SecurityBrief New Zealand - Technology news for CISOs & cybersecurity decision-makers
Story image
Kaspersky develops cybersecurity policy for bionic devices
Mon, 6th Dec 2021
FYI, this story is more than a year old

Cybersecurity firm Kaspersky is addressing the challenge of the human augmentation phenomenon, by presenting a comprehensive cybersecurity policy.

The document aims to enhance the workforce while also considering employees security and welfare when using bionic devices in the office.

Amid all the excitement and innovation surrounding human augmentation particularly the growing use of bionic devices aiming to replace or augment parts of the human body with an artificial implant there are legitimate fears among cybersecurity experts and the wider community, the company says.

They are concerned that too little attention is paid to the security of the dedicated devices. This lack of awareness around the topic leads to uncertainty and risks for both further development of human augmentation technologies, and a safer digital world in the future.

Kaspersky has been continuously exploring the potential of human augmentation and evaluating security challenges that humanity may encounter during its wider integration into our lives. Following open discussions within the community, the company decided to respond to the specific need for security regulation and designed cybersecurity policy to mitigate security risks that augmentation technology can pose to corporate IT networks.

The document creates a scenario where augmented employees become more common in the company in the future and takes into account Kaspersky's real-life tests with employees' biochip implants.

Developed by Kaspersky security experts, the policy governs procedures for using bionic devices within the company and aims to reduce the associated cybersecurity risks in business processes. The proposed document addresses the entire company's infrastructure and all of its business units. As a result, it applies to the full access control system, as well as administration processes, maintenance processes, and the use of automated systems.

The policy is to be applied to both employees and temporary staff, as well as employees of third-party stakeholders that render contract services to the company. All these factors aim to enhance the cybersecurity of the corporate infrastructure on a larger level.

"Human augmentation is a burgeoning area of technology which in fact remains underexplored," says Marco Preuss, director of Kaspersky's global research - analysis team (GReAT) in Europe.

"That is why making a first step towards clarifying issues related to its use, as well as strengthening security, will help us to ensure its potential is used in a positive way," he says.

"We believe that to build a safer digital world for tomorrow, we need to digitally secure the future of human augmentation today."

The cybersecurity policy initiated by Kaspersky offers a range of standardisation processes, enhancing security and granting better inclusion of employees using bionic devices when in the office.

One of the major objectives of this initiative is also to engage the global IT and augmentation community in the discussion and pursue a collaborative effort for further steps of human augmentation security development. This includes ensuring digital privacy of devices, proving different levels of access rights to stored information, and mitigating any threats related to human health.