There are an insane number of devices connected to The Internet, and it’s growing at a crazy rate. In 2012 Cisco estimated around 8.7 billion, and that figure in 2015 jumps to a massive 15 billion.
Think about that for a second.
In three years, the number of devices has grown 58%. If that were to continue, in 15 years there’d be a staggering 146.1 billion devices!
You’re living at the dawn of The Internet of Things. Your fridge. Your toaster. Your thermostat. Your car. You washing machine. Your dishwasher. Even your lightbulbs will be connected.
On the one hand this is really cool. You can control your lights with your phone, and by mining all the data from these devices, perhaps your food shopping can be ordered by your fridge, or your electricity meter can find a cheaper electricity plan? Even your baby’s nappy can tweet when it needs changing!
On the other hand, it presents a problem: to a hacker they all become computers that can be hacked and controlled. In fact, it’s already happened:
In this case, hackers broke into more than 100,000 everyday consumer gadgets, such as home-networking routers, connected multi-media centers, televisions, and at least one refrigerator, Proofpoint says. They then used those objects to send more than 750,000 malicious emails to enterprises and individuals worldwide.
How on Earth is anyone expected to keep these things secure? Most people have trouble keeping their browsers up-to-date, to the point that browsers are now updating themselves automatically. Even assuming these devices can update themselves, they won’t be supported forever. There will come a point in every device’s life where it’ll be abandoned by its manufacturer , replaced with a newer model, and vulnerabilities will no longer be patched.
The Internet of Compromised Things will be compounded by The Internet of Unsupported Things . An Internet where so many of its connected devices are unsupported and vulnerable. And manufacturers have zero incentive to do anything about it. For decades products have been designed to fail:
Planned obsolescence or built-in obsolescence in industrial design is a policy of planning or designing a product with an artificially limited useful life, so it will become obsolete, that is, unfashionable or no longer functional after a certain period of time.
By ending support for Internet connected products, manufacturers are putting users in a precarious position. Although your fridge may work perfectly, it may require replacing due to a software security flaw that will not be patched.
So what can be done about it? Not much.
Manufacturers can’t be expected to support products for eternity, there is a reasonable shelf-life to everything we own. On the other hand, giving users more control over what they buy will certainly help.
By open sourcing the software used in products users will have a chance to fix the problems, or at least find a repair-man/woman that can do it for them. But this requires a huge change in practice from manufacturers that have very little to gain and a lot to lose.