ILMA Compoundings – December 2019 - 30
WASHINGTON LANDSCAPE
Regulating the Internet
(of Things)
T
By Matthew Levetown
he past few years have seen a
flurry of new digital security
laws debated, passed and
enacted. Perhaps most familiar is
the European Union's (EU) General
Data Protection Regulation (GDPR),
due in part to the scope of rights and
enforcement - a single set of rules
applying to not only data collected
and processed within the EU, but even
transfer of the data out of the region.
In its wake, California passed its
Consumer Privacy Act (CPA), which
becomes effective on Jan. 1, 2020.
A few other states, including Massachusetts, New York and Maryland,
have considered or have passed digital
privacy laws.
At the same time, the interconnectivity of devices and cloud processing
gave birth to the internet of things
(IoT). While the basic idea has been
kicking around for decades,1 the
2008 birth year for IoT was reached
when the number of devices connected to the internet surpassed the
number of human users. Coupled
with human-machine interfaces, like
Google Home or Alexa, anyone can
have their own smart home straight
out of science fiction. The IoT is not
limited to personal comfort: sensors
and predictive analysis have been cited
as possible boons to the oil and gas
industry. From automated production
levels based on downstream needs
to real-time monitoring of pipeline
networks, let alone semi-autonomous
refining systems, the IoT will improve
productivity across industries.
30
DECEMBER 2019
| COMPOUNDINGS | ILMA.ORG
However, the question remains: Who
owns the data, and how secure is it?
CYBERSECURITY CHALLENGES
Every new device connected to a
network introduces more risk. Even a
network not actively connected to the
internet at large has increased avenues
of exploitation. Malware has been
crafted to attack IoT devices, such
as the Mirai botnet, which continuously scanned for and infected smart
devices using a table of factory default
passwords to launch distributed denial
of service (DDOS) attacks to shut
down websites. As the first variant
of Stuxnet showed by transmission
through USB drives and portable
engineering systems, even locally
networked devices can be the target
of attacks, albeit specific rather than
opportunistic attacks.
By 2025, an estimated 60 billion
IoT devices will exist, 7.5 times greater
than the world's predicted population.
The lack of focus on the cybersecurity
of IoT devices compared to human
interfaces, such as computers, opens
the door to collection of data by
both malicious hackers and data
miners. IBM's X-Force cybersecurity
intelligence group reported a 5,400%
increase in IoT vulnerabilities in
2018 compared to 2013. Predictably,
a number of private companies are
working to create firewall solutions,
rather than single-device solutions.
Private cybersecurity firms reacting
to device vulnerabilities are often a
triage solution for those affected
by attacks, as patches arise after
exploitation. In what is a surprise to
no one, only recently have federal
lawmakers recognized the need to
establish "cyber benchmarks" for IoT
devices, with several bills being introduced in 2019. While none have been
voted on yet, the basic idea is
to gather cyber experts from public
and private industries to create certifying standards.
In the Cyber Shield Act, for example, IoT device manufacturers meeting
the advisory committee benchmarks
would receive a "Cyber Shield"
label. A major concern expressed by
lawmakers has been the challenge of
balancing the current low-cost devices
that increase productivity with the
protection of infrastructure. The
proliferation of IoT devices is partially explained by the price point of
pre-made devices and the ease of interfacing newer electronics with internet
controllers for individualized uses.
While time will tell whether U.S.
lawmakers will define a national
digital privacy policy to pair with
cybersecurity, the two privacy laws
currently affecting the largest swath
of consumers are the CPA and the
GDPR. The CPA is more limited in
scope than the GDPR in some ways,
as "personal information" is defined as
that applying to natural persons rather
than business consumers. However,
coupled with an additional IoT security law becoming effective on Jan. 1,
2020, businesses that collect data from
over 50,000 consumers or devices
need to be able to comply with both
http://www.ILMA.ORG
ILMA Compoundings – December 2019
Table of Contents for the Digital Edition of ILMA Compoundings – December 2019
LETTER FROM THE CEO
INSIDE ILMA
WHAT’S COMING UP
NEW MEMBERS
INDUSTRY RUNDOWN
In the Know
International Insight
Market Report
PEERING INTO THE FUTURE
BREEDING PERFORMANCE
IT’S IN THE DETAILS
BUSINESS HUB
COUNSEL COMPOUND
WASHINGTON LANDSCAPE
IN NETWORK
Member Connections
Cross Connections
PORTRAIT
ILMA Compoundings – December 2019 - Cover1
ILMA Compoundings – December 2019 - Cover2
ILMA Compoundings – December 2019 - 1
ILMA Compoundings – December 2019 - 2
ILMA Compoundings – December 2019 - LETTER FROM THE CEO
ILMA Compoundings – December 2019 - INSIDE ILMA
ILMA Compoundings – December 2019 - 5
ILMA Compoundings – December 2019 - WHAT’S COMING UP
ILMA Compoundings – December 2019 - NEW MEMBERS
ILMA Compoundings – December 2019 - INDUSTRY RUNDOWN
ILMA Compoundings – December 2019 - In the Know
ILMA Compoundings – December 2019 - International Insight
ILMA Compoundings – December 2019 - 11
ILMA Compoundings – December 2019 - Market Report
ILMA Compoundings – December 2019 - 13
ILMA Compoundings – December 2019 - PEERING INTO THE FUTURE
ILMA Compoundings – December 2019 - 15
ILMA Compoundings – December 2019 - 16
ILMA Compoundings – December 2019 - 17
ILMA Compoundings – December 2019 - BREEDING PERFORMANCE
ILMA Compoundings – December 2019 - 19
ILMA Compoundings – December 2019 - 20
ILMA Compoundings – December 2019 - 21
ILMA Compoundings – December 2019 - IT’S IN THE DETAILS
ILMA Compoundings – December 2019 - 23
ILMA Compoundings – December 2019 - 24
ILMA Compoundings – December 2019 - 25
ILMA Compoundings – December 2019 - BUSINESS HUB
ILMA Compoundings – December 2019 - 27
ILMA Compoundings – December 2019 - COUNSEL COMPOUND
ILMA Compoundings – December 2019 - 29
ILMA Compoundings – December 2019 - WASHINGTON LANDSCAPE
ILMA Compoundings – December 2019 - 31
ILMA Compoundings – December 2019 - Member Connections
ILMA Compoundings – December 2019 - 33
ILMA Compoundings – December 2019 - Cross Connections
ILMA Compoundings – December 2019 - 35
ILMA Compoundings – December 2019 - PORTRAIT
ILMA Compoundings – December 2019 - Cover3
ILMA Compoundings – December 2019 - Cover4
https://www.nxtbook.com/ygsreprints/ILMA/G127535ILMA_vol71_no7
https://www.nxtbook.com/ygsreprints/ILMA/G126213ILMA_vol71_no6
https://www.nxtbook.com/ygsreprints/ILMA/G125546_ILMA_vol71_no5
https://www.nxtbook.com/ygsreprints/ILMA/G124996_ILMA_vol71_no4
https://www.nxtbook.com/ygsreprints/ILMA/G123886_ILMA_vol71_no3
https://www.nxtbook.com/ygsreprints/ILMA/G123315_ILMA_vol71_no2
https://www.nxtbook.com/ygsreprints/ILMA/G122980_ILMA_vol71_no1
https://www.nxtbook.com/ygsreprints/ILMA/G121540_ILMA_vol70_no11
https://www.nxtbook.com/ygsreprints/ILMA/G120882_ILMA_vol70_no10
https://www.nxtbook.com/ygsreprints/ILMA/G120035_ILMA_vol70_no9
https://www.nxtbook.com/ygsreprints/ILMA/G121XXX_ILMA_vol70_no8
https://www.nxtbook.com/ygsreprints/ILMA/G120XXX_ILMA_vol70_no7
https://www.nxtbook.com/ygsreprints/ILMA/G119XXX_ILMA_vol70_no6
https://www.nxtbook.com/ygsreprints/ILMA/G118112_ILMA_vol70_no5
https://www.nxtbook.com/ygsreprints/ILMA/G117382_ILMA_vol70_no4
https://www.nxtbook.com/ygsreprints/ILMA/G116888_ILMA_vol70_no3
https://www.nxtbook.com/ygsreprints/ILMA/G115555_ILMA_vol70_no2
https://www.nxtbook.com/ygsreprints/ILMA/G114774_ILMA_vol70_no1
https://www.nxtbook.com/ygsreprints/ILMA/g110500_ILMA_vol69_no12
https://www.nxtbook.com/ygsreprints/ILMA/g110500_ILMA_vol69_no11
https://www.nxtbook.com/ygsreprints/ILMA/g110500_ILMA_vol69_no10
https://www.nxtbook.com/ygsreprints/ILMA/g109884_ILMA_vol69_no9
https://www.nxtbook.com/ygsreprints/ILMA/g109284_ILMA_vol69_no8
https://www.nxtbook.com/ygsreprints/ILMA/g108494_ILMA_vol69_no7
https://www.nxtbook.com/ygsreprints/ILMA/g107507_ILMA_vol69_no6
https://www.nxtbook.com/ygsreprints/ILMA/g106483_ILMA_vol69_no5
https://www.nxtbook.com/ygsreprints/ILMA/g105803_ILMA_vol69_no4
https://www.nxtbook.com/ygsreprints/ILMA/g104743_ILMA_vol69_no3
https://www.nxtbook.com/ygsreprints/ILMA/g103647_ILMA_vol69_no2
https://www.nxtbook.com/ygsreprints/ILMA/g102869_ILMA_vol69_no1
https://www.nxtbook.com/ygsreprints/ILMA/g101930_ILMA_vol68_no12
https://www.nxtbook.com/ygsreprints/ILMA/g100836_ILMA_vol68_no11
https://www.nxtbook.com/ygsreprints/ILMA/g99200_ILMA_vol68_no10
https://www.nxtbook.com/ygsreprints/ILMA/g98468_ILMA_vol68_no9
https://www.nxtbook.com/ygsreprints/ILMA/g97711_ILMA_vol68_no8
https://www.nxtbook.com/ygsreprints/ILMA/G96767ILMA_vol68_no7
https://www.nxtbook.com/ygsreprints/ILMA/G95397ILMA_vol65_no6
https://www.nxtbook.com/ygsreprints/ILMA/G94323ILMA_vol68_no5
https://www.nxtbook.com/ygsreprints/ILMA/G93127_ILMA_vol69_no4
https://www.nxtbook.com/ygsreprints/ILMA/G91785_ILMA_vol68_no3
https://www.nxtbook.com/ygsreprints/ILMA/G90956_ILMA_vol68_no2
https://www.nxtbook.com/ygsreprints/ILMA/G89146_ILMA_vol68_no1
https://www.nxtbook.com/ygsreprints/ILMA/G87981_ILMA_vol67_no12
https://www.nxtbook.com/ygsreprints/ILMA/G85409_ILMA_vol67_no11
https://www.nxtbook.com/ygsreprints/ILMA/G83595_ILMA_vol67_no10
https://www.nxtbook.com/ygsreprints/ILMA/G81672_ILMA_vol67_no9
https://www.nxtbook.com/ygsreprints/ILMA/G80238_ILMA_vol7_no8
https://www.nxtbook.com/ygsreprints/ILMA/G79388_ILMA_vol7_no7
https://www.nxtbook.com/ygsreprints/ILMA/G78361_ILMA_vol7_no6
https://www.nxtbook.com/ygsreprints/ILMA/G77448_ILMA_vol7_no5
https://www.nxtbook.com/ygsreprints/ILMA/G75899_ILMA_vol67_no4
https://www.nxtbook.com/ygsreprints/ILMA/G75036_ILMA_vol67_no3
https://www.nxtbook.com/ygsreprints/ILMA/G72720_ILMA_vol67_no2
https://www.nxtbook.com/ygsreprints/ILMA/G72220_ILMA_vol67_no1
https://www.nxtbook.com/ygsreprints/ILMA/G70970_ILMA_vol66_no12
https://www.nxtbook.com/ygsreprints/ILMA/G69813_ILMA_vol66_no11
https://www.nxtbook.com/ygsreprints/ILMA/G67522_ILMA_vol66_no10
https://www.nxtbook.com/ygsreprints/ILMA/G66343_ILMA_vol66_no9
https://www.nxtbook.com/ygsreprints/ILMA/G64859_ILMA_vol66_no8
https://www.nxtbookmedia.com