Smart cities need to spend more on cyber-security

August 30, 2019

Plans for Sidewalk Labs Quayside Development in Toronto | Sidewalk Labs

As smart cities grow and become more interconnected, their decision to underfund cyber-security may make it harder for them to achieve their development goals.

According to a report by Smart Cities World and ABI Research, $135 billion is likely to be spent on cybersecurity to protect critical infrastructure between now and 2024. Most of this money will be devoted to "financial; information and communication technologies (ICT); and defense industries.” This means that energy, transport, waste, water, and other crucial services will be, underfunded, and thus, more vulnerable to cyber-attack.

Smart cities are urban developments that work with technology to provide better and improved services. They are built up of “independent network of devices, systems, platforms and users”, and focus on different things such as energy, transportation, e-government, and telemedicine, among others.

According to ABI Research, smart cities are particularly vulnerable to system lockdowns caused by ransomware. This includes, especially, the failure of low-power wide-area networks (LPWAN), device communication hijacking or sensor data manipulation. Every smart city service is only as secure as its “weakest link".

One of the key features of smart cities is the connectivity of devices are around the city. According to the article, "there will be approximately 1.3 billion wide-area network smart city connections by 2024”, 50% of which will be low-power wide-area networks (LPWAN). These are networks focused on providing connectivity to a vast number of devices distributed over a wide-area, using a limited amount energy. Many smart cities use them to connect sensors distributed in their territories. Although some LPWANs (such as are narrow-band IoT networks) are taking into account digital and communications security concerns, the article warns that they may be inadvertently creating greater vulnerability to cyber threats. The main reason for this is that these networks focus on maximizing network coverage, reducing bandwidth cost and lowering connectivity's latency.

The ABI article emphasizes that smart cities are more vulnerable to cyber-threats than other municipalities. In other words, as cities become “smarter” their dependence on technology, networks and software grow. As this happens, they will inevitably be exposed to far more cyber-security vulnerabilities. The lack of spending on digital security will only worsen the situation.

MIT Cybersecurity Clinic

The new MIT Cybersecurity Clinic (11.274 and 11.074) will be offered in both the fall and spring semester at MIT.

The Cybersecurity Clinic will consist of four-modules : Cybersecurity for Critical Urban Infrastructure: Understanding the Problem; How the MIT Cybersecurity Clinic Makes Initial Contact with potential Client Agencies; Onsite Assessment of Cybersecurity Vulnerability by MIT Clinic Staff; and Prepare and Submit a Final Cybersecurity Vulnerability Assessment to a Client Agency. MIT students who want to take on field assignments with the Cybersecurity Clinic (for academic credit) must pass the certification examination offered at the end of the fourth module.

Students who have achieved certification, will work in teams supervised by advanced doctoral and post-doctoral students during the last nine weeks of the spring semester to collaborate with an assigned client agency to prepare a Cyberattack Vulnerability Assessment for a client agency.

Social Cyberdefense of Critical Urban Infrastructure

MIT Cybersecurity Clinic

Who We ARe

Resources

About this Blog

Recent Blogs