Lets hop in our Delorean and head back in time where systems were developed without considering security. The current state of embedded device security is reminiscent to PC computing 20 years ago. It may not be 1985 but a 1995 mentality on security for devices connected to the Internet is scary (note, talk given in 2015).
“It’s not unlike what happened in the mid-1990s, when the insecurity of personal computers was reaching crisis levels. But this time the problem is much worse, because the world is different: All of these devices are connected to the Internet.” – Bruce Schneier
This talk delves into some embedded device security where a 0-day vulnerability is discussed as well as default credentials in embedded devices. This talk was given in 2015 at the very minute Marty jumps to the future in Back to the Future II. This discussion is even more relevant today.
Resources
https://www.schneier.com/blog/archives/2014/01/security_risks_9.html
https://youtu.be/qMylpEhqvU8
https://www.scmagazine.com/d-link-dir-130-and-dir-330-routers-vulnerable/article/644553/
One thought to “Back to the Future with Embedded Device Security”