March 12-14, 2018 - Portland, OR
Click Here For Information & Registration
Back To Schedule
Monday, March 12 • 11:50am - 12:40pm
The S in IoT is for Security - Andrew Watts & Shawn Corey, T-Mobile

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
After several high-profile attacks initiated from IoT devices have impacted the internet ecosystem, the security of internet connected devices is gaining more scrutiny. Security flaws are in IoT devices are common and, as a community, we need to address this emerging threat to our industry. The talk will focus on how to accurately assess the security controls of IoT designs end to end. Leveraging OWASP threat modeling, we will outline guiding principles IoT device creators should consider in their designs. We will also identify methods that can be leveraged to enhance the security and reliability of IoT devices. This includes prioritizing security controls, device hardening, firmware signing, software hardening, transport security, backend systems, secure data storage, secure firmware updates and life cycle management considerations.

avatar for Shawn Corey

Shawn Corey

Principle Security Engineer, T-Mobile
Shawn is an engineer and tinkerer with almost 20 years of experience in the software, security and hardware arenas. Starting as a Linux systems admin in the late 90s and moving on to work at Microsoft (but don't hold it against him :) from 2000 until 2014 before moving to T-Mobile... Read More →

Andrew Watts

Principle Security Engineer, T-Mobile
Andrew Watts has developed and tested embedded communications systems and devices for over 15 years and securing embedded devices for over 10. He has spent his career and spare time reverse engineering embedded hardware and software to identify security vulnerabilities, primarily... Read More →

Monday March 12, 2018 11:50am - 12:40pm PDT
Galleria South