Spitballing IoT Security

Jean-Francois Mezei jfmezei_nanog at vaxination.ca
Wed Oct 26 21:10:44 UTC 2016

On 2016-10-26 16:58, Mark Andrews wrote:
> Actually things have changed a lot in a positive direction.
> * Router manufactures are using device specific passwords.
> * Microsoft, Apple, Linux and *BSD issue regular fixes for their
>   products and users do intall them.
> * My smart TV has automatic updates available and turned on.
> * Other products do the same.

My smart TV not only hasn't gotten updates in years, but Sharp has
stopped selling TVs in Canada. (not sure if they still sell TVs elsewhere).

When manufacturers provide a 2 year support on a device that will last
10 years, it is a problem which is why they really need to get it right
when product is released and not rely on patches.

With regards to liability. Good luck suing a chinese outfit that no
longer exists.

And pray tell, who gets to pay the millions of dollars of lawyer fees it
will cost to sue that bankrupt company with no money ?

More information about the NANOG mailing list