Many consumer devices on the internet of things are sitting behind a gateway like router so they're not directly addressable from the public internet. Following precautions are been recommended:
- Disable Telnet access to the device.
- Change the device’s factory default credentials.
- Use network behavioral analysis to detect anomalies in traffic and combine with automatic signature generation for protection.
- Set intrusion protection systems to block Telnet default credentials or reset telnet connections.
- Use a signature to detect the provided command sequences.
- Control system devices should not directly face the Internet; so minimize network exposure for all control system devices.
- Locate control system networks and devices behind firewalls and isolate them from the business network.
- Remove, disable, or rename any default system accounts wherever possible.
- Monitor the creation of administrator level accounts by third-party vendors.
- If remote access is required, employ secure methods, such as Virtual Private Networks (VPNs), recognizing that VPN is only as secure as the connected devices.
- Implement policies requiring the use of strong passwords.
- Perform proper impact analysis and risk assessment prior to taking defensive measures.
No comments:
Post a Comment