IIoT: the Other Internet of Things

While it’s less well-known than its not so distant relative the Internet of Things (IoT), the Industrial Internet of Things (IIoT) is rapidly becoming integrated with critical Industrial Control Systems (ICSs) and manufacturing organizations throughout the world. Although IIoT technologies are relatively new—with the term itself coined as recently as 2012—the IIoT is not to be underestimated. In fact, GE predicts it will become a $225 billion market within the next three years.

So what exactly is the IIoT? Despite the fact that the IoT and IIoT sound similar on the surface, one major difference sets them apart: the IoT connects apps to things, while the IIoT connects infrastructure to data.

Even though the IoT does collect and share data, this data is typically used for the purpose of simplifying the daily lives of end users. On the other hand, through the integration of state-of-the-art monitoring systems, smart sensors, and information sharing platforms with legacy infrastructure, the IIoT improves reliability, safety, and analytical capabilities within industrial systems—preventing the need for a costly system overhaul.

Some real-world examples of the IIoT include the integration of smart grids with existing electrical substations and the addition of sensors to monitor the volume of gas flowing through refinery flare stacks. Enhancements such as these have already saved millions of dollars through improved industry compliance, productivity and performance.

Of course, introducing interconnectivity to previously air-gapped infrastructures expands the attack surface. And while some of these issues may be expected and analogous to IT security, many are also completely unique. In fact, these industries have already experienced cyber attacks developed specifically with the purpose of disrupting critical industrial controls, such as Blackenergy and Stuxnet.

On a high note, due to the sensitive nature of the data flowing throughout the IIoT, devices are developed with much more security in mind than those on the IoT. Data flow is strictly controlled, traveling almost entirely upstream to the cloud, with limited interaction and ability to push back down. However, in many ways these industries are playing catch up due to a history of air-gapped systems and a great deal of legacy infrastructure.

The IIoT is modernizing and changing the face of industry as we know it. While many benefits can be gained from the increase in efficiency, industrial security professionals must be mindful of both standard IT security and a new breed of industry-focused digital weapons. The true cost of efficiency is much higher within the IIoT, and integrations must be considered with utmost care.

Learn More:

About Danielle Pucciarella-Galkova 24 Articles
Hi! I'm a Security Engineer at a startup in the Bay Area. I have a Master's in Cybersecurity and I love teaching about tech! Check out my YouTube channel ↓down there↓ :)

1 Comment


  1. Hi Danielle

    A few thoughts from Blighty.

    In the the UK the IoT and IIoT are all seen as IoT.
    IoT has been around since the 1960’s, but it was called M-2-M (Machine to Machine), what GE is trying to do in my opinion; re-market an already available technology. Some of it is money for old rope. The technology has been improved by miniaturisation of electronics, microprocessors, sensors, batteries and more recently radio.

    ICS is called SCADA or Command and Control (C2) in the UK. Many good systems are available (I have rolled out Trend and ASL solutions), traditionally they connected by Modbus or I2CBus, more recently by CAT5 LAN, and most recently by low power radio ZigBee and LoRa.

    One of the leading companies of IoT devices is Libelium, they provide a processing board with micro SD storage, battery (lasts for 1 year), sensor board with 110+ sensors and a radio all in the size of the cigarette packet, 1024 of these devices can be connected via radio to each other providing redundant backup of data (swarm storage) and with a gateway connected to SCADA or another island of 1024 devices, permitting a large scale sensor network covering large geographic area.

    Original Sources:
    M-2-M (https://en.wikipedia.org/wiki/Machine_to_machine)
    Trend Control (https://www.trendcontrols.com/en-GB/Pages/default.aspx)
    ASL Control (http://www.asl-control.co.uk/product/ivencs/ivencs-scada/)
    Modbus (https://en.wikipedia.org/wiki/Modbus),
    I2CBus (https://en.wikipedia.org/wiki/I%C2%B2C)
    Cat 5 (https://en.wikipedia.org/wiki/Category_5_cable)
    SCADA (https://en.wikipedia.org/wiki/SCADA)
    ZigBee Radio (http://www.zigbee.org/what-is-zigbee/utility-industry/)
    LoRa Radio (https://www.lora-alliance.org/)
    Iot Device (http://www.libelium.com/products/waspmote/overview/)

    Hope all is well.
    regards
    Chud

    Mubdi ‘Chud’ Choudhury
    Node Systems Ldt
    LinkedIn: uk.linkedin.com/in/nodesystems
    FB: https://www.facebook.com/nodesystems/
    Twitter: @NodeSystems

Leave a Reply