"It's simply difficult to secure devices. It's hard the same way engineering is ... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

nickpsecurity on April 26, 2017 | parent | context | favorite | on: A vigilante trying to improve IoT security

"It's simply difficult to secure devices. It's hard the same way engineering is hard."

Put OpenBSD and OpenSSH on them with configuration explained in a good book on the subject. Write your apps in memory-safe language that validates external input. The End [for vast majority of attacks in IoT space]. It's not as hard as you detractors claim. They just don't care.

pferde on April 27, 2017 [–]

Indeed. It's not hard, it's just more expensive than not doing it at all. And since there is usually no incentive doing it, it is not being done, because not doing it saves money.

nickpsecurity on April 27, 2017 | [–]

Exactly!

Consider applying for YC's W25 batch! Applications are open till Nov 12.
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact