When focussing on IoT and other connected devices and taking a risk-perspective to those, a methodology to do high-level quality risk classification is to have a multi-layered approach and do such risk classification per spectrum, starting with the risk classification of the connectors and connectivity of the IoT device itself, thereafter with the risk classification of functionalities. Up to 17 spectra have already been identified.
AIOTI WG Standardisation and WG Policy & Strategy together with certain relevant external organisations, has been developing a Device-Centric IoT Security Risk Spectra Mapping Tool. It provides guidance on the multi-layered and holistic risk classification of IoT Devices by means of said IoT security risk spectra methodology, risk level definitions and related IoT security risk mapping.
The document that will be presented could be found here, and the mapping tool here.
AIOTI IoT Security Taskforce Leaders, Arthur van der Wees and Jacques Kruse Brandao will explain how it was developed, and how it works in the webinar that will be held on 14 July starting at 15.00h.
The webinar is free to join by clicking here.