Why Our Right to Repair Is Critical To Securing The Internet Of Things – Paul Roberts – ESW #287



From its origins a decade ago, the grassroots movement to enshrine in law the right to repair our stuff (read: cell phones, laptops, home appliances, cars, machinery) has morphed into a potent, global movement. Today, much of the debate over right to repair laws has focused on issues like concentrations of market power by large corporations and anti-competitive behavior with regard to service and repair of “smart,” connected products. However, there is a less-discussed but equally potent argument in favor of repair: cybersecurity and data privacy. In this conversation, Paul Roberts, the founder of SecuRepairs.org (pron: Secure Repairs), talks about the dire state of device security on the Internet of Things and how efforts by manufacturers to limit access to software updates, diagnostic tools and parts exacerbates IoT cyber risk, even as it burdens consumers and the environment.

Segment Resources:
Securepairs.org: https://securepairs.org
Fight to Repair Newsletter: https://fighttorepair.substack.com
The Security Ledger: https://securityledger.com Visit https://www.securityweekly.com/esw for all the latest episodes!

Full Episode Show Notes

Why Our Right to Repair Is Critical To Securing The Internet Of Things

Guests

Paul Roberts

Paul Roberts – Founder, SecuRepairs (pron: Secure Repairs), Publisher, The Security Ledger at SecuRepairs.org

@paulfroberts

Paul Roberts is the founder of SecuRepairs (pron: Secure Repairs)(securepairs.org), a volunteer group of more than 200 information technology and information security professionals who support a legal right to repair. He is also the Publisher and Editor in Chief of The Security Ledger (securityledger.com), an independent security news website that explores the intersection of cyber security with the Internet of Things.

Paul is a seasoned reporter, editor and industry analyst with more than a decade of experience covering the information technology security space. His writing about cyber security has appeared in publications including Mother Jones; The Christian Science Monitor; MIT Technology Review; The Economist Intelligence Unit; CIO Magazine; ZDNet and Fortune Small Business. He has appeared on NPR’s Marketplace Tech Report and The Oprah Show.

Prior to launching The Security Ledger, Paul worked as a Senior Analyst in The 451 Group’s Enterprise Security Practice and held positions as a senior writer and editor at noted industry publications including Threatpost, Infoworld and eWeek and The IDG News Service.

Hosts

Joe South

Joe South – Sr Content Creator at CyberRisk Alliance

@SecUnfPodcast

Joe South has been working in Cyber Security for over 8 years and has worked at companies of all sizes across multiple industries. Joe is also the host of the Security Unfiltered Podcast where he discusses current cyber security issues and educates his listeners on how to have a successful career in cyber security. Joe is currently in a role where he is empowered to implement a unified control framework across a multi-cloud environment. Joe has also created a widely known blog where he works to help others get into cyber security and have a successful career in the industry. Joe has obtained the CCSP, CCSK, AWS Security Specialty and the AWS CCP certifications, among others.

Katie Teitler

Katie Teitler – Senior Security Strategist at Axonius

@Katherinert15

Katie Teitler is a cybersecurity content creator. In her current role with Axonius, she is part of the product marketing team, helping audiences understand the value proposition of cyber asset management as it pertains to risk reduction. In past roles, Katie was an industry analyst, research director, content marketer, and freelance author, and managed content and speakers for InfoSec World, now a flagship offering of the Cyber Risk Alliance.

Tyler Robinson

Tyler Robinson – Director of Offensive Security & Research at Trimarc Security, Founder & CEO at Dark Element

@tyler_robinson

As the Managing Director of Offensive Security & Research at Trimarc, Tyler leads a team of high-performance security professionals within the offensive security field by simulating sophisticated adversaries and creating scalable offensive security platforms using the latest techniques as seen in the wild. With over 2 decades of experience, Tyler specializes in Red Teaming, APT threat modeling, blackbox network penetration testing, and Physical/Social-Engineering. Tyler has presented at multiple conferences including BSides, DefCon and Blackhat panels, SANS security events and to multiple branches of the military.

Tyler Shields

Tyler Shields – CMO at JupiterOne

@txs

Tyler advises, guides, and operates high tech startups primarily in the B2B security space. He is a former market analyst, engineer, product manager, marketing leader, and partnership manager. In other words, Tyler builds and grows businesses – in all aspects. He’s a board advisor, angel investor, and board member at multiple firms and an investment advisor for a venture debt business. He loves to play guitar and poker in his free time.

Announcements

  • Security Weekly is proud to partner with Hack Red Con for their first annual in-person event! Hack Red Con is happening at the Hyatt Regency in Louisville, KY from September 7th-11th. As a part of our partnership, Security Weekly listeners receive a 10% discount on registration! Visit https://securityweekly.com/hackredcon to register now! We hope to see you there!