reusch­law White­pa­per: Cyber­se­cu­ri­ty und Data Pro­tec­tion by Design

Digi­tal pro­ducts and goods are on the rise. Howe­ver, in addi­ti­on to new oppor­tu­ni­ties and chan­ces, the digi­tiza­ti­on of pro­ducts also brings various dan­gers and an increased sur­face for attacks. Accor­ding to the sta­tus report by the Ger­man Fede­ral Office for Infor­ma­ti­on Secu­ri­ty (BSI), the three big­gest thre­ats to the eco­no­my are ran­som­wa­re, depen­den­cy within the IT sup­p­ly chain and vul­nerabi­li­ties such as open or incor­rect­ly con­fi­gu­red online ser­vers. Cyber­se­cu­ri­ty and data pro­tec­tion must the­r­e­fo­re be given a much hig­her prio­ri­ty in digi­tal pro­ducts and must be taken into account as ear­ly as the pro­duct deve­lo­p­ment stage (by design). Manu­fac­tu­r­ers who negle­ct cyber­se­cu­ri­ty and data pro­tec­tion will never be able to ful­ly exploit the poten­ti­al of digi­tiza­ti­on and, in the worst-case sce­na­rio, will fail with the digi­tiza­ti­on of their products.

In this white paper, Ste­fan Hes­sel and Chris­ti­na Kie­fer show, which obli­ga­ti­ons manu­fac­tu­r­ers must ful­fil during deve­lo­p­ment and the con­se­quen­ces of non-compliance.

You can down­load the full white paper here.