Internet of Everything Overview

Questions and Answers

What is the primary purpose of the application layer in the IoE architectural approach?

• To enable automated responses to changing usage demands. (correct)
• To manage orchestration and service delivery.
• To provide physical network connectivity.
• To integrate legacy systems with new applications.

Which layer of the IoE architecture is responsible for managing policy adjustments based on changing demands?

• Platform layer (correct)
• Infrastructure layer
• Application layer
• Network layer

What aspect does the infrastructure layer of the IoE architecture primarily focus on?

• Providing automated customer service.
• Combining physical and virtual resources. (correct)
• Delivering applications to users.
• Integrating software applications.

What does the standard infrastructure aim to achieve?

Reduce costs of legacy systems. (D)

In the context of IoE, how does the application layer impact customer experience?

By allowing seamless integration and collaboration. (A)

Which component is NOT considered a part of the platform layer's responsibilities?

Configuration of legacy systems. (A)

How does the IoE architectural approach relate to cloud computing models?

It incorporates their principles and functions. (B)

What is a key benefit of responsive software within the IoE architecture?

It allows real-time adjustments to user demands. (C)

What is one of the primary functions of P2P applications?

Meeting room reservations (C)

Which of the following is NOT a benefit of M2M, M2P, and P2P interactions?

Increased inventory costs (C)

What must business managers identify when understanding existing business processes?

Supplier relationships (B)

What key aspect should managers understand about existing IT and OT networks?

Traffic requirements and data storage (A)

How does implementing IoE projects potentially affect profitability?

By determining cost and return on investment (D)

What is a requirement for understanding existing network infrastructure?

Identifying existing network components (A)

What should be considered when determining business goals and opportunities?

Growth opportunities and competitive advantages (D)

What must business managers know about M2M connections?

Information generated from these connections (A)

What is a key feature of responsive software?

It automatically detects and adapts to traffic demands. (C)

What does holistic security aim to ensure in a network?

Confidentiality, integrity, and availability of information. (A)

Which law states that the number of transistors on integrated circuits tends to double every two years?

Moore's Law (A)

Which of the following best describes Metcalfe's Law?

The value of a network is the square of the number of users connected. (A)

What is a major challenge with proprietary ecosystems in OT networks?

They do not readily interoperate with IP network protocols. (C)

Which principle is not one of the primary laws for planning technological needs?

Shannon’s Law (A)

In the context of IoE in the public sector, which of the following is a primary goal?

Reduced costs. (C)

What aspect of application-centric approaches significantly affects infrastructure?

It determines what information is virtualized and supported. (D)

What does access control provide for users or devices seeking access to a distributed network?

Policy-based access (A)

What is the purpose of context-aware policies?

To define security policies based on the full context of the situation (B)

Which of the following best describes context-aware inspection and enforcement?

It utilizes network and global intelligence for enforcement decisions. (D)

What role does network and global intelligence play in security?

It enables the network to be aware of malicious activity environments. (C)

How does a firewall protect networks?

By analyzing traffic based on pre-programmed rules. (C)

What primary function does an Intrusion Prevention System (IPS) serve?

To monitor and prevent malicious activity. (D)

Which statement about context-aware policies is accurate?

They can be defined using simple, business-aligned language. (D)

What best characterizes the flexible deployment options of context-aware inspection?

Integrated, standalone, or Cloud-based options. (D)

What does Reed's Law indicate about the value of a network?

It grows exponentially based on potential user groups. (D)

How can security in IoE networks be best described?

Pervasive and requires real-time adaptability. (D)

What is a key characteristic of an adaptable and real-time security approach?

It adjusts security levels in response to evolving business needs. (C)

Why is it important for security measures in IoE to be dynamic?

To better recognize security threats using real-time analytics. (D)

What impact can security breaches have on a business?

They can erode customer confidence and brand integrity. (C)

Which aspect of security is crucial for protecting valuable assets in IoE?

Advanced security measures and protocols. (B)

What allows for the introduction of more vulnerabilities in IoE networks?

A larger number of access points into the network. (C)

What approach is essential for a comprehensive security solution in IoE?

End-to-end coverage that is scalable and intelligent. (D)

What is one of the basic components of wireless security?

Enabling encryption (A)

What is a significant risk associated with many new wireless-enabled devices?

They often lack wireless security functionality. (D)

What is the most crucial aspect of a security policy?

User education (A)

How can organizations mitigate risks associated with malicious or careless users?

By imposing strict rules and regulations. (A)

What must traffic from smart wireless devices pass through to enhance security?

Security devices and context-aware applications (A)

Which of the following statements about wireless networks is correct?

They are open to anyone within range with credentials. (C)

What issue arises from the collection of personal data by organizations?

Legal and ethical conflicts regarding privacy. (A)

What is one important recommendation for maintaining wireless network security?

Regularly update firmware to combat vulnerabilities. (C)

Flashcards

P2P applications

Peer-to-peer applications facilitate meeting room reservations, resource management, and online collaboration via web and video conferencing.

M2M, M2P, P2P interaction

This interaction provides businesses with actionable insights, automating processes. It's crucial for supply chain visibility.

IoT (Internet of Everything)

IoT connects all aspects of a supply chain, from consumer interest to post-purchase feedback, creating seamless visibility.

Supply Chain Visibility

Real-time understanding of the entire product cycle, from interest to feedback, through inventory, logistics, and production.

Preparing for IoE transition

Includes understanding existing business processes, IT/OT networks, and goals, and then determining technical requirements.

Existing Business Processes

Identifying suppliers, customers, needs, schedule, and steps in the offer creation and delivery process.

Existing IT and OT Networks

Understanding how IT network users interact with resources, accessing the existing infrastructure, identifying components and capabilities, current M2M connections, information generated, integration in processes, and connectivity requirements.

Business Goals and Opportunities

Recognizing profitability, growth, and market share improvements resulting directly from the IoE implementation.

Profitability (IoE)

The potential financial gain from cost efficiencies and improvements resulting from the implementation of the Internet of Everything

Business Growth (IoE)

Increased market share and expansion potential from new insights generated by improved connections and streamlined processes

Customer Satisfaction Impact

Improved responsiveness to customer needs directly affects customer experience and loyalty.

IoE Architecture

An approach to managing interconnected devices and systems using three layers: Application, Platform, and Infrastructure.

Application Layer (IoE)

This quickly responds to changing user needs and usage by automatically adjusting resources.

Platform Layer (IoE)

This layer orchestrates and manages resources, enabling quicker service delivery based on changing demands.

Infrastructure Layer (IoE)

This layer combines power, security, networks, and storage resources (physical and virtual) within the enterprise, cloud, and service providers.

Cloud Service Models (IoE)

The IoE architecture utilizes SaaS, PaaS, and IaaS service models.

Standard Infrastructure

Utilizing standardized protocols and coordinating services to easily integrate across departments and eliminate legacy system costs.

Responsive Software (IoE)

Software that can quickly adapt and adjust to changing demands and needs, making the system more dynamic and efficient.

Holistic Security (IoE)

A security approach that considers all aspects of the system, including infrastructure, software, and data, to ensure comprehensive protection.

Responsive Software

Software that automatically adapts to changing traffic demands and flows, ensuring security and availability without compromise.

Application-Centric Approach

A method of enabling infrastructure to respond to changes in traffic by determining which information is virtualized, moved to the cloud or kept in the fog.

Holistic Security

Securing a network infrastructure from end-to-end by monitoring, detecting, and mitigating threats while ensuring confidentiality, integrity, and availability.

IoE

Internet of Everything, which connects devices within a system to an internet, for example, in retail or manufacturing, public sectors, etc.

Proprietary Ecosystems

Networks and systems using unique, often insecure protocols that don't easily work with standard protocols.

Interoperability

The ability of different systems or networks to work together using common protocols.

Moore's Law

The observation that the number of transistors on microchips tends to double approximately every two years.

Metcalfe's Law

The value of a network is proportional to the square of the number of users connected to it.

Reed's Law

The concept that the value and functionality of cloud-based solutions increases faster if more different types of solutions are used together.

Metcalfe's Law

The value of a network is proportional to the square of the number of users (n^2).

Reed's Law

Network's value grows exponentially (2^n) by considering all possible group sizes (pairs, triples etc) of users.

IoE Security Challenges

Increased network integration in the Internet of Everything (IoE) leads to more decentralization and vulnerabilities.

Adoptable Security

Adjust security levels as the IoE evolves to mitigate risks.

Secure Connections

Maintaining the right security measures for all connections at all times in IoE.

Pervasive Security

Security in the IoE must be consistent, automated, and cover all organizational boundaries.

Security Architecture (IoE)

Security strategy for IoE should go beyond individual device security to encompass the whole network.

Access Control

Policy-based access for users and devices on a distributed network. Includes authentication and authorization for users, and security policy analysis of devices.

Context-aware Policies

Security policies based on context (who, what, when, where, how) using simplified business language. Align with business needs and simplify administration.

Context-aware Inspection & Enforcement

Security enforcement decisions based on network and global intelligence, using flexible deployments (integrated services, appliances, or cloud).

Network & Global Intelligence

Using global data correlation to identify malicious environments, providing insights into threats and network activity for faster protection and policy enforcement.

Firewalls

A barrier between networks. Analyzes network traffic to allow or block based on programmed rules.

Intrusion Prevention Systems (IPS)

Monitors network activities for malicious behavior. Attempts to prevent attacks by blocking offending traffic or connections.

Wireless Security Challenges

Keeping wireless networks secure is harder than wired networks because anyone within range can access them if they have the right credentials.

Wireless Security Implementation

Wireless security measures are primarily applied at the access point where the wireless connection enters the network.

Basic Wireless Security

Strong authentication protocols, strong passwords, security configurations, enabling encryption, updating firmware, and changing default settings.

Wireless Security Vulnerabilities

Even with security measures, a determined attacker with wireless-enabled devices and knowledge of hacking techniques can still gain access.

Security Implications of IoE Devices

Many new, wireless-enabled devices connected to the Internet of Everything (IoE) do not have built-in security.

Security and People

Security relies on having rules and regulations to guide user behavior, setting acceptable actions and access to systems, and educating users.

Security Policy

A document that outlines rules, regulations, and procedures for keeping an organization and its assets secure.

Importance of user Education

User education is the most crucial element of a security policy to ensure that those governed by it understand the regulations and follow them.

Personal Data and IoE

Organizations collect personal data, creating legal and ethical challenges between access and privacy.

Metadata and Data Ownership

Data is enhanced with metadata, creating property characteristics and enabling data exchange in the IoE.

Study Notes

Internet of Everything (IoE)

• IoE connects operational technology (OT) and information technology (IT) systems.
• OT systems handle industrial control and automation.
• OT hardware includes sensors and end devices. Software controls and monitors manufacturing equipment and processes.
• Most OT communication is machine-to-machine (M2M).

Information Technology (IT)

• IT systems consist of network infrastructure, telecommunications, and software applications.
• IT systems process and exchange information between people.

Converging OT and IT

• Simplifying Infrastructure (Simple): Seamlessly combining IT and OT reduces operational costs and increases process efficiency.
• Creating Intelligence and Agility (Smart): Uses analytics from application-centric technologies to improve application performance, generating new service information from the infrastructure.
• Delivering End-to-End Security (Secure): The combined infrastructure defends against attacks and dynamically responds to threats.

M2M (Machine-to-Machine) Connections

• Products with embedded M2M capabilities are often considered "smart products."
• Currently, M2M lacks a standardized device platform.
• Devices use proprietary protocols, limiting cross-platform communication.

M2P (Machine-to-Person) Connections

• M2P allows people to send and receive information from technical systems.
• M2P, M2M, and P2P connections are transactional, moving information in both directions (machines to people and vice versa).

P2P (Person-to-Person) Connections

• P2P connections rely on collaborative solutions, leveraging existing and new network infrastructure, devices, and applications.
• P2P applications manage meeting rooms and resources.
• P2P supports online collaboration via web and video conferencing.

M2M, M2P, P2P Interaction

• Provides organizations and individuals with actionable insights and seamless automation.
• Linking all aspects of the supply chain as IT and OT converge.
• Companies gain immediate visibility into the entire product cycle, from customer interest to post-purchase feedback.

Preparing for IoE Transition

• Understanding existing business processes: Identifying suppliers, customers, customer needs, creation/delivery schedules of offerings.
• Understanding existing IT and OT networks: Analyzing user interaction with network resources, identifying components and capabilities, including data storage and security needs, how current OT systems operate, how M2M connections work and how information is integrated into existing business processes. Identifying proprietary protocol needs.
• Business goals and opportunities: Determining cost and return on investment (ROI) as a result of IoE implementation and improvements; identifying growth opportunities and improved competitive advantages.
• Determining technical requirements: involves standardization, data processing, access, equipment, programming, network management, security, and network scalability.

Potential Constraints

• Budget limitations
• Existing legacy systems
• Cultural challenges
• Policies
• Lack of technical expertise

IoE Architectural Approach

• Three functional layers: application, platform, and infrastructure.
• Reflects cloud computing service models (SaaS, PaaS, IaaS).

Application Layer

• Automated, dynamic, application-centric responses to changing traffic/usage demands.
• Provides intelligence to improve user experiences.
• Integrates traditional IT applications and industry-specific applications.

Platform Layer

• Orchestrates, manages, and adjusts policies based on changing demands.
• Enables faster service delivery.
• Provides applications and users access to needed resources without IT manual configuration changes.
• Improves business agility through new services and analytical applications.

Infrastructure Layer

• Integrates power, security, core networks, physical/virtual resources, and storage.
• Balances hardware and software across enterprises, clouds, and service providers.
• Connects OT and IT connections to IP and Cloud computing/mobile connectivity.

Adjusting Technologies

• Standard Infrastructure: Establishes and implements standardized protocols in end-to-end IP environments, reducing legacy system costs, allowing cross-department collaboration and faster delivery/management of information/security.
• Responsive Software: Enables infrastructure adaptation to changing traffic demands and conditions through application-centric technologies, without security or availability compromises. Determines which information and data to virtualize via the cloud and which to keep in the fog.
• Holistic Security: Secures the entire network infrastructure (end-to-end) using monitoring technologies to detect, mitigate threats, and ensure confidentiality, integrity, and availability of data.

IoE Examples

• Retail and manufacturing
• Customer experience
• Innovation
• Employee productivity
• Asset utilization
• Supply chain
• Public sector
• Increase revenue
• Reduced costs
• Employee productivity
• Citizen experience/defense
• Service Providers
• Enterprise optimization
• Services differentiation
• Growth opportunities

Proprietary Ecosystems

• OT networks often use proprietary protocols that may be insecure.

Technological Growth

• Moore's Law: Transistor counts on integrated circuits double approximately every two years, increasing processing capacity.
• Metcalfe's Law: The value of a network is proportional to the square of the number of users connected to it.
• Reed's Law: The value of a network grows exponentially as more potential two-person, three-person groups, and so on, are formed.

Security

• Larger, integrated IoE solutions become more decentralized, introducing more access points and vulnerabilities.
• Many IoE devices transmit data from insecure locations.

Adoptable and Real-time Security

• Deploy adaptable, real-time security as businesses grow, adjusting levels to minimize risk.

Secure and Dynamic Connections

• Ensures the right security level is in place for all connections at all times, helping meet regulatory and privacy compliance.
• Protects all assets, including intellectual property, data, employees, and buildings.

Protecting Customer & Brand Trust

• Minimizes impact/costs of security breaches with a seamless security strategy.
• Security breaches damage customer confidence and brand integrity.
• Security strategy must detect, confirm, mitigate, and remedy threats across the entire organization.

Pervasive Security

• Security must be pervasive in IoE systems across organizations and secure boundaries.
• Enforces consistency, automation, and dynamic security threat recognition with real-time predictive analytics.
• Provides visibility across all connections and infrastructure elements.
• Allows scalability to accommodate growth, real-time responsiveness, and end-to-end coverage.

Security Architecture

• Securing individual IoE devices is insufficient; a truly secure IoE needs an end-to-end solution.
• Includes access control, context-aware policies and inspection/enforcement, and network and global intelligence.

Access Control

• Policy-based access for users and devices on the distributed network.
• Users are authenticated and authorized, including end devices.
• Non-authenticating devices (printers, cameras, etc.) are identified/inventoried.

Context-Aware Policies

• Uses simplified descriptive business language defining security policies based on the situation's context.
• Align with business policies and are simple to administer.
• Improve security and help meet compliance objectives.

Context-Aware Inspection and Enforcement

• Uses network and global intelligence to make security enforcement decisions.
• Offers flexible deployment options (integrated services, standalone devices, Cloud-based services).

Network and Global Intelligence

• Correlates global data to identify malicious activity within environments.
• Provides deep network activity insights and accurate protection and policy enforcement.

Cisco Security Architecture (Diagram)

• Shows a hierarchical view with layers for management, platform, infrastructure with devices, APIs, and related functions.

Security Devices

• Firewalls analyze network traffic to determine allowed traffic.
• Intrusion Prevention Systems monitor network activities, identifying and attempting to prevent malicious activity.

Wireless Security

• Wireless networks are more vulnerable due to more access points.
• Implement strong authentication protocols, administrative security, encryption, default settings changes, and firmware updates.
• Many IoE devices may not support wireless security functionality, and these connections must still pass through security devices.

Security and People

• Malicious intent and security mistakes can put equipment and data at risk.
• Security policies and regulations define user behavior, acceptable actions, and data access methods.

Security Policy

• Defines rules, regulations, and procedures.
• Is divided into areas to address specific risks.
• User education is an important part of the policy.

Personal Data and IoE

• Organizations collect personal data, creating a struggle between access and privacy.
• Data is enhanced with metadata, which makes it "exchangeable property".
• Auditable data helps enforce privacy policies and regulations.

Categories of Personal Data

• Volunteered data (social media profiles)
• Observed data (location data)
• Inferred data (credit scores)