Now, you know about IoT, now that you read yesterday’s blog. And, for the life of me, I don’t see why everyone’s rushing to get these devices integrated into our lives. Do we really need a smart vacuum cleaner? An IoT toaster?
I can almost buy (pun intended) an IoT refrigerator, but I really already know what I have in my fridge and my pantry. So, I don’t need help with my shopping list. But, I know many of my kids and friends are “less on top” of things and would like to rely on their fridge telling them what they need to buy.
But, I doubt they think about having everyone in the world knowing what’s in their fridge. (Do you really want the Feds to know where you store your illegal drugs? Because you can bet that someone is going to cross that threshold soon. [No, I never took or used any drugs in my life, but I know my friends have stashed stuff in their fridge/freezers.])
And, as I mentioned yesterday, these IoT devices are not very secure. OK. That’s an understatement. Couple that with the fact that consumers have no clue what security the device has- or what security such devices should have.
And, it’s not just us- it’s the vendors! Too many of them (business executives) think security is a problem for the IT technical department. And, ‘they’ can solve it. Except the execs don’t like being told that they need to double their budget and need more development time to make a secure IoT device. Because they have a rushed introduction schedule to meet and could care less about permanently encoded passwords, easily hacked web interfaces- and truly understand how such failures will create a negative customer experience.
Which means a lot of the security issues are left up to us. We really need to start considering an IoT purchase with some simple queries. How does this device really work? Not necessarily for every IoT device yet- but we do need to start with the stuff we’ll be buying that will stay in our house for years- like that fridge I just mentioned. Which means that the security- and the computing systems- that are integral to the device need to be updated from time to time. So, we don’t want to choose a fridge from a firm that might fold tomorrow. Or, from a firm that clearly has no security plan.
That last fact means we need to check out the manufacturer’s reputation on the web. How many counterfeit products have been sold? Has the vendor suffered any security break-ins?
And, what about the actual manufacturer’s site- does it have a section describing its IoT (software) update procedure and downloads? If not, then we probably want to choose our unit from a different vendor.
And, even if the firm’s site were to includes updates, how about our ability to change the username and password for the device? So, only we can control who/what/when/where our data becomes available to the world. (You may have to check out YouTube to find out how to change these “features”. And, if we find that information on YouTube, we REALLY need to change the username and password fast- because hackers already have that same information! And, they’ll be locking US out of OUR devices.)
Another big consideration. What happens if we disengage the IoT because we are going on vacation or don’t really need all that connectivity for a while. (Obviously, a disconnected device- if it’s REALLY disconnected and can’t be turned back on by the vendor remotely- is a lot more secure than a connected unit. After all, isn’t a non-IoT microwave still able to make my popcorn? [That’s the only reason I use my microwave.])
And, if we are planning to use the IoT devices, it’s also time for us to upgrade our routers. Our home network needs a firewall to keep intruders at bay. And, it’s way past time to still have admin/admin as the username and password to access our home router(s)!
The same concepts apply to our smartphones. Because there’s probably an app that we need to download on the phone to enable us to control these devices.
But– do really want the vendor to be able to download all our contacts? To monitor our location (all the time)? To record audio when it is so inclined? And, how long does this data stay in their possession- and to whom do they sell it (or not)? Does anyone encrypt the data that they collect? (I see blackmail in our near future- don’t you?)
(As an example. I have an app that is pretty cool- it lets me go to the movies every day for free. But, it requires location services to be active. Something I’ve refused to do for years. So, I made my own app that turns on location services for 60 seconds, lets me get my movie access and then disengages location services. I’m sure the vendor is curious why I only show up in the lobby of Potomac Yards or Shirlington cinema. Just sayin’.)
Here’s a real kicker. Say you bought a device and liked the terms. But, now, a few months later, the vendor changes the terms and conditions for the device(s). What happens if we don’t agree to these (onerous?) conditions? Does the unit stop working. (This is not hypothetical. Sonos, the sound system supplier did just this a while ago.)
I’m guessing you are reconsidering your decision for that internet-enabled washing machine by now.
We’ll discuss some other repercussions of this drive to appify our lives tomorrow.
OK, Roy – a few things…
1. How did you know my router username and password? You are psychic!
2. Not only is it TOO MUCH WORK to really check out a manufacturer and their security reputation, most people may not even understand what it all means if they do investigate it!
3. Changing ToS reminds me of Pensions. People signed up for them years ago. And suddenly, a new administration comes in and decides to change the rules on it. Many times, the person is out of luck! There is no way they can NOT agree to the new terms, even if they are not as favorable as in the past. Darn you Sonos! How am I going to listen to my music now??
4. I am curious about the free movie app! Do tell!
Thanks for the great content as usual!
Paul Taubman recently posted..5 More Things Your Website Needs to Attract More Clients – Part 8
I get that first answer from every one of our new IT service clients. (How DID you access my router?)
Yes, it’s work. But, when I was younger (certainly NOT yesterday), I never bought any item of cost (that used to be $ 100, not it’s probably $ 400) for which I did not examine the recommendations of the Consumers Union. I stopped that reliance when I realized I needed better information- and that they had an inherent bias (which meant I had to get it myself). But, if we are giving someone access to our lives, I believe that effort is mandatory. (Again, I don’t use location services on my phone- among other “must-haves”)
It’s why I had such high hopes for the (now emasculated) Consumer Financial Protection Board. It would stop such practices.
I will provide the app offline to you.
Great Information that for now is not in a ” location near me “. I believe that more than half the houses down here do not have a microwave, frige or smart stove. They do all have phones in their pockets which they seem to only use when they are driving.
We were on a First class bus going through very steep hill country when I looked over to see the bus drive checking his cell phone. Aaahhh!
So far my computer is the only thing I have a major concern about and that is because all the high school kids have a app on their phones that allows them to steal your router password, so I must change mine often. If I fail to do so, there will be half a doz. young people sitting on the sidewalk just outside of our property using my internet service, slowing me down.
Or, you could choose to employ a 20 character pass-code (which could make sense in a language they know not- i.e., neither English nor Spanish) and NOT broadcast the SID of the router. That last fact means they can’t find you. It also means you have to remember the SID, so you cn connect to it (by typing in its name) because it won’t be broadcasting to you, either.
You created your own app? That’s amazing! And yes, I would definitely reconsider now, had I ever thought of it in the first place. Now, I needn’t bother! Thanks for the warning.
Making an app is not that hard- at least not if one has been programming computers since the early 1970s. (I admit that I was forced to teach a class in Basic way, way back. The problem- I knew nothing of Basic. Instead, I was a lesson or two ahead of my class each time. Which made it among the most nerve-wracking courses I ever taught.
Sometimes too much technology is just too much. This sounds like so much work, checking, making sure you don’t get hacked etc. Plus it’s just easier to write things and do groceries than worry about dead batteries and such. I sort of feel the same way about cars with too many doodads..more things to break down and be charged that dreaded inspection fee :-).
I can see a value in technology- after all, I AM a techie. But, the technology has to be appropriately employed and with safeguards. Too many of the vendors are just rushing to offer “more” without knowing why or what it means to offer “more”.
I love my puter…and my smartphone. But that is probably about as smart as I will allow things. A car that parks itself…not no, but hell, no. 🙂
I think a car parking itself is interesting- but that also means someone can control it to go somewhere else, too!
Call me old fashioned but I prefer the good old “normal” washers! Great article though.
Martha recently posted..January Ultimate Blog Challenge Done
I don’t see the value in having the ability to turn my washer on or off remotely- or even to get a text when the load is done!
I’m with you, Martha. I prefer to call myself radically old-fashioned :-).
In December of 2016, I was looking at refrigerators because I was in a department store and didn’t have much else to do. There were some refrigerators that were connected to the internet. They were basically like really big and really overpriced tablets. They were also really expensive so I didn’t really form any opinions but I will never be able to afford THIS!
I think you mean to lose control of your information- and, if that is what you mean, I am totally in concert with that, Alice.
for now, only the smart phone for us :)and that is more than enough for me
LadyInRead recently posted..D is for The Diary of a Young Girl by Anne Frank
And, your smartphone still needs to be locked down, Vidya!
We had a family meeting the other day – and of course, I realized afterwards that Alexa was there in the corner, when we were discussing financial information and the like. That was bad enough (and I really don’t use my Dot all that much anyway) , but I had already decided I really didn’t need an Amazon dash button, an internet enabled refrigerator, or anything similar. But my generation is the senior generation and we’ll be obsolete soon. , along with the COBOL and FORTRAN I took college classes in too many years ago. (and no, I am not a techie).
Alana recently posted..Winter Wednesdays -Storm Watch
Ah, yes. The ubiquitous eavesdropper. The question is who ELSE attended that family meeting, Alana.