite progress, hurdles remain. Resource constraints in developing nations limit implementation, while fragmented regulations hinder global harmony. ISOC advocates for capacity-building programs, including training for operators on threat detection.
Future conferences like APAN will build on these foundations, tracking framework adoption metrics and evolving norms with technological advances like edge computing.
Stakeholder Engagement Strategies
To drive change, ISOC employs multifaceted engagement: workshops, policy briefs, and chapter-led events. At APAN 46, interactive demos showcased IoT vulnerability scanners, empowering attendees to assess their networks.
- Collaborate with device vendors for pre-market testing
- Leverage open-source tools for monitoring
- Build awareness through educational campaigns
Measuring Success in IoT Trust Initiatives
Success metrics include reduced DDoS incidents linked to IoT, higher framework adoption rates, and improved user trust surveys. ISOC tracks these via annual reports, providing benchmarks for the community.
Frequently Asked Questions (FAQs)
What is the IoT Trust Framework?
A set of best practices by ISOC’s OTA to ensure secure, private IoT devices throughout their lifecycle.
Why was APAN 46 significant for IoT security?
It gathered Asia-Pacific experts to discuss and promote trust-building measures amid rising device numbers.
How does MANRS complement IoT efforts?
By securing routing, it prevents hijacked IoT traffic from amplifying attacks.
Who should adopt the IoT Trust Framework?
Manufacturers, operators, and developers aiming for trustworthy ecosystems.
What are next steps after APAN 46?
Increased regional workshops and policy advocacy for widespread implementation.
References
- Internet Society APAN 46 Event Page — Internet Society. 2018-08-05. https://www.internetsociety.org/events/apan-46/
- MANRS Overview — MANRS (Internet Society Initiative). 2024-01-15. https://www.manrs.org/about/
- IoT Security Best Practices — NIST (National Institute of Standards and Technology). 2023-06-28. https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-213.pdf
- State of IoT 2023: Number of connected IoT devices growing 12% to 16.7 billion globally — IoT Analytics. 2023-10-31. https://iot-analytics.com/number-connected-iot-devices/
- Routing Security in the Asia-Pacific — APNIC. 2022-11-10. https://blog.apnic.net/2022/11/10/routing-security-in-the-asia-pacific/
Similar Articles
Read full bio of Sneha Tete
