Libelium: flexibility a key strategy for IoT startups

Posted on 8th December 2016 in agriculture, cities, collaboration, data, energy, environmental, government, home automation, Internet of Things, logistics, m-health, M2M, maintenance, manufacturing, mobile, open data, sensors, smart cities, smart home, transportation

I’ve been fixated recently on venerable manufacturing firms such as 169-yr. old Siemens making the IoT switch.  Time to switch focus, and look at one of my fav pure-play IoT firms, Libelium.  I think Libelium proves that smart IoT firms must, above all, remain nimble and flexible,  by three interdependent strategies:

  • avoiding picking winners among communications protocols and other standards.
  • avoiding over-specialization.
  • partnering instead of going it alone.
Libelium CEO Alicia Asin

Libelium CEO Alicia Asin

If you aren’t familiar with Libelium, it’s a Spanish company that recently turned 10 (my, how time flies!) in a category littered with failures that had interesting concepts but didn’t survive. Bright, young, CEO Alicia Asin, one of my favorite IoT thought leaders (and do-ers!) was recently named best manager of the year in the Aragón region in Spain.  I sat down with her for a wide-ranging discussion when she recently visited the Hub of the Universe.

I’ve loved the company since its inception, particularly because it is active in so many sectors of the IoT, including logistics, industrial control, smart meters, home automation and a couple of my most favorite, agriculture (I have a weak spot for anything that combines “IoT” AND “precision”!) and smart cities.  I asked Asin why the company hadn’t picked one of those verticals as its sole focus: “it was too risky to choose one market. That’s still the same: the IoT is still so fragmented in various verticals.”

The best illustration of the company’s strategy in action is its Waspmote sensor platform, which it calls the “most complete Internet of Things platform in the market with worldwide certifications.” It can monitor up to 120 sensors to cover hundreds of IoT applications in the wide range of markets Libelium serves with this diversified strategy, ranging from the environment to “smart” parking.  The new versions of their sensors include actuators, to not simply report data, but also allow M2M control of devices such as irrigation valves, thermostats, illumination systems, motors and PLC’s. Equally important, because of the potentially high cost of having to replace the sensors, the new ones use extremely little power, so they can last        .

Equally important as the company’s refusal to limit itself to a single vertical market is its commitment to open systems and multiple communications protocols, including LoRaWAN, SIGFOX, ZigBee and 4G — a total of 16 radio technologies. It also provides both open source SDK and APIs.

Why?  As Asin told me:

 

“There is not going to be a standard. This (competiting standards and technology) is the new normal.

“I talk to some cities that want to become involved in smart cities, and they say we want to start working on this but we want to use the protocol that will be the winner.

“No one knows what will be the winner.

“We use things that are resilient. We install all the agents — if you aren’t happy with one, you just open the interface and change it. You don’t have to uninstall anything. What if one of these companies increases their prices to heaven, or you are not happy with the coverage, or the company disappears? We allow you to have all your options open.

“The problem is that this (not picking a standard) is a new message, and people don’t like to listen.  This is how we interpret the future.”

Libelium makes 110 different plug and play sensors (or as they call them, “Plug and Sense,” to detect a wide range of data from sources including gases, events, parking, energy use, agriculture, and water.  They claim the lowest power consumption in the industry, leading to longer life and lower maintenance and operating costs.

Finally, the company doesn’t try to do everything itself: Libelium has a large and growing partner network (or ecosystem, as it calls it — music to the ears of someone who believes in looking to nature for profitable business inspiration). Carrying the collaboration theme even farther, they’ve created an “IoT Marketplace,” where pre-assembled device combinations from Libelium and partners can be purchased to meet the specific needs of niches such as e-health,  vineyards, water quality, smart factories, and smart parking.  As the company says, “the lack of integrated solutions from hardware to application level is a barrier for fast adoption,” and the kits take away that barrier.

I can’t stress it enough: for IoT startups that aren’t totally focused on a single niche (a high-stakes strategy), Libelium offers a great model because of its flexibility, agnostic view of standards, diversification among a variety of niches, and eagerness to collaborate with other vendors.

BTW: Asin is particularly proud of the company’s newest offering, My Signals,which debuted in October and has already won several awards.  She told me that they hope the device will allow delivering Tier 1 medical care to billions of underserved people worldwide who live in rural areas with little access to hospitals.  It combines 15 different sensors measuring the most important body parameters that would ordinarily be measured in a hospital, including ECG, glucose, airflow, pulse, oxygen in

It combines 15 different sensors measuring the most important body parameters that would ordinarily be measured in a hospital, including ECG, glucose, airflow, pulse, blood oxygen, and blood pressure. The data is encrypted and sent to the Libelium Cloud in real-time to be visualized on the user’s private account.

It fits in a small suitcase and costs less than 1/100th the amount of a traditional Emergency Observation Unit.

The kit was created to make it possible for m-health developers to create prototypes cheaply and quickly.

comments: Comments Off on Libelium: flexibility a key strategy for IoT startups tags: , , , , , , ,

When Philips’s Hue Bulbs Are Attacked, IoT Security Becomes Even Bigger Issue

Posted on 22nd November 2016 in automotive, cities, data, defense, government, home automation, Homeland Security, Internet of Things, M2M, open data, privacy, security, smart cities, US government

OK, what will it take to make security (and privacy) job #1 for the IoT industry?

The recent Mirai DDoS attack should have been enough to get IoT device companies to increase their security and privacy efforts.

Now we hear that the Hue bulbs from Philips, a global electronics and IoT leader that DOES emphasize security and doesn’t cut corners, have been the focus of a potentially devastating attack (um, just wonderin’: how does triggering mass epileptic seizures through your light bulbs grab you?).

Since it’s abundantly clear that the US president-elect would rather cut regulations than add needed ones (just announcing that, for every new regulation, two must be cut), the burden of improving IoT security will lie squarely on the shoulders of the industry itself. BTW:kudos in parting to outgoing FTC Chair Edith Ramirez, who has made intelligent, workable IoT regulations in collaboration with self-help efforts by the industry a priority. Will we be up to the security challenge, or, as I’ve warned before, will security and privacy lapses totally undermine the IoT in its adolescence by losing the public and corporate confidence and trust that is so crucial in this particular industry?

Count me among the dubious.

Here’s what happened in this truly scary episode, which, for the first time, presages making the focus of an IoT hack an entire city, by exploiting what might otherwise be a smart city/smart grid virtue: a large installed base of smart bulbs, all within communication distance of each other. The weapons? An off-the-shelf drone and an USB stick (the same team found that a car will also do nicely as an attack vector). Fortunately, the perpetrators in this case were a group of white-hat hackers from the Weizmann Institute of Science in Israel and Dalhousie University in Canada, who reported it to Philips so they could implement additional protections, which the company did.

Here’s what they wrote about their plan of attack:

“In this paper we describe a new type of threat in which adjacent IoT devices will infect each other with a worm that will spread explosively over large areas in a kind of nuclear chain reaction (my emphasis), provided that the density of compatible IoT devices exceeds a certain critical mass. In particular, we developed and verified such an infection using the popular Philips Hue smart lamps as a platform.

“The worm spreads by jumping directly from one lamp to its neighbors, using only their built-in ZigBee wireless connectivity and their physical proximity. The attack can start by plugging in a single infected bulb anywhere in the city, and then catastrophically spread everywhere within minutes, enabling the attacker to turn all the city lights on or off, permanently brick them, or exploit them in a massive DDOS attack (my emphasis). To demonstrate the risks involved, we use results from percolation theory to estimate the critical mass of installed devices for a typical city such as Paris whose area is about 105 square kilometers: The chain reaction will fizzle if there are fewer than about 15,000 randomly located smart lights in the whole city, but will spread everywhere when the number exceeds this critical mass (which had almost certainly been surpassed already (my emphasis).

“To make such an attack possible, we had to find a way to remotely yank already installed lamps from their current networks, and to perform over-the-air firmware updates. We overcame the first problem by discovering and exploiting a major bug in the implementation of the Touchlink part of the ZigBee Light Link protocol, which is supposed to stop such attempts with a proximity test. To solve the second problem, we developed a new version of a side channel attack to extract the global AES-CCM key that Philips uses to encrypt and authenticate new firmware. We used only readily available equipment costing a few hundred dollars, and managed to find this key without seeing any actual updates. This demonstrates once again how difficult it is to get security right even for a large company that uses standard cryptographic techniques to protect a major product.”

Again, this wasn’t one of those fly-by-night Chinese manufacturers of low-end IoT devices, but Philips, a major, respected, and vigilant corporation.

As for the possible results? It could:

  •  jam WiFi connections
  • disturb the electric grid
  • brick devices making entire critical systems inoperable
  • and, as I mentioned before, cause mass epileptic seizures.

As for the specifics, according to TechHive, the researchers installed Hue bulbs in several offices in an office building in the Israeli city of Beer Sheva. In a nice flair for the ironic, the building housed several computer security firms and the Israeli Computer Emergency Response Team.  They attached the attack kit on the USB stick to a drone, and flew it toward the building from 350 meters away. When they got to the building they took over the bulbs and made them flash the SOS signal in Morse Code.

The researchers”were able to bypass any prohibitions against remote access of the networked light bulbs, and then install malicious firmware. At that point the researchers were able to block further wireless updates, which apparently made the infection irreversible. ‘There is no other method of reprogramming these [infected] devices without full disassemble (which is not feasible). Any old stock would also need to be recalled, as any devices with vulnerable firmware can be infected as soon as power is applied.’”

Worst of all, the attack was against Zigbee, one of the most robust and widely-used IoT protocols, an IoT favorite because Zigbee networks tend to be cheaper and simpler than WiFi or BlueTooth.

The attack points up one of the critical ambiguities about the IoT. On one hand, the fact that it allows networking of devices leads to “network effects,” where each device becomes more valuable because of the synergies with other IoT devices. On the other hand, that same networking and use of open standards means that penetrating one device can mean ultimately penetrating millions and compounding the damage.

I’m hoping against hope that when Trump’s team tries to implement cyber-warfare protections they’ll extend the scope to include the IoT because of this specific threat. If they do, they’ll realize that you can’t just say yes cyber-security and no, regulations. In the messy world of actually governing, rather than issuing categorical dictums, you sometimes have to embrace the messy world of ambiguity.  

What do you think?

 

comments: Comments Off on When Philips’s Hue Bulbs Are Attacked, IoT Security Becomes Even Bigger Issue tags: , , , , , , , ,

2nd day liveblogging, Gartner ITxpo, Barcelona

Posted on 8th November 2016 in aging, agriculture, circular company, circular economy, collaboration, communication, data, design, energy, Essential Truths, health, home automation, Internet of Things, m-health, maintenance, management, open data, paradigm shift, privacy, Quantified Self, security, services, strategy

Accelerating Digital Business Transformation With IoT Saptarshi Routh Angelo Marotta
(arrived late, mea culpa)

  • case study (didn’t mention name, but just moved headquarters to Boston. Hmmmmm).
  • you will be disrupted by IoT.
  • market fragmented now.

Toshiba: How is IoT Redefining Relationships Between Customers and Suppliers, Damien Jaume, president, Toshiba Client Solutions, Europe:

  • time of tremendous transformation
  • by end of ’17, will surpass PC, tabled & phone market combined
  • 30 billion connect  devices by 2020
  • health care IoT will be $117 billion by 2020
  • 38% of indiustry leaders disrupted by digitally-enabled competitors by 2018
  • certainty of customer-supplier relationship disruption will be greatest in manufacturing, but also every other market
    • farming: from product procurement to systems within systems. Smart, connected product will yield to integrated systems of systems.
  • not selling product, but how to feed into whole IoT ecosystem
  • security paramount on every level
  • risk to suppliers from new entrants w/ lean start-up costs.
  • transition from low engagement, low trust to high engagement, high trust.
  • Improving efficiencies
  • ELIMINATE MIDDLEMAN — NO LONGER RELEVANT
  • 4 critical success factors:
    • real-time performance pre-requisite
    • robustness — no downtime
    • scalability
    • security
  • case studies: energy & connected home, insurance & health & social care (Neil Bramley, business unit director for clients solutions
    • increase depth of engagement with customer. Tailored information
    • real-time performance is key, esp. in energy & health
    • 20 million smart homes underway in GB by 2020:
      • digitally empowering consumers
      • engaging consumers
      • Transforming relationships among all players
      • Transforming homes
      • Digital readiness
    • car insurance: real-time telematics.
      • real-time telematics data
      • fleet management: training to reduce accidents. Working  w/ Sompo Japan car insurance:
    • Birmingham NHS Trust for health (Ciaron Hoye, head of digital) :
      • move to health promotion paradigm
      • pro-actively treat patients
      • security first
      • asynchronous communications to “nudge” behavior.
      • avoiding hip fractures
      • changing relationship w/ the patient: making them stakeholders, involving in discussion, strategy
      • use game theory to change relationship

One-on-one w/ Christian Steenstrup, Gartner IoT analyst. ABSOLUTE VISIONARY — I’LL BE INTERVIEWING HIM AT LENGTH IN FUTURE:

  • industrial emphasis
  • applications more ROI driven, tangible benefits
  • case study: mining & heavy industry
    • mining in Australia, automating entire value train. Driverless. Driverless trains. Sensors. Caterpillar. Collateral benefits: 10% increase in productivity. Less payroll.  Lower maintenance. Less damage means less repairs.
    • he downplays AR in industrial setting: walking in industrial setting with lithium battery strapped to your head is dangerous.
    • big benefit: less capital expense when they build next mine. For example, building the town for the operators — so eliminate the town!
  • take existing processes & small improvements, but IoT-centric biz, eliminating people, might eliminate people. Such as a human-less warehouse. No more pumping huge amount of air underground. Huge reduction with new system.  Mine of future: smaller holes. Possibility  of under-sea mining.
  • mining has only had incremental change.
  • BHP mining’s railroad — Western Australia. No one else is involved. “Massive experiment.”
  • Sound sensing can be important in industrial maintenance.  All sorts of real-time info. 
  • Digital twins: must give complete info — 1 thing missing & it doesn’t work.
  • Future: 3rd party data brokers for equipment data.
  • Privacy rights of equipment.
  • “communism model” of info sharing — twist on Lenin.

 

Accelerating Digital Transformation with Microsoft Azure IoT Suite (Charlie Lagervik):

  • value networking approach
  • customer at center of everything: customer conversation
  • 4 imperatives:
    • engage customers
    • transform products
    • empower employees
    • optmize operations
  • their def. of IoT combines things/connectivity/data/analytics/action  Need feedback loop for change
  • they focus on B2B because of efficiency gains.
  • Problems: difficult to maintain security, time-consuming to launch, incompatible with current infrastructure, and hard to scale.
  • Azure built on cloud.
  • InternetofYourThings.com

 

Afternoon panel on “IoT of Moving Things” starts with all sorts of incredible factoids (“since Aug., Singapore residents have had access to self=driving taxis”/ “By 2030, owning a car will be an expensive self-indulgence and will no longer be legal.”

  • vehicles now have broader range of connectivity now
  • do we really want others to know where we are? — privacy again!
  • who owns the data?
  • what challenges do we need to overcome to turn data into information & valuable insight that will help network and city operators maximize efficiency & drive improvement across our transportation network?
  • think of evolution: now car will be software driven, then will become living room or office.
  • data is still just data, needs context & location gives context.
  • cities have to re-engineer streets to become intelligent streets.
  • must create trust among those who aren’t IT saavy.
  • do we need to invest in physical infrastructure, or will it all be digital?
  • case study: one car company w/ engine failures in 1 of 3 cars gave the consultants data to decide on what was the problem.
comments: Comments Off on 2nd day liveblogging, Gartner ITxpo, Barcelona tags: , , , , ,

Smart Disposables: Could This Be Birth of Internet of Everything?

Posted on 24th October 2016 in energy, health, home automation, Internet of Things, m-health, M2M, marketing, mobile, paradigm shift, Quantified Self, seniors, sensors, smart cities, smart home, SmartAging

Could EVERYTHING be “smart?” It may be happening sooner we thought, and with implications that are hard to fathom today.

That’s the potential with new technology pioneered by Shyam Gollakota, an assistant professor at the University of Washington.  For the first time, it would let battery- and cordless-less devices harvest signals from Wi-Fi, radio, or TV to communicate and power themselves.

Astounding!

For a long time, the most “out there” idea about IoT sensors has been Prof. Kris Pister’s “smart dust” concept, which aimed at a complete sensor/communication system in a package only one cubic millimeter in size. Pister argued that such devices would be so small and cheap that they could be installed — or perhaps even scattered — almost everywhere. The benefits could be varied and inconceivable in the past. According to Pister, possible applications could include:

  • “Defense-related sensor networks
    • battlefield surveillance, treaty monitoring, transportation monitoring, scud hunting, …
  • Virtual keyboard
    • Glue a dust mote on each of your fingernails.  Accelerometers will sense the orientation and motion of each of your fingertips, and talk to the computer in your watch.  QWERTY is the first step to proving the concept, but you can imagine much more useful and creative ways to interface to your computer if it knows where your fingers are: sculpt 3D shapes in virtual clay, play  the piano, gesture in sign language and have to computer translate, …
    • Combined with a MEMS augmented-reality heads-up display, your entire computer I/O would be invisible to the people around you.  Couple that with wireless access and you need never be bored in a meeting again!  Surf the web while the boss rambles on and on.
  • Inventory Control
    • The carton talks to the box, the box talks to the palette, the palette talks to the truck, and the truck talks to the warehouse, and the truck and the warehouse talk to the internet.  Know where your products are and what shape they’re in any time, anywhere.  Sort of like FedEx tracking on steroids for all products in your production stream from raw materials to delivered goods.
  • Product quality monitoring
    • temperature, humidity monitoring of meat, produce, dairy products
      • Mom, don’t buy those Frosted Sugar Bombs, they sat in 80% humidity for two days, they won’t be crunchy!
    • impact, vibration, temp monitoring of consumer electronics
      • failure analysis and diagnostic information, e.g. monitoring vibration of bearings for frequency signatures indicating imminent failure (back up that hard drive now!)
  • Smart office spaces
    • The Center for the Built Environment has fabulous plans for the office of the future in which environmental conditions are tailored to the desires of every individual.  Maybe soon we’ll all be wearing temperature, humidity, and environmental comfort sensors sewn into our clothes, continuously talking to our workspaces which will deliver conditions tailored to our needs.  No more fighting with your office mates over the thermostat.
  • Interfaces for the Disabled (courtesy of Bryndis Tobin)
    • Bryndis sent me email with the following idea: put motes “on a quadriplegic’s face, to monitor blinking & facial twitches – and send them as commands to a wheelchair/computer/other device.”  This could be generalized to a whole family of interfaces for the disabled.  Thanks Bryndis!”

Now imagine that a critical component of such a tiny, ubiquitous device was removed. Because it didn’t need a battery it could be even smaller and cheaper (because of cheaper and simpler radio hardware circuitry).

The goal is having billions of disposable devices start communicating,” Gollakota said (my emphasis).

You may remember that I’ve written before about my metaphor of a pre-IoT era of “Collective Blindness,” the universal inability to peer (literally or figuratively) inside things in the past, which forced us to create all sorts of work-arounds to cope with that lack of real-time data. Imagine how precise our knowledge about just about everything will be if Gollakota’s technology becomes commonplace.

.As Technology Review reported, the critical challenge is making it possible for a device lacking a traditional power source to communicate: “Transferring power wirelessly is not a new trick. But getting a device without a conventional power source to communicate is harder, because generating radio signals is very power-intensive and the airwaves harvested from radio, TV, and other telecommunication technologies hold little energy.”

The principle making the innovation possible is “backscattering,” reflecting waves, particles or signals back in the direction they came from, which creates a new signal.

The early results are encouraging. Gollakata has made a contact lens that can connect with a smartphone. Think I’ll pass on that one, but other devices he and his team have created include brain implants and “a flexible skin patch that can sense temperature and respiration, a design that could be used to monitor hospital patients.”  Marketers will love this one: a concert poster broadcasting a bit of the featured band’s music over FM radio!

Jeeva Wireless, Gollakata’s commercial spinoff, is using a variety of the technology, “passive Wi-Fi.” Devices using it can data up to 100 feet and connect through walls.

Tiny passive devices using backscatter could be manufactured for as little as a dollar. “In tomorrow’s smart home, security cameras, temperature sensors, and smoke alarms should never need to have their batteries changed.”

Gollakata sums up the potential impact: “We can get communication for free” (my emphasis).

That’s incredible, but in light of the continuing series of major DDoS attacks made possible by weak or non-existent IoT security measures, I must remind everyone that speed, power, and ubiquity aren’t everything: we also need IoT security, so I hope the low cost and ability to function without a dedicated energy source won’t obscure that need as well.

 

BTW: a MIT profile on Gollakata mentions one of his other, related, inventions, which I think would mesh beautifully with my SmartAging vision to help seniors age in place in better health.

It’s called  WiSee, which uses wireless signals such as Wi-Fi to “enable whole-home sensing and recognition of human gestures. Since wireless signals do not require line-of-sight and can traverse through walls, WiSee can enable whole-home gesture recognition using few wireless sources (e.g., a Wi-Fi router and a few mobile devices in the living room).”

I love the concept for seniors, because (like Echo, which I’m finally getting!!) it doesn’t require technical expertise, which many seniors lack and/or find intimidating, to launch and direct automated devices. In this case, the activation is through sensing and recognition of human gestures. According to Gollakata,“’Gestures enable a whole new set of interaction techniques for always-available computing embedded in the environment. As an example, he suggests that a hand swiping motion in the air could enable a user to control the radio volume while showering – or change the song playing on the stereo in the living room while you are cooking in the kitchen.”

He goes on to explain:

“…. that the approaches offered today to enable gesture recognition – by either installing cameras throughout a home/office or outfitting the human body with sensing devices – are in most cases either too expensive or unfeasible. So he and his group members are skirting these issues by taking advantage of the slight changes in ambient wireless signals that are created by motion. Since wireless signals do not require line-of-sight and can traverse through walls, he and his group have achieved the first gesture recognition system that works in those situations. ‘We showed that this approach can extract accurate information about a rich set of gestures from multiple concurrent users.”

Combine that with speaking to Alexa, and even the most frail seniors could probably control most of the functions in a smart home. Gollakota says that the approaches offered today to enable gesture recognition – by either installing cameras throughout a home/office or outfitting the human body with sensing devices – are in most cases either too expensive or unfeasible. So he and his group members are skirting these issues by taking advantage of the slight changes in ambient wireless signals that are created by motion. Since wireless signals do not require line-of-sight and can traverse through walls, he and his group have achieved the first gesture recognition system that works in those situations. “We showed that this approach can extract accurate information about a rich set of gestures from multiple concurrent users, “he says.

Incredible work, professor!

comments: Comments Off on Smart Disposables: Could This Be Birth of Internet of Everything? tags: , , , , , , , ,

Don’t Say I Didn’t Warn You: One of Largest Botnet Attacks Ever Due to Lax IoT Security

Posted on 19th October 2016 in data, Essential Truths, home automation, Homeland Security, Internet of Things, privacy, security, sensors, smart home

Don’t say I didn’t warn you about how privacy and security had to be THE highest priority for any IoT device.

On September 19th, Chris Rezendes and I were the guests on a Harvard Business Review webinar on IoT privacy and security. I once again was blunt that:

  • you can’t wait until you’ve designed your cool new IoT device before you begin to add in privacy and security protections. Start on Day 1!
  • sensors are particularly vulnerable, since they’re usually designed for minimum cost, installed, and forgotten.
  • as with the Target hack, hackers will try to exploit the least protected part of the system.
  • privacy and security protections must be iterative, because the threats are constantly changing.
  • responsible companies have as much to lose as the irresponsible, because the result of shortcomings could be held against the IoT in general.

The very next day, all hell broke loose. Hackers used the Mirai malware to launch one of the largest distributed denial-of-service attack ever, on security blogger Brian Krebs (BTW, the bad guys failed, because of valiant work by the good guys here in Cambridge, at Akamai!).

 

The threat was so bad that DHS’s National Cyber Awareness System sent out the first bulletin I ever remember getting from them dealing specifically with IoT devices. As it warned, “IoT devices are particularly susceptible to malware, so protecting these devices and connected hardware is critical to protect systems and networks.”  By way of further explanation, DHS showed how ridiculously simple the attacks were because of inadequate protection:

“The Mirai bot uses a short list of 62 common default usernames and passwords to scan for vulnerable devices. Because many IoT devices are unsecured or weakly secured, this short dictionary allows the bot to access hundreds of thousands of devices. The purported Mirai author claimed that over 380,000 IoT devices  (my emphasis) were enslaved by the Mirai malware in the attack on Krebs’ website.”

A later attack in France during September using Mirai resulted in the largest DDoS attack ever.

The IoT devices affected in the latest Mirai incidents were primarily home routers, network-enabled cameras, and digital video recorders. Mirai malware source code was published online at the end of September, opening the door to more widespread use of the code to create other DDoS attacks.

How’d they do it?

By a feature of the malware that detects and attacks consumer IoT devices that only have default, sometimes hardwired, passwords and usernames (or, as Dark Reading put it in an apocalyptic sub-head, “Mirai malware could signal the beginning of new trend in using Internet of Things devices as bots for DDoS attacks.”

To place the blame closer to home (well, more accurately, in the home!) you and I, if we bought cheap smart thermostats or baby monitors with minimal or no privacy protections and didn’t bother to set up custom passwords, may have unwittingly participated in the attack. Got your attention yet?

 

No responsible IoT inventor or company can deny it any longer: the entire industry is at risk unless corporate users and the general public can be confident that privacy and security are baked in and continuously upgraded. Please watch the HBR webinar if you haven’t already, and pledge to make IoT privacy and security Job #1!

 

PS: According to the DHS bulletin:

“In early October, Krebs on Security reported on a separate malware family responsible for other IoT botnet attacks. This other malware, whose source code is not yet public, is named Bashlite. This malware also infects systems through default usernames and passwords. Level 3 Communications, a security firm, indicated that the Bashlite botnet may have about one million (my emphasis) enslaved IoT devices.”

BTW: thanks for my friend Bob Weisberg for reminding me to give this situation its due!

comments: 6 » tags: , , ,

SmartAging Manifesto (draft): improve quality of aging & cut costs through IoT

Posted on 15th September 2016 in aging, government, health, home automation, Internet of Things, m-health, Quantified Self, seniors, smart home, SmartAging, US government

What do you think constitutes “SmartAging?”

It’s been a while since I’ve posted anything about my IoT-based “SmartAging” concept, which combines:

  • Quantified Self health monitoring devices to make it easier to monitor your health conditions around the clock and help your caregivers better understand your health, and — hopefully — to motivate you to more activity and better eating.
  • smart home devices that make it easier to manage your home as you age and thereby avoid institutionalization.

However, I have been giving the concept a lot of thought, and have created a draft of a manifesto on the concept to guide my own work and hopefully provoke some discussion.  Here it is!

SmartAging Manifesto (draft)

  • Aging is a natural, lifelong process, so why fear and avoiding talking about it, especially how to make it more enjoyable and less costly?
  • We seniors aren’t all the same, so don’t treat us as if we were. Look beyond our wrinkles, and you’ll see some of us still work, some have just retired, and still others are long retired. When it comes to technology, some us us are afraid of it, some of us embrace it, and there are many others in the middle. Respect us for who we really are — and our choices.
  • We don’t want to have to work to master technology: we worked for 40 or 50 years, and now we want to enjoy ourselves. If you want to sell us technology, make it easy to learn and use. Maybe even fun…  Mark Weiser, credited as the IoT’s intellectual father, wrote that“The most profound technologies are those that disappear. They weave themselves into the fabric of everyday life until they are indistinguishable from it.” That sounds pretty good to us!
  • We want to shift gears and have more fun. That doesn’t mean shutting off our brains, but it does mean that we now have time to explore new hobbies, play games, spend time with our families (especially grandchildren), and travel. We’re particularly interested in technology that can help us do these things.
  • We’re also more concerned about our health. We want to be as healthy as possible, as long as possible, and we’re worried about debilitating illnesses and becoming dependent on others. We’ll be very interested in new devices to help us stay healthier longer — especially if it isn’t obvious we’re using them and they don’t make us look weird and pitiful.
  • We’re also concerned about independence (most of us do live independently, incidentally) and staying in our own homes instead of being carted off to some smelly, dehumanizing institution. We’re interested in technology that can make it easier to run our homes and stay in them.
  • We’re got something that kids don’t: wisdom and perspective, gathered from long lives and tough experience. Don’t just look at us as buyers of your stuff: ask us for our ideas. You may be surprised what you’ll learn.

That’s what I’ve got so far, but I wanted to circulate the draft ASAP, to gather others’ thoughts as well (I’ll credit you if you contribute any ideas!). e-mail me your ideas.

comments: Comments Off on SmartAging Manifesto (draft): improve quality of aging & cut costs through IoT tags: , , , , , , ,

Liveblogging #IoT @ #Liveworx 2016 — day 2

Posted on 8th June 2016 in design, home automation, Internet of Things, management, manufacturing, marketing, paradigm shift, smart home, strategy

Colin Angle, CEO, iRobot:

  • smart home: people have hard time learning how to use current generation of smart home devices. Unacceptable delay in activation. we need “just live your life, and the house does the right thing.” Shouldn’t have to pull out phone.  Will be aware of your location, act naturally.
  • “Need metaphor of the room to exist” — and robot will do that. Cool: Future iRobot could do that while doing its own job. New generation of iRobot has mapped 1/2 billion sq. feet in less than a year.
  • Would be a lot cooler if you can just buy a smart bulb, screw it in, and it would just work without having to do anything.
  • Pogue: how do you deal with the criticism that iRobot LOOKS as if it is cleaning randomly? Angle: Customers just cared that it actually did the job. “Just make it clean better” — I don’t care how long it takes, because I’m not there.
  • Next generation of robotics will be manipulation.
  • Angle: “if you’re worried about AI taking over, don’t worry about me, worry about the marketing guys.  … I just vacuum floors.”  This is so funny: “I used to be a self-respecting robot scientist, but it wasn’t until I became a vacuum salesman that I made any money.”

Eric Schaeffer, Accenture:

  • significant change, affecting both demand and supply. No industry unaffected.
  • to remain competitive, countries and companies will have to be at edge of innovation. Faster than ever.
  • strategies focused on cost-cutting less effective than emphasis on new products
  • World Economic Forum looking at impact of internet on business and society
    • 1st report: industrial internet of things & how it would transform industries. Adoption accelerating.
    • 3-4 yrs. from now, major structural changes, massively transformative (but you can begin w/ incremental change).
    • only 7% of 500 companies surveyed said they had comprehensive IoT strategy.
  • illustrations: water distribution network, dramatic time savings in time to install plane seats.
  • where’s the value? integrate smart products and back-office systems for IoT and As-a-Service Enabled approach.
  • Moving to multi-dimensional definition of a product.
  • Companies will become platforms
  • Sales models will move to as-a-service
  • They have identified 30% “uplift” for generic company. Specific improvements from digitization of the enterprise varies from one industry to another
  • Examples:
    • a Euro telecoms company: using a Google Glass-style product for field technicians at job sites and to capture data in field. 20-40% productivity gains.
    • pay-per-use vehicle services: a French tire company that wants to create 1 b Euro biz in “mobility.” — from selling tires to selling outcomes! Money-back guarantee. 2.5 liters reduction in gas use for 100 km driven — huge reduction in trucking companies. 
    • connected homes: working with multiple clients to define what the services will be.
  • Scope and scale of changes acute.
  • Recent survey: 42% of companies have said improvement has been in how they interact with customers.
  • Leading companies moving from product push to creating value by:
    • focusing on higher value solutions
    • focusing on enhanced experience
    • focusing on customer outcomes.
  • still focus on the what, but also the how!
  • dramatic shift to “Total Experience Innovation.”
    • Be Solution Centric: all centered on customer
    • Build an Insight Platform: continuously renew
    • Drive Pivotal Leaders: find right leaders.
  • Examples:
    • ALS patients: helping them regain control of their lives through wearables, displays, etc. done with Phillips.
    • industrial equipment manufacturer: breaking silos. Innovation digital factory: to instill connectivity into the biz, and build outcome-based offers, and increasing level of engagement with customers.
  • Future:
    • implantable technologies
    • wearable internet
    • IoT everywhere
    • connected home
    • driverless cars
    • robotics
    • sharing economy

Here’s the main event!  Prof. Michael Porter, iRobot’s Colin Angle & PTC’s Jim Heppelmann on IoT transformation:

  • Porter & Heppelmann’s research collaboration on IoT: he was a PTC board member. “Magical opportunity”
  • Porter: both products and internal operations are changing due to IoT
  • Porter: still in early stages of industrial conversion
  • Porter: IoT is wrong term: real emphasis is change in products and what they can do. Embedding in service companies. Every service business will be affected.
  • Heppelmann: the IoT also affects how the customer operates the product.
  • Angle: iRobot has jumped into IoT with both feet. Touches every aspect of their biz.
  • Heppelmann: missed the human element in this. That led to their AR initiative, so people could relate to the new products in ways that are both physical and digital.
  • Angle: iRoomba sending data back in real time on how it’s being used. No more focus groups! Robot part of design team.
  • Heppelmann: fundamentally different design process now.
  • Porter: who collects, who decides how to use the data? New chief data officer position.
  • Angle: who is best to handle the data? Idea of chief data officer interesting. Product ID a new competency.
  • Porter: starting to see new organizational structures pop up. Becoming possible to sell almost anything as a service.
  • Heppelmann: “devops” — combine development & operations. Chief Data Officer — whose job is it to decide what the data is telling various departments?
  • Porter: can’t have handoffs between each group, because you need continuing dialogue.
  • Heppelmann: industrial companies can learn from software companies, with techniques such as agile dev in software.  Continuous improvement. Also, “customer analytics.”

 

comments: Comments Off on Liveblogging #IoT @ #Liveworx 2016 — day 2 tags: , , , , , , ,

Alexa and Aging: more on voice as THE interface for “SmartAging”

Posted on 31st May 2016 in aging, health, home automation, Internet of Things, m-health, privacy, Quantified Self, security, seniors, SmartAging
Amazon Alexa & services it can trigger!

Amazon Echo & services it can trigger!

I predict every elderly person will soon have a personal home assistant, ready to respond to their every command.

However, that home health aide may not be human, but sit on the kitchen counter, and look suspiciously like Amazon’s breakthough IoT device, The Echo.

The late Mark Weiser, “the father of the Internet of Things,” famously predicted that “the best computer is a quiet, invisible servant,” and that’s certainly the potential with Echo, or the just announced Google Assistant (how sexy is that name? I like the fact it’s so impersonal. Let’s you fire one voice “assistant” and hire another without becoming personally attached, LOL), or the much-rumored Apple version, which might also include a camera (disclaimer: while I work part-time at an Apple Store, I ain’t privy to any inside dope, no way, no how).

That’s particularly the case when it comes to seniors, and my SmartAging vision of an IoT-based future for them combining Quantified Self health monitoring devices that can motivate seniors to improve their fitness levels, and smart home devices that can make it easier to manage their homes as they age, to avoid costly and soul-deadening institutionalization (or, even better, combining the two, as with one of my favorite IFTTT “recipes,”  programming your Jawbone to wake you gently at the best time in your sleep cycle, AND gradually turn on your Hue lights. How better for a senior — or anyone — to start their day on a positive note (OK, I know what you’re thinking: better turn on the coffee maker automatically!).

      KidsMD for Amazon Alexa

What really got me thinking about the advantages of a voice-activated future for seniors was a recent story about a similar app for the other end of the age spectrum, developed by our Children’s Hospital, for Alexa: KidsMD. What better for a harried mom or dad, with his or her hands full, AND a sick child to boot, than to simply ask for advice on temperature, fever and the like? That got me thinking that the same would apply to seniors as well, needing advice with some of the unwanted aspects of aging (I could mention here an example from a senior I care for, but that would be most unpleasant…). As I’ve said before, this would be helpful under any circumstances, but when the person needing help is a frail, tech-averse senior, it would be superb if s/he only had to speak a simple command or request to get needed help, or advice on something such as the proper amount of an over-the-counter drug to take.

There are tons of other life-improving reasons for such an approach for seniors, including:

Of course, and I can’t emphasize this enough, especially since seniors are already victims of so many scamming tricks, because these counter-top devices are always on, listening to you,  and because much of their possible use could be for reporting confidential health or financial data, privacy and security MUST be THE top priority in designing any kind of voice-activated app or device for seniors. Think of them as the canaries in the coal mine in this regard: protecting vulnerable seniors’ privacy and security should be the acid test of all voice-activated apps and devices for people of all ages.

Having said all that, as I noted in a piece last week about what a stunning combination of services Amazon has put together to become the dominant player in the retail IoT sector, one of those offerings is the $100 million Alexa fund to fuel advances in the voice-activated arena.  I’m ready to put their money where my mouth is  (LOL) in this regard, to design voice-activated devices and services for seniors.  If you’d like to partner, E-mail me!!

comments: Comments Off on Alexa and Aging: more on voice as THE interface for “SmartAging” tags: , , , , , , , , , , , , ,

Amazon Leads IoT With Comprehensive Services, Platform & Devices!

Posted on 24th May 2016 in aging, circular economy, home automation, Internet of Things, management, marketing, retail, seniors, services, SmartAging, strategy

Several months ago I predicted that Amazon’s Echo might become the IoT’s killer device, primarily because it is voice activated. It appears that prediction is coming true, which should give the entire consumer IoT a boost because Amazon is also providing a soup-to-nuts approach of devices, platform, and storage meeting a wide range of IoT needs, which puts a real emphasis on customer ease of use.

Amazon Flywheel

Amazon Flywheel

Even more exciting from my perspective, is that part of that success may be due to something I was unaware of that fits beautifully with my “circular enterprise ” vision of the IoT: Jeff Bezos’ back-of-the-envelope sketch when he founded the behemoth, of what he called the “Amazon Flywheel,” It’s as good an illustration as I can think of regarding my vision of circular organizations and strategy — not to mention their profitability!

Even the WSJ got on board with an article about Amazon in regard to the IoT, although it focused solely on Echo and its voice app, Alexa, and ignored the all-important mechanics that it also provides.

Amazon IoT Button

Amazon IoT Button

The latest step in fleshing out the ecosystem was the announcement earlier this month of the AWS IoT Button, modeled on its highly successful DASH button, which allows ordering more than 100 different consumer products from Amazon by simply pressing the button (the “button” is also now also available in virtual form as a software service, so that a number of products, such as a Whirlpool smart washing machine, will determine that the owner is running low on detergent, and automatically send an alert to her phone. A simple touch on the phone triggers a refill order from Amazon). The 1st edition IoT button sold out instantly!

It joins a comprehensive, and growing, package of IoT devices and services from Amazon that I suspect will quickly make it the platform of choice for the consumer IoT:

You get the idea: this is a conplete solution, from platform to cloud storage to devices to highly-personal (voice) interface.

 

And there’s that matter of the Amazon Flywheel that I mentioned previously.  I came across it in researching this post, in a blog post by John Rossman in which he referred to the Flywheel as “a long-tested systems dynamic view of Amazon’s core retail and marketplace business” (music to my ears: it was exposure to Jay Forrester & Peter Senge’s work on systems dynamics that first got me interested in cyclical processes, back in the late ’80s). He explains how this continuous loop leads to dynamic growth, especially in Amazon’s infrastructure offerings:

“When thinking through an IoT solution, what is most obvious is the end device.  But this is the classic “tip of the iceberg” in creating an end-to-end solutions.  The IoT Value Chain is defined by devices, connectivity, big data, algorithms, actions, and connection to the rest of the enterprise.  As more and more IoT Devices get introduced, a greater amount of data (both big and small) is generated. This data, once integrated with algorithms create a greater overall customer IoT impact generating more demand for more devices. All of these devices and services can be hosted on AWS and utilize their infrastructure capabilities leading to greater growth of the infrastructure. At this point, the loop looks familiar: infrastructure growth leads to lower costs, which means more services and companies rely on the infrastructure locking into a cycle of higher customer impact.  Amazon Web Services has several existing IoT enabling products include AWS Redshift, AWS Kinesis, AWS Machine Learning and recent acquisition of 2lemetry show that the big bet for Amazon is not in creating devices for its retail business, but in providing cloud infrastructure and software to thousands of companies needing to build IoT devices and capabilities.  This is the AWS IoT flywheel and the real business in IoT for Amazon.”

Yeah, but the bucks that it will get from Dash orders and from Echo ain’t shabby either. Keep up that cyclical thinking, Mr. Bezos!

 

PS: this also makes me more and more confident that Echo and Alexis can be the key to the robust “SmartAging” approach that I visualize because its use of voice will help seniors, especially the tech-averse, manage their health AND their homes and allow them to age in place healthily! Gonna have to get me some partners to go after Alexa Fund backing…

Blogarama - Government Blogs

comments: 2 » tags: , , , , , , , , , , , ,

Zoe: perhaps even better than Echo as IoT killer device?

Posted on 2nd May 2016 in aging, data, design, health, home automation, Internet of Things, m-health, privacy, Quantified Self, security, seniors, smart home, SmartAging

Zoe smart home hub

I’ve raved before about Echo, Amazon’s increasingly versatile smart home hub, primarily because it is voice activated, and thus can be used by anyone, regardless of tech smarts — or whether their hands are full of stuff.  As I’ve mentioned, voice control makes it a natural for my “SmartAging” concept to help improve seniors’ health and allow them to manage their homes, because you don’t have to understand the underlying technology — just talk.

Now there’s a challenger on the horizon: start-up Zoe, which offers many of Echo’s uses, but with an important difference that’s increasingly relevant as IoT security and privacy challenges mount: your data will remain securely in your home. Or, as their slogan goes:

“So far, smart home meant high convenience, no privacy, or privacy, but no fun. We are empowering you to have both.”

You can still get in on Zoe’s Indegogo campaign with a $249 contribution, which will get you a hub and an extra “voice drop” to use in another room, or the base level, $169 for a single room. Looks kinda cool to me, especially with the easily changed “Art Covers” and backlight coloring (the Che Guevera one looks appropriate for a revolutionary product) …  The product will ship in late 2016.

Don’t get me wrong: I love Echo & will be getting mine soon, but there is that creepy factor given government officials’ fascination with the potential of tapping into smart home data as part of their surveillance. Remember what US Director of Intelligence James Clapper said, ““In the future, intelligence services might use the [internet of things] for identification, surveillance, monitoring, location tracking, and targeting for recruitment, or to gain access to networks or user credentials.” Consider then, that Echo sits there on your kitchen counter, potentially hacked and then hoovering up all of your kitchen chit-chat to relay directly to the spooks.  Wouldn’t you rather that data remained totally under your control?

In addition to storing the data on site rather than in the cloud, Zoe also touts that it has advanced voice-recognition so it can learn IFTTT-style “recipes,” or be operated by apps. She comes with 1,500 built-in voice commands, or, if you stump her, (and only if you choose to, preserving that in-house-only option) web-based Advanced Voice Recognition steps in, with a cloud-based voice recognition system. Her recognition capabilities will grow over time.. Zoe will work with WiFi, Bluetooth, Z-Wave, and other standards.

The company will ship the developers’ kit in six months. It will be open source.

Not being cloud based will mean it loses to Echo on two important counts. For many people, the ability to order things from Amazon simply by speaking may be more important than security concerns,. Also, I notice it doesn’t mention any speakers, so it may be lacking the ability to also serve as a music source (obviously it wouldn’t work with Amazon Music or Apple Music if it isn’t cloud-connected, but it would at least be nice to be able to use it to play your own collection — advantage to Echo on that one.

At least this means there’s competition in the field (and, BTW, I’d love to see Apple swoop in and make THE voice-activated device!)

BTW: Thanks to good buddy Bob Weisberg for the tip about Zoe! Follow him!

 

comments: Comments Off on Zoe: perhaps even better than Echo as IoT killer device? tags: , , , , , , , ,
« Previous Next »
http://www.stephensonstrategies.com/">Stephenson blogs on Internet of Things Internet of Things strategy, breakthroughs and management