Vanderbilt Industries

Advancements in AI, as well as Internet of Things (IoT) connected devices, have made it possible for cities to increase efficiencies across services like transportation, water management, and healthcare. To do this, smart cities rely on interconnected devices to streamline and improve city services based on rich, real-time data.

However, the fast adoption pace of networked technologies is potentially creating a deep well of vulnerabilities. There are already millions of smart home devices in the world, including smart alarms, locks, lighting, baby monitors, and thermostats and televisions. It is predicted that there will be more than 21 billion connected devices by 2020.

Consequences of information getting hacked

As smart cities rely on accurate data to properly function, if information is hacked, it has the potential to bring a city to a standstill. For instance, traffic control systems could be exploited to cause jams or crashes. Other risks include subways grinding to a halt, or water supplies being contaminated.

Targeting people opens the door to the ‘weakest link’ and can uncover vulnerabilities such as lack of authentication and encryption

This scenario is not as far-fetched as it may sound. In 2011, hackers gained control of the water control system in Ohio and destroyed a pump that serviced 2,200 customers. Furthermore, hacking entry points can be quite straightforward to unleash this chaos. For instance, smart lights bulbs and vending machines on a college campus were recently used as a starting point to launch a cyberattack against an unnamed university in the US.

Targeting people to hack data

The most obvious low hanging fruit when targeting smart cities will be to target people. Targeting people opens the door to the ‘weakest link’ and can uncover vulnerabilities such as lack of authentication and encryption, and weak password storage that can allow attackers to gain access to systems.

Given the huge quantity of smart devices now in our everyday life, defending against the sheer volume of attacks will become a challenge for smart cities. In a report by Cisco Cybersecurity in 2017, 35 percent of chief information security officers and security operations professionals said they see thousands of daily cyber threats, but only 44 percent are investigated.

Implementing best data security measures

Realistically, in the environment of a smart city, from smart meters to intelligent transportation infrastructure and sensors, they are likely to capture a lot of data about us as individuals. This data may be used to provide better services, efficiency, and other smart-city goals. That said, this also means lots of data, including personal information, is collected, stored, and used in a smart city. This will make smart cities a very tempting target to attack for hackers. That is why it is crucial that best security practices are built into a smart city’s means of data-gathering and processing.

The SPC intruder detection system has been designed so that should an attack penetrate, such as Denial-of-Service, the system has multiple communication paths available as a backup

For instance, the amount of data that IoT devices can create is colossus. A Federal Trade Commission report entitled ‘Internet of Things: Privacy & Security in a Connected World’ found that less than 10,000 households can produce 150 million distinct data points daily.

SPC intruder detection system

Physical security has moved from being very simple inputs and outputs, to being always-connected devices. This makes the industry very much part of the IoT world. This has changed how Vanderbilt thinks when designing and developing their own security systems, in particular SPC. This intruder detection system has been designed so that should an attack penetrate, such as Denial-of-Service, the system has multiple communication paths available as a backup.

Therefore, if one server is flooded and taken down, the system can immediately switch to a backup server and then change communication paths to bypass the attack and ensure messages still operate successfully. So, the system will remain operational, and it will still be able to communicate out, but it will start to shut down elements of itself to protect the system from further damage in the attack.

Advantages of smart cities

Of course, it is not all doom and gloom. Smart cities are springing up at a rapid rate for a reason. In Barcelona, smart water meter technology is helping the city save $58 million per year. In South Korea, one city cut building operating costs by 30 percent after implementing smart sensors to regulate water and electricity usage.

According to the United Nations, 66 percent of the world’s population will live in cities by 2050. This will have many varying effects, including in transportation, energy, and health and safety. Cities consume 75 percent of all energy and are responsible for 40 percent to 60 percent of greenhouse gasses. Air quality remains a concern, including so-called ‘black rivers’ of pollution in urban areas that are leading to an increase of respiratory disease.

Employing more machine learning algorithms to scour the web for vulnerabilities ahead of time could be a possible solution to combat vulnerabilities

The impact of congestion on emergency response and waste management also must come into consideration. As seen by the success stories in Barcelona and South Korea, smart cities can help combat these problems and thus will play a key role in benefiting the lives of its citizens.

Investing in IT infrastructure to prevent cyberattacks

So, while technology will help to change some of these problems for the better, security for smart cities must come first and foremost. Employing more machine learning algorithms to scour the web for vulnerabilities ahead of time could be a possible solution to combat vulnerabilities.

Naturally, cyberattacks and data breaches can’t be avoided entirely. But rather than trying to accomplish the impossible, smart cities should focus on investment in IT infrastructure capable of resisting outside attacks.

This includes forcibly shutting down potentially hacked systems until security experts can resolve vulnerability issues. One must remember that technology’s growth also means that security defences are developing in parallel. At its core, security is about being continuously observant, following best practices, and being ready and able to react against a security issue.

Deploying network intrusion mechanisms

With IoT devices, security is now an endless game of cat and mouse in staying ahead of the latest threats and hacking innovations. Therefore, vulnerability testing is also a valuable weapon in your overall defensive arsenal. As well, as vulnerability testing its systems, Vanderbilt has various other forms of obstacles and barriers to deter and deceive would-be hackers.

The encryption used by FlexC communications between panels and the cloud is an AES 256-bit SSL encryption

Encrypting sensitive data and deploying network intrusion mechanisms that can regularly scan for suspicious activity and protect against hackers trying to breach control systems remotely is also another key step to take.

FlexC, Vanderbilt’s communications protocol, was built from the ground up solely with cybersecurity in mind. The protocol is a bespoke design that ensures everything is encrypted, all communications are monitored, and multiple types of attack are considered for defensive purposes to provide the best security possible. The encryption used by FlexC communications between panels and the cloud is an AES 256-bit SSL encryption.

Adding an extra layer of security

By encrypting anything before you send it to the cloud, it adds an extra cushion of control and power over that data. It not only provides an added defensive structure around a company's information, but it also adds peace of mind to the equation when relaying this data to the cloud.

Having an environment within the software industry of open disclosures only means that we can learn from mistakes, we can see how hackers are attempting to breach systems, and ultimately, it can help us stay ahead of the curve and one-step clear of hackers’ latest intentions. When vulnerabilities are reported, it just means that testing down the line will improve.

However, one of the most obvious places to start is to choose equipment from reliable suppliers that have a knowledge and interest in cybersecurity and are focused on protecting your data. When your security system is designed from the ground up to protect against cyberattacks, naturally your organisation will be in a much better place.

Share with LinkedIn Share with Twitter Share with Facebook Share with Facebook
Download PDF version Download PDF version

Vanderbilt Industries news

Looking back at 2020: Cloud systems expand in shadow of COVID

The cloud is here to stay. Its resilience and ability to connect the world during during the COVID-19 pandemic has proved its worth, even to the uninitiated who have now witnessed first-hand the value of connected systems. Video and access control as a service provides a flexible and fluid security and business solution to meet the demands of a rapidly evolving industry, where the changing threat landscape means investing in the cloud is an investment towards success. This article will look ba...

Vanderbilt highlights important features and uses of their Enterprise Security Management System

Enterprise-level security requires a streamlined approach to access management — and for many of organisations, having a single-source location for integrating a facility’s access control technologies, digital video and alarm monitoring systems is the ideal approach. This is where the Vanderbilt Enterprise Security Management System (SMS) shines. But what else can SMS do for customers? Additional screening measures Here are five little-known functions and facts that one may not kn...

Wisenet WAVE integrated with ACT Enterprise to combine video surveillance and access control

The integration developed between Vanderbilt’s ACT Enterprise access control software platform and Hanwha Techwin’s Wisenet WAVE video management software (VMS), means operators are now able to instantly visually verify access control activity and events directly from ACT Enterprise. ACT Enterprise is a role-based software platform which streamlines the monitoring and management of ACTpro access control systems comprising web-enabled door controller interfaces and MiFare and/or DESf...

Vanderbilt Industries case studies

Oliver Law Security installs Vanderbilt ACT365 security system to protect one of Doncaster’s largest gyms, The Fitness Village

Doncaster Culture and Leisure Trust (DCLT), The Dome, required a new solution that would protect several areas, including one of the largest gym’s in Doncaster, The Fitness Village. Vanderbilt ACT365 system DCLT had a specific brief for this project that specified enhancing the staff and customer experience, while simultaneously providing access control solutions to restricted areas from the general public, members, and staff alike. Oliver Law Security (OLS) Ltd. did not hesitate to rec...

Vanderbilt secures a hospital in Ireland with access control integrated solutions

St. James Hospital in Dublin, Ireland, which has more than 1,000 beds, is a teaching hospital that specialises in not only treatment but health promotion and preventative services at its central location. It is also a central location for the treatment of COVID-19 patients. Tasked with keeping patients and staff safe from the threat posed by the COVID-19 pandemic, St. James Hospital needed a way to add additional screening capabilities to its facility alongside its existing access control termi...

Vanderbilt integrates ACT365 with Mobile BankID to enhance supermarket security at ICA Sweden

Installation company Nessence recently integrated Vanderbilt’s ACT365 cloud-based access control and video management system with Mobile BankID in Sweden. Mobile BankID is a citizen identification solution that allows companies, banks, and government agencies to authenticate and conclude agreements with individuals over the internet. The integration with ACT365 comes together to solve a brief put forward by the supermarket chain, ICA Sweden. Web API for integration Tobias Olofsson, Proj...