AIOTI WG Standardisation TF IoT Security held on 14 July a webinar on IoT Risk Classification Spectra.
When focussing on IoT and other connected devices and taking a risk-perspective to those, a methodology to do high-level quality risk classification is to have a multi-layered approach and do such risk classification per spectrum, starting with the risk classification of the connectors and connectivity of the IoT device itself, thereafter with the risk classification of functionalities, et cetera. Up to 17 spectra have already been identified.
AIOTI WG Standardisation and WG Policy & Strategy together with certain relevant external organisations, has been developing a Device-Centric IoT Security Risk Spectra Mapping Tool. It provides guidance on the multi-layered and holistic risk classification of IoT Devices by means of said IoT security risk spectra methodology, risk level definitions and related IoT security risk mapping.
In this webinar, AIOTI IoT Security Taskforce Leaders, Arthur van der Wees and Jacques Kruse Brandao will explain how it was developed, and how it works.
The document could be found here, and the mapping tool here.
The presentation from the webinar can be downloaded here and the recording of the webinar here.