PTC seeks collaboration to tackle IoT security
August 23, 2018
Massachusetts-based software company PTC has launched a cyber-security initiative to collaborate with customers, partners and researchers for more secure and resilient IoT deployments. The programme aims to address product vulnerabilities as part of a shared responsibility model.
Continuing its commitment to promoting shared responsibility for safe and secure IoT deployments, PTC has unveiled the CVD coordinated vulnerability disclosure programme designed to support the reporting and remediation of security vulnerabilities that could potentially affect the environments in which PTC products operate, including industrial and safety-critical industries.
The programme is an essential component of PTC’s shared responsibility model, which defines a framework for cyber-security collaboration with customers, partners and others within the industry. PTC’s CEO Jim Heppelmann highlighted this thought-leadership during his keynote presentation at the recent LiveWorx industry event, inviting partners and customers to work together with PTC to improve security by taking responsibility – and embracing speed – for the security responsibilities under their control.
The programme seeks contributions from external researchers who detect vulnerabilities in PTC’s ThingWorx-branded products. PTC invites private individuals and organisations to report security vulnerabilities following a well-defined process, which aligns with the National Telecommunications & Information Administration (NTIA) safety working group’s template. This programme is said to ensure that researchers can count on PTC to cooperate to protect its customers and the safety and privacy of the public.
“Sophisticated software and hyper-connectivity are fuelling innovation at an unprecedented pace,” said Joshua Corman, SVP and chief security officer for PTC. “Those conditions can potentially introduce new classes of accidents and adversaries. In this new world order, cyber safety and security must become everyone’s responsibility, and we must work together to address such threats. PTC’s CVD programme is one significant step towards such collaboration, inviting private individuals and organisations to identify and communicate security vulnerabilities in a way that we can quickly assess, mitigate and take corrective action to help further secure our products and customer implementations.”
The IoT market is at a tipping point, with IoT spending expected to reach $1.2tn in 2022, according to a recent IDC guide.
“As organisations continue to invest in IoT, it is equally important that efforts are made across the entire IoT ecosystem to secure these end points and environments,” said Stacy Crook, research director for IoT at IDC.
PTC helps companies around the world reinvent the way they design, manufacture, operate and service products in and for a smart, connected world. With PTC, manufacturers and an ecosystem of partners and developers hope to capitalise on the promise of the IoT and augmented reality technology.