IoT-based attacks have become a reality. A recent survey by the CEB (now Gartner) found that nearly 20% of organizations have discovered at least one IoT-based attack in the past three years. To guard against these threats, Gartner forecasts 2018 The global IoT security spending will reach 1.5 billion U.S. dollars, an increase of 28% over the US$1.2 billion in 2017.
Gartner Research Director Ruggero Contu said: "In the IoT initiative, organizations often have no control over the source and nature of the software and hardware used by smart connected devices. 'We look forward to seeing improvements and asset management, software and hardware security assessments and penetration Demand for the tools and services tested. In addition, organizations will focus on strengthening understanding of the impact of external network connectivity. These factors will be the main driver of spending growth during the forecast period, and projected IoT security spending will reach US$3.1 billion by 2021. (See Table 1).
Despite steady growth in global spending year-on-year, Gartner predicts that by 2020, the greatest inhibitory factor in IoT security enhancement will come from the lack of prioritization and implementation of IoT initiative security best practices and tools. This will hinder 80% of the IoT security potential expenditure.
Mr. Contu explained: 'Although IoT security has always been a primary concern, most IoT security implementations have been planned, deployed and operated at the business unit level, and cooperated with a number of IT departments to ensure that the full impact of the device is ensured. In the IT part, however, the core systems based on device providers and partner alliances or devices are being enhanced or replaced, coordination through common architecture or consistent security policies is almost non-existent, and the supplier's products and service options are basically Still temporary. '
Although basic safety models have been revealed in many vertical projects, they have not been incorporated into strategies or design templates to allow consistent reuse. Therefore, the technical standards for specific IoT security components in the industry are only just beginning to be established. The IT Security Standards Agency, Consortium and Supplier Alliance are resolved.
The lack of 'design security' is due to the lack of specific and rigorous regulations. Looking ahead, Gartner expects this trend to change, especially in sectors such as health care and automotive that are strictly regulated. By 2021, Gartner predicts regulatory compliance. It will become the main influencing factor for IoT security applications. As the IoT penetrates into the industrial world, it must follow the industry that aims to improve the key infrastructure protection (CIP) regulations and guidelines, and must pay more attention to safety.
Mr. Contu said: 'By deploying sensors, robots and remote connectivity and other smart connected devices (usually based on cloud services), interest in improving automation is growing. Innovations in Industrial Internet of Things (IIoT) or Industry 4.0 have affected deployment operations Technology (OT) security in the industrial sector, such as energy, oil and gas, transportation and manufacturing.