New Report Outlines Security Considerations for LPWA Technology

May 8, 2017

Information security analysts, Franklin Heath, have released an independent report that compares and contrasts the security features of five different Low Power Wide Area (LPWA) network technologies for several typical IoT use cases such as Smart Agriculture, Smart Street Lighting, Smoke Detectors, Water Meters and Smart Meters. It assesses the security features of three 3GPP standardised Mobile IoT technologies that operate in licensed spectrum, LTE-M, NB-IoT and EC-GSM-IoT as well as unlicensed spectrum technologies LoRaWAN and Sigfox.

The detailed report, which can be downloaded here, argues that organisations must work out what level of security they need in addition to other considerations such as cost, long battery life and network coverage when considering a LPWA solution, it is still an important element that must be factored into any decision making process. It highlights how IoT security needs are driven largely by privacy and safety concerns and any deployment using LPWA technologies should be subject to a security risk assessment using tools such as the GSMA IoT Security Assessment.

Some important network security factors highlighted in the report that should be considered as part of any such assessment include:

  • Bandwidth, including Maximum Downlink and Uplink Data RatesThis may limit the security features that can be supported by the LPWA network or implemented in the application layer.
  • Daily Downlink and Uplink ThroughputLPWA devices do not typically transmit or receive data all of the time which can impact security features such as over-the-air security updates.
  • Authentication – Device, Subscriber and Network Secure network connectivity requires a number of different parties to authenticate themselves to each other such as the device, the subscriber and the network provider – the technology must protect against the ‘spoofing’ of these parties by malicious actors.
  • Data ConfidentialityEncryption is typically used to keep data safe from being intercepted by an attacker. Trust in this can be increased by establishing end-to-end security at the application layer.
  • Key Provisioning – Cryptographic techniques for authentication, confidentiality and integrity all rely on cryptographic keys being securely shared between parties.
  • Certified Equipment – In many markets there are legal requirement for devices with radio transmission to have approval or certification before being sold. This is an opportunity for security features to be verified.
  • IP NetworkUse of IP can open up the possibility of attack on devices from the internet and IP security features must be considered.

The report concludes that Mobile IoT technologies, such as LTE-M and NB-IoT support the necessary security features to provide adequate security for all of the use case examples. Noting that some of these security features are optional and must be enabled by the network operator.

The report stresses that following security guidelines, such as the GSMA IoT Security Guidelines, can help companies deploying IoT sevices ensure that they are making the right technology choices and are aware of the security implications of their approach.

To download the report go here. Follow these links to find out more about the GSMA’s work on LPWA networks and IoT Security.

Back

KT MEG: Korea’s Smart Energy System KT-MEG is an IoT demand response platform that uses micro grids, cloud-based analytics and variety of mobile networks and communication mediums to manage the supply and consumpti...

Read more | See all Resources

On-Demand Webinar: Mobile IoT (LPWA) for Smart Cities Mobile IoT, also known as Low Power Wide Area (LPWA) in licensed spectrum, is ideal for smart cities solutions. Benefited from its low power consumption, low device cost, long ba...

Read more | See all Resources

Addressing Air Quality with IoT & Big Data A Value Generation Guide for Mobile Operators Air quality within cities represents a global challenge for governments, regulators, city administrators and citizens. Much of the h...

Read more | See all Resources

On-Demand Webinar: Mobile IoT (LPWA) for Utilities Mobile IoT technologies, also known as low power wide area (LPWA), serve a diverse range of vertical industries and applications that use low data rates, require long battery liv...

Read more | See all Resources

Smarter and Safer Driving: The Rollout of Cellular V2X Services in Europe Cellular Vehicle-to-Everything (Cellular V2X) describes a set of technologies that allow vehicles to communicate with each other and other smart transport solutions via existing ...

Read more | See all Resources

Presentations from the 5th Global Mobile IoT Summit At the 5th GSMA Global Mobile IoT Summit, leading experts, including Ankur Bhan and Dr George Karam (Sequans), explored the ongoing commercialisation of licensed spectrum LPWA ne...

Read more | See all Resources

Ecosystem Meets at Turning Point for Connected Vehicles Dr Shane Rooney, IoT Executive Director, GSMA As we look ahead to 2026, connected vehicles constitute one of the greatest areas of promise for the industry.  Analyst house Machi...

Read more | See all Industry News

Mobile IoT to Help Utilities Meet Phenomenal Demand for Smart Capabilities Of all the industries set to deploy IoT technology in the years ahead, those in the utilities sector have among the most to gain.  That was a key take-away from discussions at t...

Read more | See all Industry News

GSMA Mobile IoT Initiative Helping Operators Target European Connected Energy Ma The GSMA today announced that mobile operators deploying new Mobile IoT networks will be able to benefit from the European connected energy market estimated to be worth USD$26 bi...

Read more | See all Industry News

Intelligent Parking to Help Pay for Smart City Development Neill Young, Vertical Innovation Lead, GSMA Smart cities are one of the key beneficiaries of IoT technology, and a key component in making them economical will be intelligent par...

Read more | See all Industry News

Mobile and Auto Industries in Harmony over IoT Technology Dr Shane Rooney, IoT Executive Director, GSMA Connected vehicles are poised to become perhaps the single most noticeable feature of IoT in daily life. Bringing cars online will m...

Read more | See all Industry News

Interview: Setting the Pace for the Industry Craig Miller explains how Sequans plans to lead the development of Mobile Internet of Things chipsets   Craig Miller, VP of Marketing, Sequans In the fourth quarter of 2016,...

Read more | See all Industry News

Masterclass: Smarter Cities Powered by Mobile November 29, 2017 This webinar offers an expert view into how cities can become more efficient by partnering with mobile network operators. Some of the key questions which will be explor...

Read more | See all Connected Living Events

International Advanced Mobility Forum 2017 November 30, 2017 The connected vehicle market is one of the highest growth areas of the Internet of Things, with a potential application revenue of $USD 253 billion by 2025 (Machina Res...

Read more | See all Connected Living Events

LPWA Americas 2017 December 05, 2017 REGISTER HERE Mobile IoT refers to low power wide area (LPWA) 3GPP standardised secure operator managed IoT networks in licensed spectrum. In particular, LPWA networks ...

Read more | See all Connected Living Events

Webinar: Mobile IoT (LPWA) – Moving to Global Deployment December 06, 2017 Mobile IoT, also known as Low Power Wide Area (LPWA) in licensed spectrum, represents a rapidly growing market opportunity. Machina Research estimate that by 2025, LPWA...

Read more | See all Connected Living Events

GSMA Internet of Things at 5G for Automotive December 12, 2017 New Methods of Security in the Automotive Network Wednesday, 13 December – 13:50 Join Dr. Shane Rooney as he elaborates on new methods of security in the automoti...

Read more | See all Connected Living Events

Webinar: The Invisible Threat – Mitigating Risks to Secure the IoT and Our December 14, 2017 Recent headline-grabbing cybersecurity attacks, such as the ‘Reaper’ Botnet and the ‘KRACK’ WiFi vulnerability, have shown that hackers pose a serious threat to...

Read more | See all Connected Living Events

Contact GSMA Legal Email Preference Centre Copyright © 2017 GSMA. GSM and the GSM Logo are registered and owned by the GSMA.