A recent research conducted by Microsoft in collaboration with Ponemon Institute included a survey of companies that have adopted IoT solutions and 65 percent of them indicated that security is a top priority when implementing IoT. Attacks targeting IoT devices put businesses at risk. Affected devices can be bricked, held for ransom, used as a launch pad for further network attacks, or used for malicious purposes. Among the many impacts, we often see intellectual property (IP) and data theft and compromised legal status, all of which can have brand and financial implications for the business.
We then conducted a survey to understand the top concerns surrounding the security of IoT devices, and we shared the findings in a previous blog on best practices for managing IoT vulnerabilities† The following list summarizes the top security vulnerabilities faced by companies that have adopted IoT solutions:
- Ensuring data privacy (46 percent).
- Ensure network-level security (40 percent).
- Security endpoints for each IoT device (39 percent).
- Track and manage any IoT device (36 percent).
- Ensure all existing software is updated (35 percent).
- Update firmware and other software on devices (34 percent).
- Perform hardware/software testing and device evaluation (34 percent).
- Update encryption protocols (34 percent).
- Conduct comprehensive training programs for employees involved in the IoT environment (33 percent).
- Provision devices securely (33 percent).
- Switch from device-level control to identity-level control (29 percent).
- Change default passwords and credentials (29 percent).
To address these concerns, Microsoft is pleased to announce today the general availability of the extension of our Secured-core platform to IoT devices, along with new Edge Secured-core certified devices from our partners Aaeon, Asus, Lenovo and Intel in the Azure certified device catalog. We’ve added this new device certification to our Edge Secured core platform to make it easier for customers to select IoT devices that meet this advanced security designation.
as described in Zero Trust Paper from MicrosoftAn important investment, especially around new devices, is choosing devices with built-in security. Devices built with Azure Bol take advantage of industry-leading built-in security, serviced by Microsoft.
Announcements for Edge Secured core
Edge Secured core is a certification in the Azure Certified Device program for IoT devices. Devices that achieve this certification provide businesses with confidence that the devices they purchase provide the following security benefits:
- Hardware-based device identity: In addition to the various security properties that a hardware-based device identity provides, it also enables the use of the hardware-assisted identity when connecting to Azure IoT Hub and using the IoT Hub device provisioning service.
- Able to enforce system integrity: Use a combination of processor, firmware, and OS support to measure system integrity to ensure the device works properly with Microsoft Azure Attestation.
- Stays up-to-date and manages remotely: Receives the necessary device updates for a minimum period of 60 months from the date of submission.
- Provides data-at-rest encryption: The device provides built-in support for data-at-rest encryption using up-to-date protocols and algorithms.
- Provides data-in-transit encryption: IoT devices such as gateways, which are often used to connect downstream devices to the cloud, need inherent support to protect data in transit. Edge Secured-core devices support up-to-date protocols and algorithms used for data-in-transit encryption.
- Built-in security agent and hardening: Edge Secured-core devices are hardened to reduce the attack surface and include a built-in security agent to help protect against threats.
In addition to addressing many of the top concerns we’ve heard from customers about the security of their IoT devices, our data shows that Secured-core PCs are 60 percent more resistant to malware than PCs that do not meet the Secured-core specifications. We took the lessons of Secured-core PCs to define the requirements for Edge Secured-core devices.
Today we are proud to announce the availability of: Windows IoT Edge Secured core devices available in the Azure Certified Device Catalog†
In addition, Microsoft invests with semiconductor partners to build IoT-connected industry-certified MCU Security Platforms that conform to Microsoft security standards.
Get started with Microsoft security
For more information about Microsoft security solutions, visit our website† Bookmark the Security blog to stay informed about our expert coverage on security issues. Also follow us on @MSFTSecurity for the latest cybersecurity news and updates.