GlobeNewswire

Improving Security Solutions Could Grow the Internet of Things Cybersecurity Market by $9-$11 Billion

Dela

New Bain & Company research identifies four steps IoT device vendors can take to address  security concerns that are holding back further growth in this market

 

NEW YORK, May 30, 2018 (GLOBE NEWSWIRE) -- Security concerns are a significant roadblock to investment in the Internet of Things (IoT).  According to a new Bain & Company report, Cybersecurity is the Key to Unlocking Demand in IoT 45 percent of IoT buyers say concerns about security remain a significant barrier and are hindering the adoption of IoT devices. 

If vendors could provide better security, enterprise customers surveyed say they would be willing to buy, on average, at least 70 percent more IoT devices.  In addition, 93 percent of executives said they would pay more for devices with better security - about 22 percent more on average.  Taken together, Bain & Company estimates that improving security solutions for these devices could grow the IoT cybersecurity market by $9-$11 billion.  For IoT device vendors - companies that make IoT devices as well as those that provide related solutions - the message is clear: improve security to gain a competitive edge and grow your market.

These are among Bain & Company's findings over the last three years and new, recently completed research on IoT security. 

"We expect growth in the markets that comprise the IoT to continue full steam ahead, but issues around security concerns could derail that progress," said Ann Bosche, a partner in Bain & Company's Telcom, Media and Technology Practice.  "Enterprise customers are moving cautiously until they can gain some reasonable assurance of the security of their data and operations, which increasingly rely on devices, sensors and the Internet of Things."

The Bain & Company survey found most executives (60 percent) said they were very concerned about the risks IoT devices pose to their companies - not surprising, given the damage that an IoT security breach can cause to operations, revenues and safety.

In determining solutions to guard against attacks, IoT device vendors can segment their target customers by levels of cybersecurity capability maturity.  The research finds that customers at the least-advanced end of the spectrum are more likely to seek out simplified and integrated security solutions, whereas those with more advanced capabilities prefer to invest in best-of-breed or customized point solutions.

Further, across segments, nearly all executives - 90 percent - said that IoT devices pose a moderate or significant risk to their organizations, and executives in companies with greater cybersecurity sophistication see more risk than those in less sophisticated companies.

The research also found that executives in some industries see themselves at greater risk than others. Those in durable goods, building and construction, energy and utilities, financial services, and technology were most likely to express a significant level of concern.

In response to these risks, executives who manage security said that, as customers, they want solutions that are highly effective, easy to integrate, and flexible to deploy.

Companies take a range of approaches to meet their security needs, based on their capabilities and the availability of marketplace solutions from vendors.  Only about a third of IoT cybersecurity solutions used today are from IoT device vendors, indicating that vendors are either not offering holistic, high quality, solutions that meet consumer needs or they are not promoting them well enough. Bain & Company found that companies with the most advanced cybersecurity capabilities rely more on internally developed security solutions, not only because they may have more complex needs but because they are more likely to have the talent and capabilities to develop their own solutions. Companies with ad hoc security capabilities have the most gaps across all IoT layers tested.

The research also looked at how companies deploy solutions by layer of security and found ample opportunity for IoT device vendors at every layer of the stack.   The access interface layer has the greatest level of protection, whether developed internally or provided by a manufacturer or third party. Other layers of the stack were protected by more internal solutions - or, in some cases, none at all. Customers' preference for internal solutions may be partially explained by considering the specific conditions of each layer. For example, data security solutions typically require more computing and power resources than are currently available on basic IoT devices. 

"Most enterprises want a cohesive set of tools and a unified overview of the security posture of their devices, but few IoT device makers understand their customers' operations well enough to provide that kind of solution," said Syed Ali, a cybersecurity expert in Bain & Company's IT Practice.  "Lacking well-designed IoT cybersecurity products and services, customers are devising their own solutions, foregoing them altogether, or failing to implement IOT solutions until vendors can fill the gap."

All IoT device vendors will need to pay more attention to security in the design, development and deployment of devices. Four steps can help executives frame their task:

  1. Understand how customers are using devices. Staying current by refreshing their understanding of customer use cases every 12 to 18 months will allow them to stay on top of evolving security requirements, and help identify unmet needs. Ascertaining the average cybersecurity maturity level of their customers will help manufacturers invest in the right out-of-the-box and add-on solutions.
     
  2. Provide cybersecurity capabilities on the device and, where possible, partner with trusted cybersecurity vendors to provide additional solutions. Engineering teams should embed secure development practices in the software and hardware components of the device, and provide inherent solutions for the access interface, apps, data and device layers. Taking these measures can mitigate common vulnerabilities in IoT devices today such as default or embedded passwords, lack of data security for credentials and network communications, and weak safeguards for ensuring system integrity.
     
  3. Meet quality assurance thresholds and be able to certify that their IoT devices are free from known vulnerabilities. This would mitigate a major pain point for customers who sometimes install new devices without realizing they contain vulnerabilities. Deploying a more methodical process to identify and remove vulnerabilities across layers or engaging third-party vulnerability scanning and or penetration test firms can help manufacturers meet this bar.
     
  4. Fulfill their obligations during the warranty period by continuously testing for new vulnerabilities, providing software and firmware updates, as well as feature and functionality upgrades for out-of-box and aftermarket solutions. Delivering updates to firmware, operating systems and applications in response to newly discovered security vulnerabilities should remain a top priority through the warranty period.

"IoT device vendors and ecosystem players that move quickly to improve the security around IoT devices are likely to reap rewards not only from their ability to earn a premium, but also from an expanded market," said Frank Ford, a partner in Bain & Company's IT Practice.  "These four steps are a start, though by no means, the whole of what it will take to begin to address the security concerns that are holding back growth of the IoT."

Editor's Note: To arrange an interview, contact Dan Pinkney at dan.pinkney@bain.com or +1 646 562 8102

About Bain & Company 
Bain & Company is the management consulting firm that the world's business leaders come to when they want results. Bain advises clients on strategy, operations, information technology, organization, private equity, digital transformation and strategy, and mergers and acquisition, developing practical insights that clients act on and transferring skills that make change stick.  The firm aligns its incentives with clients by linking its fees to their results.  Bain clients have outperformed the stock market 4 to 1. Founded in 1973, Bain has 55 offices in 36 countries, and its deep expertise and client roster cross every industry and economic sector. For more information visit: www.bain.com.  Follow us on Twitter @BainAlerts.

Media Contact:

Dan Pinkney
Bain & Company
Tel: +1 646 562 8102
dan.pinkney@bain.com




This announcement is distributed by Nasdaq Corporate Solutions on behalf of Nasdaq Corporate Solutions clients.
The issuer of this announcement warrants that they are solely responsible for the content, accuracy and originality of the information contained therein.
Source: Bain & Company via Globenewswire

Om

GlobeNewswire



Följ GlobeNewswire

Abonnera på våra pressmeddelanden.

Senaste pressmeddelandena från GlobeNewswire

Oboya signs a cooperation agreement with Gaia regarding biomaterials13.12.2018 11:41Pressmeddelande

Oboya Horticulture Industries AB (publ) ("Oboya") has signed an important and long-term cooperation agreement on environmentally friendly biomaterials with Gaia Biomaterials AB ("Gaia") in Helsingborg, Sweden. The agreement means that Oboya uses Gaias biomaterials for the production and development of environmentally friendly cultivation products for the cultivation industry. Oboya has been actively involved in innovation, environmental and sustainability issues in recent years, and our goal is to encourage environmental and sustainability in the cultivation industry by offering environmentally friendly cultivation products to our customers. Oboya believes that the use of biomaterials will be important for success in the conversion to a fossil-free cultivation industry worldwide. The cooperation agreement means that Oboya uses Gaias biomaterials in its production and that through Gaias expertise we can develop new environmentally friendly cultivation products. Gaias biomaterials are bi

Oboya tecknar ett samarbetsavtal med Gaia avseende biomaterial13.12.2018 11:41Pressmeddelande

Oboya Horticulture Industries AB (publ) ("Oboya") har tecknat ett viktigt och långsiktigt samarbetsavtal avseende miljövänligt biomaterial med Gaia Biomaterials AB ("Gaia") i Helsingborg, Sverige. Avtalet innebär att Oboya använder Gaias biomaterial för tillverkning och utveckling av miljövänliga odlingsprodukter till odlingsindustrin. Oboya har under de senaste åren arbetat aktivt med innovation, miljö- och hållbarhetsfrågor och vårt mål är att främja miljö och hållbarhet inom odlingsindustrin genom att erbjuda miljövänliga odlingsprodukter till våra kunder. Oboya anser att användningen av biomaterial kommer att vara viktigt för framgång i omställningen till en fossilfri odlingsindustri världen över. Samarbetsavtalet innebär att Oboya använder Gaias biomaterial i sin produktion och att vi genom Gaias kompetens kan utveckla nya miljövänliga odlingsprodukter. Gaias biomaterial är biologiskt nedbrytbart, komposterbart samt ger upp till 80 % lägre koldioxidutsläpp vid förbränning jämfört

Stillfront: Simutronics reclaims publishing services10.12.2018 14:11Pressmeddelande

PRESS RELEASE December 10, 2018 Simutronics reclaims the publishing services for SIEGE: Titan Wars globally except China Simutronics Corp, a studio within Stillfront Group AB, has ended a co-publishing agreement regarding the mobile game SIEGE: Titan Wars with New York based publishing partner Tilting Point. According to a new agreement, Tilting Point will continue to provide publishing services and market the game in China but Simutronics will run the publishing services and marketing globally from the Group going forward. Simutronics is a leading developer of online roleplaying and mobile games such as DragonRealms, GemStone IV and Lara Croft Relic Run, the latter with more than 23 million downloads. Tilting Point is a new-generation games partner that provides top development studios with expert resources, services, and operational support to optimize high quality live games for success. "I am very pleased to continue the partnership with Tilting Point for the Chinese market as this

Stillfront: Simutronics återtar förläggartjänster10.12.2018 14:11Pressmeddelande

PRESSMEDDELANDE 2018-12-10 Simutronics återtar förläggartjänster för SIEGE: Titan Wars globalt med undantag för Kina Simutronics, en studio inom Stillfront Group, har avslutat ett medförläggaravtal avseende mobilspelet SIEGE: Titan Wars med den New York-baserade förläggarpartnern Tilting Point. Enligt ett nytt avtal kommer Tilting Point fortsatt att tillhandahålla förläggartjänster och marknadsföring av spelet i Kina men på global nivå kommer Simutronics att ansvara för förläggartjänster och marknadsföring av spelet från gruppen. Simutronics är en ledande utvecklare av rollspel och mobila spel som till exempel DragonRealms, GemStone IV och Lara Croft Relic Run, den sistnämnda med mer än 23 miljoner nedladdningar. Tilting Point är den nya generationens spelbolagspartner som förser ledande utvecklingsstudios med expertis, tjänster och operationell support för att optimera högkvalitativa livespel framgångsrikt. "Jag är mycket nöjd över det fortsatta partnerskapet med Tilting Point för den

Karolinska Development's portfolio company Aprea Therapeutics presents continued positive results from a Phase Ib/II study of APR 2462.12.2018 18:00Pressmeddelande

STOCKHOLM, December 2, 2018. Karolinska Development's portfolio company Aprea Therapeutics today presented positive clinical results for its drug candidate APR 246 at the 2018 American Society of Hematology (ASH) Annual Meeting in San Diego, US. An Overall Response Rate of 95% and a Complete Remission (CR) rate of 70% were achieved in an ongoing Phase I/II combination study of APR 246 and azacitidine (AZA) for the treatment of TP53 mutated Myelodysplastic Syndrome (MDS). No dose-limiting toxicities have been observed. Based on these encouraging data, Aprea intends to progress APR 246 into a Phase III study in the near future. The results presented at the ASH meeting is based on 20 patients with TP53 mutated MDS. The overall response rate was 95%, and 14 (70%) patients achieved a complete remission at data cutoff. These findings were accompanied by a deep molecular remission in the majority of patients as assessed by serial TP53 analysis. No dose-limiting toxicities have been experience

Karolinska Development's portfolio company Aprea Therapeutics presents continued positive results from a Phase Ib/II study of APR 2462.12.2018 18:00Pressmeddelande

STOCKHOLM, December 2, 2018. Karolinska Development's portfolio company Aprea Therapeutics today presented positive clinical results for its drug candidate APR 246 at the 2018 American Society of Hematology (ASH) Annual Meeting in San Diego, US. An Overall Response Rate of 95% and a Complete Remission (CR) rate of 70% were achieved in an ongoing Phase I/II combination study of APR 246 and azacitidine (AZA) for the treatment of TP53 mutated Myelodysplastic Syndrome (MDS). No dose-limiting toxicities have been observed. Based on these encouraging data, Aprea intends to progress APR 246 into a Phase III study in the near future. The results presented at the ASH meeting is based on 20 patients with TP53 mutated MDS. The overall response rate was 95%, and 14 (70%) patients achieved a complete remission at data cutoff. These findings were accompanied by a deep molecular remission in the majority of patients as assessed by serial TP53 analysis. No dose-limiting toxicities have been experience

I vårt pressrum kan du läsa de senaste pressmeddelandena, få tillgång till pressmaterial och hitta kontaktinformation.

Besök vårt pressrum