Steps to Implementing Security by Design for IoT

Shelby
Shelby Skrhak
Mar 24, 2020
Chris Francosky Podcast IoT security IoT security by design IoT threat modeling KORE Wireless Promoted Content

 

IoT security by design might seem like a buzzword in that it’s not well-defined in the consumer landscape, but KORE Wireless’s Chris Francosky said the most effective security measures are put in place well before production even begins.

Host Shelby Skrhak sat down with Francosky on this episode of the Industrial IoT podcast, brought to you by MarketScale.

“I’m evangelizing this idea of a five-step process centered around threat modeling, which is at the heart of security by design,” Francosky said.

5 Step Process for Threat Modeling

  1. Define your assets – not only devices, but the data, as well.
  2. Decompose that application through an architecture diagram so you can see clearly how the application is broken up.
  3. Look at each area of the decomposed application and identify threats.
  4. Document threats.
  5. Rate and prioritize threats

How do you recognize threats? In the late 1990s, Microsoft devised an acronym that summarizes the kinds of threats to look for, and it’s still useful today, Francosky said.

The acronym STRIDE stands for Spoofing, Tampering, Repudiation, Information Disclosure, Denial of Service and Escalation of Privilege. These aspects serve as guideposts to help you identify the types of threats you’re looking for.

KORE Wireless offers tool suites to help make IoT security a part of a consistent process.

For the latest news, videos, and podcasts in the IoT Industry, be sure to subscribe to our industry publication.

Follow us on social media for the latest updates in B2B!
Twitter – @MarketScale
Facebook – facebook.com/marketscale
LinkedIn – linkedin.com/company/marketscale

Follow us on social media for the latest updates in B2B!

Image

Latest

AI adoption strategy
The AI Reality Check: Why AI Adoption Strategy, Not Tools, Will Decide the Winners
May 5, 2026

Artificial intelligence has moved from novelty to necessity almost overnight. Since generative AI tools entered the mainstream just a few years ago, organizations across every industry have felt pressure to “do something” with AI—often before they fully understand what that something should be. Research shows that while most companies are experimenting with AI, very…

Read More
Volvo
Inside the Next Era of Trucking: Volvo’s Vision for Autonomous Tech, Driver Experience, and Global Logistics
May 5, 2026

Supply chains are under pressure like never before—fuel prices are volatile, driver shortages persist, and new technologies are rewriting the rules in real time. In fact, at major U.S. truckload carriers, driver turnover has historically exceeded 90% annually—highlighting just how urgent it is to improve both efficiency and the driver experience. Trucking isn’t just…

Read More
healthcare
The Best Healthcare Platforms Are Built on Clear Communication, AI-Human Collaboration, and a Deep Understanding of the “Why”
May 4, 2026

Healthcare is being pushed to modernize faster than ever, as AI tools, virtual care, and digital patient experiences shift from innovation to expectation. Recent survey data from McKinsey & Company indicates that about half of U.S. healthcare leaders say their organizations have already put generative AI into practice, underscoring how quickly the technology is…

Read More
Texas
Policy, Patients, and the Future of Healthcare: How Texas Plans to Fix a Strained System
May 4, 2026

The U.S. healthcare system is under real strain—and it’s something both patients and physicians are feeling in everyday care. In Texas, those pressures are even more visible, where rapid population growth, rural access challenges, and regulatory complexity are making it harder for patients to get timely care and for doctors to focus on medicine…

Read More
Related
WireXpert
Software & Technology
WireXpert MP Wire Mapping Overview
December 13, 2025
Healthcare
A Guided Overview of tManager from Softing
December 12, 2025

As industrial environments grow more connected and complex, manufacturers are increasingly looking for streamlined ways to manage data flows, configure devices, and maintain interoperability without adding operational friction. Tools that can be learned incrementally and adopted at a user’s own pace are becoming especially valuable, helping teams focus on outcomes rather than wrestling with software…

Read More
DeviceNet
Healthcare
5069-SDN Long Technical Overview: Complete Migration Strategy from 1769 DeviceNet Scanners
December 11, 2025

Migrating from legacy industrial control hardware to modern platforms is rarely glamorous, but it remains one of the most consequential tasks in keeping manufacturing systems running safely and efficiently. In this demonstration, the team tackles a shift from a 1769-based ControlLogix DeviceNet architecture to a 5069 platform—an upgrade that mirrors what many facilities face…

Read More