Approaches to Secure Development
IoT systems are evolving, as new capabilities that take advantage of IoT connectivity continue to be introduced. Autonomous shuttles will soon ferry riders around connected cities, relying on streams of environmental and traffic data to operate safely and make scheduling decisions.
Manufacturing plants are already incorporating collaborative robots (cobots) that increase efficiency and improve performance. Industrial control systems are gaining access to new data sources, for better decision making through cloud connectivity.
These new complex and connected engineering projects must be designed to be safe and resilient, while at the same time assuring the confidentiality and integrity of sensitive information.
This chapter discusses processes and approaches that can be used to develop safe, secure, and resilient IoT systems. We will cover the following topics:
- The Secure Development Life Cycle (SDLC)
- Handling non-functional requirements
- Verification and validation
- The need for software transparency