%0 Journal Article %J Technology Innovation Management Review %D 2017 %T The Internet of (Vulnerable) Things: On Hypponen's Law, Security Engineering, and IoT Legislation %A Mikko Hypponen %A Linus Nyman %K consumers %K cybersecurity %K Hypponen’s law %K Internet of Things %K IOT %K legislation %K manufacturers %K security engineering %K smart devices %K vulnerability %X The Internet of Things (IoT) and the resulting network-connectedness of everyday objects and appliances in our lives bring not only new features and possibilities, but also significant security concerns. These security concerns have resulted in vulnerabilities ranging from those limited in effect to a single device to vulnerabilities that have enabled IoT-based botnets to take over hundreds of thousands of devices to be used for illegal purposes. This article discusses the vulnerable nature of the IoT – as symbolized by Hypponen’s law – and the parts both manufacturers and consumers play in these vulnerabilities. This article makes the case for the importance of security engineering for IoT manufacturers, highlights some significant issues to help consumers address these vulnerabilities, and argues for legislation as perhaps the only reliable means of securing the Internet and its connected devices. %B Technology Innovation Management Review %I Talent First Network %C Ottawa %V 7 %P 5-11 %8 04/2017 %G eng %U http://timreview.ca/article/1066 %N 4 %1 F-Secure Mikko Hypponen is Chief Research Officer at F-Secure. He has written about his research for The New York Times, Wired, and Scientific America, and he has lectured at several universities, among them Stanford, Oxford, and Cambridge. He has been selected as one of the 50 most important people on the web by PC World Magazine and was included in the FP Global Thinkers list. He is a member of the board of the Nordic Business Forum and the advisory board of the t2 infosec conference. %2 Hanken School of Economics Linus Nyman is an Assistant Professor at the Hanken School of Economics in Helsinki, Finland. He has lectured on a range of topics, including corporate strategy and open source software development. His current research focuses on information security and privacy, which are topics he also covers in a blog for the Finnish daily newspaper Hufvudstadsbladet. Linus holds a PhD and a Master’s degree, both from the Hanken School of Economics. %R http://doi.org/10.22215/timreview/1066