Report background
2015 is the first year of B-end service. Using low-cost software + system to improve standardization and process can greatly improve efficiency, replace manpower, save resources, and become a new choice for more and more enterprises. Security is associated with B-side software and systematic services. Smart terminal security naturally exists with it, but it is ignored and separated. In 2018, the concept of “T2B2C” became popular, simply put: through technology to promote industrial transformation, so as to better serve consumers. Everyone’s focus is not directly on the C-end, but on the C-end by empowering the B-end. In the “T2B2C” chain of smart terminal security, the voices of the C-side are indispensable, even if these voices are not strongly cohesive. Listen to the real voices of C-end users and commit to a safer and better smart terminal security environment. The Roar Security Industry Research Institute designed the “Smart Terminal Security User Survey” for this purpose, aiming to understand several core issues from the C side:
Among smart terminal devices, which ones are likely to cause information insecurity?
What kind of insecure smart terminals have users experienced?
From the perspective of users, who should guard the security of smart terminals?
What are the necessary security capabilities from the user perspective?
What security product features are users most looking forward to?
What are users’ biggest concerns about the security of smart terminals?
report found
Core finding of the report 1: Over 40% of users believe that the overall level of security of smart terminals is average
In the current overall scoring situation of smart terminal security (1 is the lowest score and 10 is the highest score), according to the research findings of the Roar Security Industry Research Institute, 85.1% of the participating researchers believe that the current smart terminal security is between 5 and 8 points ( 10 is a full score); more than 40% of users scored 5-6 points, of which, 6 points accounted for the most, reaching 20.6%; 5 points (excluding 5 points) users accounted for 24.8%; for smart terminals Those who are most dissatisfied with safety, that is, those who scored 1-2 points, accounted for 5.7%, and the most satisfied, that is, those who scored 9-10 points were only 4.3%.
The Roar Security Industry Research Institute believes that the overall situation of smart terminal security is not optimistic at present. Although after more than ten years of development, the essential development of smart terminal security is still relatively slow. If it has not been overcome, the user’s security awareness has not been effectively improved.
The second core finding of the report: Most users tend to protect the security of smart terminals with multiple parties and jointly build a security barrier
According to the research findings of the Howard Security Industry Research Institute, in terms of the division of intelligent security guarding responsibilities, the hardware equipment vendors, software service providers, cloud computing vendors, sales channel vendors, users/consumers, terminal security providers, government-related Among the options of administrative agencies and enterprise security departments, 72.3% of users prefer software service providers, 65.2% of users prefer hardware equipment vendors, 65.2% of users prefer terminal security providers, and 48.9% of users prefer government-related administrative agencies. For departments/institutions, 43.3% of users prefer cloud computing vendors, and only 24.8% of users think that they need to be the guardians of smart security.
Roar Security Industry Research Institute believes that: At present, the division of full responsibilities for smart terminal security products is relatively unclear, and the lack of legal and regulatory definitions makes fewer manufacturers consider security protection issues at the beginning of product design. Judging from the data, most users tend to assume that the security of smart terminals is mainly the joint responsibility of hardware developers, software developers, network security service providers, and the government. But how should a responsibility-sharing model be established? Can this implementation model bring real security? In addition, according to the survey results, users believe that the security problem of smart terminals is becoming more and more serious, but their own awareness of being a guardian is relatively weak. Only less than 1/4 of users think that they also need to be guardians of smart terminal security. In fact, based on the concept of zero trust, users’ smart terminal products and the data assets generated by them should have important protection rights and interests. It is believed that with the deepening and development of smart terminal security, the contradiction between individual users’ security awareness and practice will gradually Zoom out, for this reason, the Roaring Security Industry Research Institute gives some suggestions:
Security awareness training, popularizing education by means of public welfare;
Multiple parties provide more friendly methods, so that users can truly choose by themselves;
Increase legislation, earnestly protect the interests of users, and strike hard at illegal and illegal activities.
The third core finding of the report: Safety and respect are the core needs of users and the original intention of the entire ecosystem
According to the research findings of the Roar Security Industry Research Institute, people’s concerns about the security of smart terminals can be divided from the perspective of users, products, and supervision. From the user’s point of view, it is specifically reflected in worries about their own data/information leakage, data loss, data being maliciously monitored, and property damage. Concerns from the perspective of enterprise products include: product instability, insecurity, R&D security, cost issues, not smart enough, viruses cannot be scanned, and repairs are not timely, etc.; from the perspective of regulatory concerns, specifically include smart terminals Security checks, detections, system attacks, lack of relevant accountability mechanisms, etc.
Roar Security Industry Research Institute believes that when extracting keywords that users worry about feedback: data, privacy, and security are the words that appear most frequently. If summed up from the perspective of users, the security of smart terminals boils down to two points:
Ensure data security;
Protect user privacy.
This reflects the user’s need for safety and respect in Maslow’s hierarchy of needs theory. The security of smart terminals is very complicated, but it is also very simple. The complexity lies in the fact that many practitioners have thought of many methods and taken many detours to ensure it, but with little success, and can only hope that there is no real opponent. It is simple because you have walked a lot, but you have forgotten the way you came, the past you have walked, and your original intention. Everyone’s efforts, the original intention is only the four words of safety and respect. If every action, every improvement, and every direction ask yourself, whether it helps users achieve more security, and whether it can make users feel better about the benefits brought by products and derivatives. Respect, the real security of such smart terminal security may come!
The Links: SKIIP 24NAB126V10 DF150AE160
