Follow us on Twitter
Follow us on FacebookInternet of Things reveals how much code is copied
@ 2015/12/01Insecurity experts at SEC Consult have been looking under the bonnet of Internet of Things code and found that they are being made insecure because too much code is being copied.
SEC Consult found that SSH cryptographic keys and HTTPS secure server certificates from 4,000 different devices offered by 70 different manufacturers and found a security nightmare. Credentials are often hard-coded and re-used among many different devices from sometimes even different companies.
In fact, of 4,000 devices, SEC found only 580 unique keys. This basically means that 4,000 rooms will have 580 different locks.
SEC Consult found that SSH cryptographic keys and HTTPS secure server certificates from 4,000 different devices offered by 70 different manufacturers and found a security nightmare. Credentials are often hard-coded and re-used among many different devices from sometimes even different companies.
In fact, of 4,000 devices, SEC found only 580 unique keys. This basically means that 4,000 rooms will have 580 different locks.
