IoT Security and Connected LED Lighting Networks: The Good News, The Bad News and the Way Forward

EIN 43 LightingCyber 400

Nov 12, 2019

A little over a decade ago, the introduction of LED lighting seemed to transform commercial lighting overnight. Now we’re seeing it happen again. This time, connectivity and big data are driving the change, creating a profound shift in how new commercial lighting is evaluated, specified and approved.

Suddenly everyone is talking and writing about connected lighting, networked lighting, smart lighting controls and the Internet of Things (IoT). As more companies explore networkable lighting and connected smart controls, a new player will be sitting at the table: the corporate IT department. And they’re going to be asking a lot of serious questions about cybersecurity.

In general, the more extensively a lighting network is connected to other networks, the greater the exposure to cybersecurity threats. Consider Gartner’s observation in its 2019 review of cybersecurity trends: “Companies have made a ‘smart’ version of basically everything you can think of, but many of those products have glaring security holes.” In fact, according to McAfee, 70% of IoT devices have such security flaws.

What’s worse, cybersecurity and IT experts point out, is that instead of “baking in” security measures as an essential ingredient of product development, many IoT device manufacturers are “bolting on” security after the fact. Which is a bit like constructing an office building without plumbing and electricity. Adding it later is expensive and difficult, if not impossible.

Leading us to the bad news: the security measures protecting the networkable products of many lighting vendors and their customers are almost non-existent or already years out of date.

But doesn’t almost every LED lighting vendor use 128-bit AES encryption and meet the National Institute of Standards and Technolog’s (NIST) FIPS 140-2, Level 1 requirements? In a word, yes. But encryption isn’t the only issue in smart lighting security, and unless encryption is consistently applied as part of a larger cybersecurity strategy, it won’t satisfy enterprise-level IT departments because it won’t protect the network from a myriad of other vulnerabilities.

Here’s the good news: Cree Lighting developed their smart lighting control networks from the ground up with an IT-grade cybersecurity strategy that has proactively excelled in rigorous independent security evaluations.

Cree Lighting recognized from the beginning that its SmartCast Technology would ultimately serve as an open and interoperable IoT platform. With that in mind, Cree Lighting set out to create a secure architecture to protect data and access. Our benchmark isn’t the best practices of the lighting industry; it’s those of the IT industry.

To ensure the security of the platform, Cree Lighting engaged independent cybersecurity consultants to intentionally attempt to hack the SmartCast Intelligence Platform. After extensive penetration testing, this global firm subsequently ranked the cybersecurity measures of the SmartCast Intelligence Platform in the top 10% of all technology companies they’ve tested, which includes leading technology companies that you use every day.

So what’s the way forward?

Today, anyone involved in commercial lighting projects needs to be guided by four basic assumptions:

1. Every lighting control network will eventually be connected to other enterprise networks and/or the Internet.

2. Any lighting control network that doesn’t provide enterprise-level cybersecurity may compromise the company and put valuable assets and resources at risk.

3. Not all lighting manufacturers give cybersecurity the same priority.

4. Since every IoT-enabled lighting network will require the blessing of the corporate IT department, you’ll want to choose a lighting vendor with cybersecurity that will earn IT department approval.

Welcome to the new reality of commercial lighting. Given the stakes, it’s worth the time to learn a little more about IoT security issues and their solutions. 

For additional information, download Cree Lighting’s FAQ on IoT security, developed for lighting designers and specifiers, or our new Position Paper for IT professionals outlining key security features of the SmartCast Intelligence Platform.

Source: https://www.creelighting.com/insights/article/iot-security-and-connected-led-lighting-networks

Related Articles


Changing Scene

  • Magic Lite & EFC Release Student Scholarship

    January 18, 2023 Magic Lite was thrilled to have participated in the 2022 EFC Scholarship Program and recently present the Magic Lite Future Leaders Award of $2,500 to Anthony Faustin of Sherbrook University in Montreal. As successful applicant, Anthony demonstrated leadership amongst his peers as well as in his community, and showed true entrepreneurial spirit… Read More…

  • Ascot Capital Group Announces a Change in the Presidency and the Appointment of Rob Nadler as President

    January 18, 2023 Rob Nadler, Stanpro’s Executive Vice-President will be promoted and assume the role of President of Ascot’s “General & Emergency Lighting Group – Stanpro, AimLite & Beluce” effective June 1, 2023. Rob joined Stanpro in 2001 and was instrumental in its tremendous growth over the past 20 years, including the organic acceleration of the business, the… Read More…


Design

  • LIT Design Awards Light Art Project Winner: Integral Group

    LIT Design Awards Light Art Project Winner: Integral Group

    December 19, 2022 Prize(s) Winners in Light Art Project Company Integral Group Lead Designers Ellie Niakan + Catherine Chan Photo Credits Catherine Chan Completion Date December 21, 2021 Project Location New Westminster, British Columbia, Canada Although appearing as solitary, trees are connected to one another through vast underground systems known as mycorrhizal networks. Through these hidden systems—a symbiotic relationship between plants… Read More…

  • LIT Lighting Design Awards: Capital Park Landscape, Victoria, BC

    LIT Lighting Design Awards: Capital Park Landscape, Victoria, BC

    December 5, 2022 Located in one of Victoria’s most historic neighborhoods, the Capital Park Mixed-Use Development is made up of seven buildings stretching across three lots and is responsible for nearly an entire city block of Victoria’s downtown core. The project took place over the span of three phases and eight years. The first phase… Read More…


New Products

  • Feel Stem Suspension

    January 18, 2023 Designed by Milan-based Sara Moroni, the Feel Suspension Light from Penta combines texture, light, and quiet. It features sound-absorbing textile discs and luminous stems. The coloured discs, in matching or contrasting colours, give life to ever-changing configurations. Suspended from the ceiling, the Feel absorbs noise, letting you enjoy the silence. Feel comes… Read More…

  • CorePro LED Mini Cylinder

    January 18, 2023 Upgrade to LED – Looking to make an impact for retail display areas? The #CorePro LED Mini Cylinder by #Lightolier delivers both lumen and CBCP performance equivalent to that of most 50W MR16 halogen luminaires. These top quality track lights consume 82% less energy and provide easy maintenance.The completely integrated driver, thermal management, unitized optics and… Read More…