Its Shared Responsibility Model aims to provide customers, partners and others in the industry with a framework for cyber-security collaboration
PTC has unveiled a Coordinated Vulnerability Disclosure (CVD) programme to help increase cyber-security. The new programme is designed to support the reporting and remediation of security vulnerabilities that could potentially affect the environments in which PTC products operate, including industrial and safety-critical industries.
CVD is part of PTC’s Shared Responsibility Model, which defines a framework for cyber-security collaboration with customers, partners, and others within the industry. At its recent LiveWorx industry event, PTC’s CEO Jim Heppelmann invited partners and customers to work together with PTC to improve security by taking responsibility – and embracing speed – for the security responsibilities under their control.
The company is seeking contributions from external researchers who detect vulnerabilities in PTC’s ThingWorx-branded products and invites both private individuals and organisations to report security vulnerabilities following a well-defined process, which aligns with the National Telecommunications and Information Administration (NTIA) Safety Working Group’s template. PTC said the programme ensures that researchers can count on PTC to cooperate to protect its customers and the safety/privacy of the public.
"In this new world order, cyber safety and security must become everyone’s responsibility, and we must work together to address such threats"
The IoT market is at a tipping point, with IoT spending expected to reach $1.2 trillion in 2022, according to a recent IDC guide. “As organisations continue to invest in IoT, it is equally important that efforts are made across the entire IoT ecosystem to secure these end points and environments,” said Stacy Crook, research director, IoT, IDC.
“Sophisticated software and hyper-connectivity are fuelling innovation at an unprecedented pace,” said Joshua Corman, SVP and chief security officer, PTC. “Those conditions can potentially introduce new classes of accidents and adversaries. In this new world order, cyber-safety and security must become everyone’s responsibility, and we must work together to address such threats.
“PTC’s CVD programme is one significant step toward such collaboration, inviting private individuals and organisations to identify and communicate security vulnerabilities in a way that we can quickly assess, mitigate, and take corrective action to help further secure our products and customer implementations.”
More information, including reporting guidelines, can be found at PTC CVD programme.
If you like this, you might be interested in the following:
How IoT platforms can power smart city success
This report covers the results from SmartCitiesWorld global survey carried out in February 2018, but also looks at how the Internet of Things (IoT) powers many smart city services which benefit...
Webinar Recording: IoT Platforms Power Smart city Success
Listen to Sarah Wray, Editor at SmartCitiesWorld and PTC as they talk about results from a worldwide survey on how the Internet of Things (IoT) powers many smart city services which benefit citizens.
IoT ‘vital to survival’ of telcos and system integrators
IoT platforms are seen as crucial for strategic integration across different smart city areas, according to a report by SmartCitiesWorld and PTC