Matt’s piece nicely lays out why software updates are a good idea for end-users even after a poisoned update made news. A systemic issue remains that the varied Internet of Things ecosystem includes lots of vendors careless about securing their update paths.https://twitter.com/nytopinion/status/1110863348873220099 …
It does, but there is no other way to be secure so the question is how to make auto-update as secure as possible.
-
-
I think devices should offer a Faraday mode, where they retain what core functionality they can without network connectivity. Makes standing them down more appealing if vulnerable but no patch is forthcoming.
-
Interesting. I'll be researching this and the implications of things like it this year if anyone wants to discuss over a coffee/lunch DM me. How to trigger the mode? Over an update? A timer? It's all fun and games until its a thing folks have come to depend on.
End of conversation
New conversation -
-
-
This Tweet is unavailable.
-
I agree. It's very annoying to choose between security and some stupid UI change nobody asked for. It's why lots of people don't update. :-(
End of conversation
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.