Lighting Goes Smart – Should We Care About Cybersecurity?
At the advent of the European Cybersecurity Act, this question gains momentum. As a presentation has been held by UL already at LpS 2015, this presentation will focus on news in terms of regulatory and standards developments, technology developments such as IoT and Cloud management systems as well as the cybersecurity landscape, which embraces both poles.
Cybersecurity needs to be considered for smart lighting devices, be it in the B-to-B or in the B-to-C space. In the meantime standards are available to evaluate smart lighting products as well as Cloud based management services effectively and efficiently. For manufacturers there is a need to tackle cybersecurity proactively to prevent harm to their company or their customer’s one or to the consumer. As modern lighting solutions are supposed to have a long life time and little or no maintenance options, cybersecurity resilience needs to get built-in heads-up for such time spans – also to protect the manufacturer from potential liability issues.
In the presentation we will show the big picture on how to take control over cybersecurity and compliance issues, what can be done today and what is needed to be prepared for tomorrow. A engineering based approach to cybersecurity is most cost effective and puts the manufacturer in a superior market position. UL as a standards development organization (SDO) has developed cybersecurity standards which have been adopted in multiple countries. Around those UL provides advisory, testing and certification services which allow manufacturers to take advantage of UL’s cybersecurity expertise. We will provide an overview of those.
The market is moving pretty fast and so do the regulators. Since 25th of May 2018, the European General Data Protection Regulation is in effect. It means for manufacturers of smart lighting devices or cloud based management services that they have to be compliant also to this regulation, not to forget that potential penalties are very high. In the presentation we will speak about how to get control also over GDPR related effects.