CP
cyberpings
VulnerabilitiesHIGH

Zero Trust Fails in IoT and OT Security Models

CSCSO Online
zero trustIoTOTsecurity modelCISA
🎯

Basically, zero trust security doesn't work well with smart devices and operational technology.

Quick Summary

Zero trust security is struggling in IoT and OT environments. This impacts anyone using smart devices or industrial systems. The risk? Vulnerabilities can be hidden, leading to serious breaches. Experts are now pushing for new models to better protect these systems.

What Happened

In the world of cybersecurity, the zero trust model has been hailed as a game-changer, promot?ing the idea of 'never trust, always verify.' However, when it comes to IoT? (Internet of Things) and OT? (Operational Technology) environments, this approach is stumbling. Despite its success in traditional IT settings, applying zero trust? principles to these specialized environments has led to inconsistent results and unexpected security incidents.

The core issue lies in the nature of IoT? and OT? systems. These environments often rely on inherited trust and shared control paths that fall outside the zero trust? framework. This means that while organizations may think they have robust security measures in place, they are often overlooking critical vulnerabilities. The zero trust? model assumes that trust can be explicitly managed and continuously enforced, which is a flawed assumption in these contexts.

Why Should You Care

You might be wondering why this matters to you. If you use smart devices at home or your workplace relies on industrial systems, then you're directly impacted. Imagine your smart thermostat communicating with your security camera without your knowledge. If one device gets compromised, it could pot?entially expose your entire network, leading to data breaches or operational failures.

The key takeaway here is that zero trust?, while valuable, cannot? be the sole strategy for securing IoT? and OT? environments. These systems require a different approach that acknowledges their unique characteristics and vulnerabilities. Understanding these differences can help you better prot?ect your personal and professional digital spaces.

What's Being Done

Experts are now calling for a reevaluation of security models in IoT? and OT? environments. They suggest moving away from traditional topological reasoning and adopting new frameworks that account for functional relationships? and trust dynamics. Here are some immediate steps you can take:

  • Increase visibility: Ensure that all devices are monitored and managed effectively.
  • Document trust relationships: Regularly revisit and update trust assumptions among devices and controllers.
  • Adopt new models: Consider frameworks like the Unified Linkage Model (ULM)? that focus on operational dependencies rather than just network topology?.

As organizations work to address these challenges, experts will be watching how security strategies evolve to better prot?ect against the unique risks posed by IoT? and OT? systems.

💡 Tap dotted terms for explanations

🔒 Pro insight: The failure of zero trust in IoT/OT highlights the need for adaptive security frameworks that consider operational dependencies over traditional network topologies.

Original article from

CSO Online

Read Full Article

Share

Related Pings

HIGHVulnerabilities

Windows 11 Bug Locks Users Out of System Drive C

A critical bug in Windows 11 is locking users out of their system drives. Affected Samsung devices are unable to access essential applications. Microsoft is investigating the issue and advises users to wait for a patch.

Cyber Security News·
HIGHVulnerabilities

Critical Coruna Flaw Fixed for Older iPhones and iPads

Apple has issued critical updates for older iPhones and iPads to fix the Coruna flaw. This vulnerability could expose sensitive data, making it essential for users to update their devices. Protect yourself by ensuring your device is up to date.

SC Media·
HIGHVulnerabilities

Cisco Catalyst SD-WAN Vulnerability Under Active Exploitation

CISA warns of a critical vulnerability in Cisco Catalyst SD-WAN systems. Federal agencies must act quickly to secure their networks. This flaw poses serious risks to sensitive data and operations.

SC Media·
MEDIUMVulnerabilities

Windows Autopatch to Default to Hotpatch Security Updates

Microsoft will soon enable hotpatch security updates by default for Windows Autopatch users. This change affects devices running Windows 11 version 24H2 or later. It aims to speed up security updates without requiring reboots, enhancing user experience and security.

SC Media·
HIGHVulnerabilities

Google Chrome Flaws Added to CISA's Exploited Vulnerabilities List

CISA has added two high-severity Google Chrome vulnerabilities to its Known Exploited Vulnerabilities catalog. Millions of users are at risk, as these flaws have already been exploited in the wild. Immediate updates and awareness are crucial to protect against potential attacks.

Security Affairs·
HIGHVulnerabilities

Old Industrial Controllers Spark Bidding War on eBay

A bidding war on eBay for 30-year-old industrial controllers raises cybersecurity concerns. These outdated systems pose risks to critical infrastructure. Immediate action is needed to secure them.

Dark Reading·