Dear ESB
ESB Member Recommendation
At the last ESB we discussed how we fortify/evolve the board. Having successfully welcomed Peter Davies, I would like to recommend we now invite Dr. Anna Maria Mandalari to join the board.
Who is Anna?
Anna is well known to the IoTSF membership as she has presented at IoTSF conferences (2022 and 2023), is an Assistant Professor at UCL and runs an IoT lab.
Here’s her last talk: https://www.youtube.com/watch?v=v-_dJsa4lSs
And here’s her bio: Anna Maria Mandalari works as Assistant Professor at University College London (UCL). She is member of the UCL’s Academic Center of Excellence in Cyber Security Research (ACE-CSR). She is Honorary Research Fellow at the ISST at Imperial College London. She obtained her PhD as part of the Marie Skłodowska-Curie action, intended for excellent researchers, affiliated with the Carlos III University of Madrid. Her research interests are Internet of Things (IoT), privacy, security, networking and Internet measurement techniques. In addition to her research, Anna is Co-Founder & CTO of a startup providing privacy and security solutions for consumer IoT devices. She gives invited talks all around the world to promote research and create awareness on security, privacy, and ethical AI. Most of her research experiences have also significantly contributed to several EU-funded research projects and have had a strong media impact.
I have spoken to Anna on several occasions, observed her work and I am therefore happy to commend her to you.
Therefore, please let me know your position by c.o.b Wednesday April 10th – i.e. do you:
1. Agree – (invite her - she’ll make a great addition).
2. Not sure – (hmmm - I have questions/concerns).
3. Dunno – (ok – I have no opinion wither way).
Strategic Liaison
Recently, the Connectivity Standards Alliance (CSA – nee ‘Zigbee Alliance’) announced a new IoT Device Security specification (https://csa-iot.org/newsroom/the-connectivity-standards-alliance-product-se…)
One of our members made a post on Basecamp asking whether it would add to confusion for manufacturers and whether it might affect our own work with the Assurance Framework. Fortunately, one of its protagonists (Chair of the CSA’s Working Group), is also a member, and on Basecamp, explained that it is a product certification and was likely to be complementary to our own Framework, and suggesting we have a call to discuss.
I had that call with Steve Hanna (Infineon – said Chair, CSA WG) this morning. Neither of us want to add confusion or be seen to be competing hence we discussed how we could complement each other’s work. I think this is possible – indeed, we’ve discussed how to work with 3rd party cert’s and labs numerous times before. I want to make sure I’m on firm ground however and would therefore like to include this as an agenda item on the forthcoming ESB meeting (May 8th, virtual). I include it here as a ‘heads up’ and invite anyone with immediate views (Richard? Haydn?) to ping me so we can pre-discuss before May 8th.
That’s all for now - thank you.
KR.,
John Moor
COO, TechWorks / Managing Director, IoT Security Foundation
Mobile: 07739 982327 - Head Office: +44 (0)1506 374 237
https://www.techworks.org.ukhttps://www.iotsecurityfoundation.org
