Live COVID-19 Cases
  • World 354,817,651
    Confirmed: 354,817,651
    Active: 67,463,460
    Recovered: 281,732,141
    Death: 5,622,050
  • USA 72,956,181
    Confirmed: 72,956,181
    Active: 27,243,230
    Recovered: 44,821,360
    Death: 891,591
  • India 39,543,328
    Confirmed: 39,543,328
    Active: 2,249,287
    Recovered: 36,804,145
    Death: 489,896
  • Brazil 24,134,946
    Confirmed: 24,134,946
    Active: 1,659,612
    Recovered: 21,851,922
    Death: 623,412
  • France 16,800,913
    Confirmed: 16,800,913
    Active: 6,211,015
    Recovered: 10,460,876
    Death: 129,022
  • UK 15,953,685
    Confirmed: 15,953,685
    Active: 3,394,801
    Recovered: 12,404,968
    Death: 153,916
  • Russia 11,173,300
    Confirmed: 11,173,300
    Active: 801,197
    Recovered: 10,045,336
    Death: 326,767
  • Italy 10,001,344
    Confirmed: 10,001,344
    Active: 2,709,857
    Recovered: 7,147,612
    Death: 143,875
  • Spain 9,280,890
    Confirmed: 9,280,890
    Active: 3,562,883
    Recovered: 5,626,013
    Death: 91,994
  • Germany 8,808,107
    Confirmed: 8,808,107
    Active: 1,417,492
    Recovered: 7,273,100
    Death: 117,515
  • China 105,660
    Confirmed: 105,660
    Active: 2,754
    Recovered: 98,270
    Death: 4,636
Generic selectors
Exact matches only
Search in title
Search in content
Generic selectors
Exact matches only
Search in title
Search in content
vaccine fairness

BY James Hingley


Protecting Smart Cities From Cyber Attacks

Smart security measures are needed to protect smart cities.

MAY 11  2021


As technology becomes more advanced, protecting the data it collects becomes more complex.

The world we live in today is dominated by technology. Whether it is our smartphones or no-till grocery stores, few areas of life remain untouched by technology. Yet, the presence of technology is more pervasive than it might first appear. Everything we do provides instant information about transit, traffic, health services, safety alerts, and puts community news into millions of hands. Now, this information is being put to use.

Technology helps to create a city that lives, breathes and adapts to the ways and habits of those living in it. However, no form of technology is infallible and therefore requires protection. The same is true of smart cities, especially since they collect and store the data of the citizens. Accordingly, the National Cyber Security Centre (NCSC) has provided some guidelines on how smart cities should go about best protecting themselves.

What is a smart city?

Although a smart city may appear fairly simple in principle, forming a concrete definition is more complex. In a 2018 report on the future of smart cities, McKinsey & Company offered a description of a smart city:

‘Smart cities put data and digital technology to work to make better decisions and improve the quality of life. More comprehensive, real-time data gives agencies the ability to watch events as they unfold, understand how demand patterns are changing, and respond with faster and lower-cost solutions.’

This provides a basic understanding of what a smart city does and, as a result, it is more possible to define a smart city. In fine, a city that uses the data collected from electronic sources and sensors to improve how the city functions can be defined as a smart city. On a more nuanced level, a smart city looks to develop, deploy, and promote sustainable development practices to address growing urbanisation challenges. For a smart city to fulfil its maximum potential, the city’s inhabitants need to engage with the smart ecosystems already existing. In doing so, it is possible to decrease traffic congestion, improve air quality and optimise the collection of rubbish and thereby improve the cleanliness of streets.

Based on all this information, the potential benefits of smart cities are overwhelming. With the increasingly rapid technological advancements, different areas are being optimised to improve the quality of life therein. However, technology comes with the risk that it can be compromised and smart cities are no exception. To that end, the relevant bodies are providing information to help preserve the integrity of the data collected by smart cities.

Staying safe

Although it comes under the general rubric of safety, the guidance issued by the NCSC looks to create awareness and build an understanding of the issues at hand. In particular, the NCSC highlights traffic light management, CCTV, waste management, streetlight management, parking management, transport services and public services (such as health/social care, or emergency services) as areas in need of enhanced cyber-security measures.

The element that makes smart cities an attractive target for hackers and other threat actors are the large quantities of sensitive, personal information. Likewise, given that the systems are interconnected, the concern is that, if one is compromised, they will all be compromised. To that end, the NCSC lays heavy stress on the importance of understanding. This is not simply a case of having an advanced understanding of the threats faced but also of the systems:

‘You need to have a clear understanding of your connected place infrastructure by identifying, understanding, and assessing inter-dependencies.’

When mentioning understanding the infrastructure of a connected place, it is not simply a question of understanding the system itself but also the people who have access to it. On this last aspect, the NCSC mentions the option of using Zero Trust Principles. It centres around the core belief that organisations should not trust anything inside or outside their perimeters. Rather, access should only be granted once it has been verified and authorised. Given the name of the policy, implementing it could be misconstrued as overly draconian. Yet, when it is remembered that the systems in question contain personal data, then the measures seem reasonable.

On another level, if there is a breach in the Zero Trust Principles, then the system must be constructed in such a way that it can also provide some level of protection according to the NCSC:

‘You need to ensure that your connected place architecture is designed securely. Your designs need to take into consideration the logical separation (or ‘zones of trust’) of your connected place network and identify critical security boundaries. This should not be limited to the cyber domain but also the cyber-physical (dual redundant sensors and/or actuators), and the physical space (such as diverse power supplies or communication routes).’

The subsequent instructions address the architecture of a connected place on a more nuanced level. However, similar to the advice concerning Zero Trust Principles, the recommendations are grounded in a basic principle of prioritising safety and security.

So, the resounding message is that smart cities, for all their usefulness, are vulnerable and, for that reason, steps must be taken to protect them. The NCSC did not name any particular threat actors, but that does not make the threat any less serious. A cyber attack against smart city infrastructure can happen at any time and, to that end, it is critical for the appropriate defence measures to be in place.

About the Author: James Hingley

James Hingley is a contributing Features Writer with extensive expertise in International Relations, Politics and Culture.

Recommended for you

Modelling the Potential Consequences of Omicron

Analysing the impact mask-wearing has on Omicron hospital admissions, and whether the public’s choices can change the outcome.

Minesto: Revolutionising Ocean Energy

Minesto: Revolutionising Ocean Energy

Through their innovative tech, Swedish company Minesto leverages the power generated from underwater ‘kites’ as a source of renewable energy.