ao link

Webinars

Panel Debate: Paving the way towards sustainability with proactive strategies & intelligent transport system

Panel Debate: Paving the way towards sustainability with proactive strategies & intelligent transport system

Panel Debate (OnDemand): Technologies and policies to accelerate the decarbonisation of the built environment

Panel Debate (OnDemand): Technologies and policies to accelerate the decarbonisation of the built environment

Special Reports

Cities Climate Action Summit 2024: going green in the built environment 

Cities Climate Action Summit 2024: going green in the built environment 

Green, active and integrated: mobility in focus at Cities Climate Action Summit

Green, active and integrated: mobility in focus at Cities Climate Action Summit

Smart Cities Reports

SmartCitiesWorld City Profile –Shenzhen

SmartCitiesWorld City Profile –Shenzhen

SmartCitiesWorld City Profile – Sydney

SmartCitiesWorld City Profile – Sydney

Podcasts

Urban Exchange Podcast Episode 19 - The intersection between risk, resilience and insurance

Urban Exchange Podcast Episode 19 - The intersection between risk, resilience and insurance

Urban Exchange Podcast Episode 18 - Dr. Tavida Kamolvej, City of Bangkok - Holistic disaster resilience

Urban Exchange Podcast Episode 18 - Dr. Tavida Kamolvej, City of Bangkok - Holistic disaster resilience

Opinions

Cities Climate Action Summit 2024 – meet the speaker: Jonathan Carr-West, Local Government Information Unit

Cities Climate Action Summit 2024 – meet the speaker: Jonathan Carr-West, Local Government Information Unit

Cities Climate Action Summit 2024 – meet the speaker: Mark-Emil Talivere, City of Tallinn

Cities Climate Action Summit 2024 – meet the speaker: Mark-Emil Talivere, City of Tallinn

Smart cities and cybersecurity: Is it wise to get smarter?

As the popularity and inevitability of smart cities expand, so too does a cybercriminal’s opportunistic attack surface. Keiron Shepherd, F5 Networks, evaluates the risks.

LinkedInTwitterFacebook

We are in an era of intelligent and urgent urban innovation. Our homes are connected, our streets are thriving labyrinths of interconnectivity, and our businesses are a hive of data streaming and surveillance.

 

Communities are now emerging as sophisticated centres of technical excellence, prompting micro and macro revolutions in virtually every aspect of our lives. Across the world, digital ‘smartness’ is either being activated, enhanced, evangelised or considered a transformative option.

 

Is this trend a good one?

 

As the popularity and inevitability of smart cities expand, so too does a cybercriminal’s opportunistic attack surface. Are we now putting the public’s data and infrastructure at an unprecedented risk? Are we the authors of a 21st century tale of two cities where one is hyperconnected and vulnerable and the other overly cautious and developmentally moribund? More importantly, what the Dickens can we do to get the balance right?

 

The race to evolve

 

Urban business-as-usual will not work. Population growth and dwindling resources are driving mass migrations to the worlds’ cities, and present infrastructures are incapable of pre-empting and adapting to the consequences – much less achieving optimal, equitable living environments in the long term.

 

One of the smart cities’ most compelling promises is the capacity to address traditional problems with data-driven incision, mining insights from countless sensors, interactions and behaviours.

 

There are numerous associated economic benefits to this technological shift. According to a recent whitepaper by ABI Research, worldwide smart city technologies could unlock more than $20 trillion in additional economic benefits in the next decade.

 

Europe has big ambitions to take advantage. 2017 European Parliament research claims that the region already has 240 cities with populations of over 100,000 that have some smart city features in place (i.e. technology to improve energy use, transport systems or other infrastructure). By the end of 2019, the Smart Cities and Communities European Innovation Partnership predicts there will be 300 smart cities in play.

 

Managing risk

 

A future of symbiotically connected communities, services and processes is undeniably an admirable vision. However, with all the pressures to move at pace, there are growing concerns that cybersecurity risks are inadequately anticipated or managed.

 

A hacker commandeering a smart parking meter may be a nuisance but a cybercriminal infiltrating a nuclear plant could cause cataclysmic repercussions.

 

Unfortunately, many devices, systems and technologies powering today’s smart city dream are still being developed without appropriate security architectures or threat mitigation solutions. This short-sightedness can cause a raft of vulnerabilities leading to serious issues threatening livelihoods and, in some cases, life itself.

 

A hacker commandeering a smart parking meter may be a nuisance but a cybercriminal infiltrating a nuclear plant could cause cataclysmic repercussions.

 

Lessons learned

 

At this year’s Black Hat conference, IBM’s X-Force Red Team examined existing municipality technologies to determine the possibility of “supervillain” style attacks.

 

Researchers focused on four common devices and found 17 vulnerabilities, of which nine were deemed critical. One European country was using a vulnerable device to detect radiation. In the US, it was a system monitoring traffic control. The vulnerabilities in question on both occasions were not complex – the vendors simply failed to implement basic security measures.

 

To spook us even more, IBM’s researchers went on to simulate an attack on devices that monitor water levels in dams. In less than a minute, they were able to flood surrounding areas. The simulated hack was on a commonly used piece of smart city tech and was easy to hijack causing widespread mayhem.

 

Architecting the future

 

The UN predicts that two-thirds of the world’s population will reside in densely packed megacities by 2030. This means a mass of technology coming online fast, especially with the advent of 5G, and this could potentially fuel boundless IoT fantasies and realities.

 

Business leaders, tech disruptors, developers, service providers, and planners need to ramp up collaboration with industry regulators and ecosystem partners urgently to ensure appropriate rollouts of secure, seamless networks and devices.

 

Business leaders, tech disruptors, developers, service providers, and planners need to ramp up collaboration with industry regulators and ecosystem partners urgently.

 

The tech industry at large should also do more to ensure the principle of ‘security-by-design’ is embraced throughout the entire infrastructure development ecosystem.

 

Furthermore, end-to-end security has to improve, including tighter authentication of users as well as enforced policies for all communication paths. At the same time, service providers have to enhance their privacy-focused data encryption capabilities with the latest advanced software.

 

In summary, we need governments, city planners and business leaders to start heeding the warnings signs of growing cyber-crime and include cybersecurity experts at all stages, from design and construction to infrastructural management and beyond. We all want smarter cities, but we need to get wiser at navigating the threat landscape to stay streets ahead of cybercriminals.

 

You might also like:

 

LinkedInTwitterFacebook
Add New Comment
You must be a member if you wish to add a comment - why not join for free - it takes just 60 seconds!

Latest City Profile

SmartCitiesWorld City Profile – Dallas

SmartCitiesWorld City Profile – Dallas

SmartCitiesWorld Newsletters (Daily/Weekly)

Our editorial newsletter pulls together our latest news items into one email, direct to your inbox. We also feature our latest city interviews, Special Reports and Guest Opinions.