Cyber security organisations from around the world have published new advice today to help balance the cyber security risks involved with creating smart cities.
The joint Cybersecurity Best Practices for Smart Cities guide has been issued by the National Cyber Security Centre (NCSC) – a part of GCHQ – alongside agencies from the US, Australia, Canada and New Zealand.
It’s been designed to ensure that connected technologies are integrated into infrastructure in a way which protects systems and data.
The move comes as a number of cities take major steps forward in connectivity, not least Sunderland and Hull.
“Connected places have the potential to make everyday life safer and more resilient for citizens; however, it’s vital the benefits are balanced in a way which safeguards security and data privacy,” explained Lindy Cameron, NCSC CEO.
“Our new joint guidance will help communities manage the risks involved when integrating connected technologies into their infrastructure and take action to protect systems and data from online threats.”
While the report focuses on the positive impact of connected places, it notes the risks including an expanded and interconnected attack surface, risks from the supply chain and vulnerabilities that can be introduced by automating infrastructure operations.
“Smart cities are an attractive target for criminals and cyber threat actors to exploit vulnerable systems to steal critical infrastructure data and proprietary information, conduct ransomware operations, or launch destructive cyberattacks,” it reads.
“Successful cyberattacks against smart cities could lead to disruption of infrastructure services, significant financial losses, exposure of citizens’ private data, erosion of citizens’ trust in the smart systems themselves, and physical impacts to infrastructure that could cause physical harm or loss of life.”
It is recommending that communities considering adopting smart cities technologies should consult the new guidance to understand the risks and how to mitigate them.