The Certification Landscape and What Industry Needs (U32a)
This talk will look at what is required to ensure that the connected world is secure. Specifically, it will look at the third-party certification and what we need to do to verify the security of the connected products and eco-system. From the viewpoint of a developer with many years of experience in security, it looks at the challenges we face as an industry and also a citizen of the world. It will look at the challenges a developer’s faces and make a proposal of a certification process that can match how we develop and keep products up to date. It will look at various certification methods from process certification to product certification, looking at the pluses and negatives for each strategy. It will discuss how we build a new certification landscape that fulfills our needs, working with industry partners and where legislation can help.