BlackBerry Strengthens Bid To Secure IoT

BlackBerry is pressing ahead with its stated ambition to “manage anything with an IP” with the formation of a new security R&D initiative and the release of a public key infrastructure (PKI) certificate for connected devices by the company’s subsidiary, Certicom.

The BlackBerry Center for High Assurance Computing Excellence (CHACE) aims to proactively find vulnerabilities before they happen by creating tools that supersede the existing “fail then patch” approach.

BlackBerry says it would work with key industry groups and academic institutions to address security and privacy concerns for next generation devices and applications.

IoT security

“There’s a belief that the key to the world’s security issues is to patch faster, but this hamster wheel fails to address the root issue,” said David Kleidermacher, BlackBerry Chief Security Officer.  “Systems that require regular patching always contain vulnerabilities unknown to developers, and some of these vulnerabilities are in fact known by would-be attackers.

“Fundamentally, CHACE is about finding and fixing security issues before they ever get into customer’s hands. In the past year alone, we’ve seen widespread issues like FREAK, Heartbleed and POODLE cause havoc across nearly all online technologies. We want to create automated scanning tools to find these issues quickly, efficiently and effectively across all of our products and services.”

CHACE’s initial focus will be to collect best practices and tools in the area of statistical analysis to create a first version toolset for software components. BlackBerry suggests contributions may come from academic partners like UC Santa Barbara, the University of Oxford and the University of Waterloo, Canada.

“It’s clear we must build systems that are provably devoid of security flaws,” added Kleidermacher. “The software and security engineering required to meet this objective is sadly rare today and must become commonplace. CHACE is BlackBerry’s initiative towards this goal, and we welcome all who wish to join the fight.”

Elsewhere, Certicom’s new PKI for the Internet of Things (IoT) will allow device manufacturers and service providers to secure their networks, whether they use the BlackBerry IoT platform or as part of another connected device ecosystem or private infrastructure.

“Strong cryptography and entity authentication are the foundation of IoT security,” said Jim Alfred, Vice President, BlackBerry Technology Solutions, Certicom. “When you manage remote devices, you need to know that you can trust the devices and that your communications network is secured.”

Think you’re a BlackBerry expert? Take our quiz!

Steve McCaskill

Steve McCaskill is editor of TechWeekEurope and ChannelBiz. He joined as a reporter in 2011 and covers all areas of IT, with a particular interest in telecommunications, mobile and networking, along with sports technology.

Recent Posts

Australia Rejects Elon Musk Claim About Social Media Ban For Under-16s

Government minister flatly rejects Elon Musk's “unsurprising” allegation that Australian government seeks control of Internet…

2 hours ago

Northvolt Files For Bankruptcy Protection In US

Northvolt files for Chapter 11 bankruptcy protection in the United States, and CEO and co-founder…

4 hours ago

UK’s CMA Readies Cloud Sector “Behavioural” Remedies – Report

Targetting AWS, Microsoft? British competition regulator soon to announce “behavioural” remedies for cloud sector

19 hours ago

Former Policy Boss At X Nick Pickles, Joins Sam Altman Venture

Move to Elon Musk rival. Former senior executive at X joins Sam Altman's venture formerly…

22 hours ago

Bitcoin Rises Above $96,000 Amid Trump Optimism

Bitcoin price rises towards $100,000, amid investor optimism of friendlier US regulatory landscape under Donald…

23 hours ago

FTX Co-Founder Gary Wang Spared Prison

Judge Kaplan praises former FTX CTO Gary Wang for his co-operation against Sam Bankman-Fried during…

24 hours ago