It would be better, he said, for developers and manufacturers to, "build security into the platform and provide adequate patching mechanisms."
Gonzalez did not dispute that. "Certain systems provide an easier target for PFP monitoring than others," he said. 'For instance, ICS/SCADA systems, with their deterministic and repeatable logic, represent an easier target than a complex cloud server."
But, Hugh Thompson, CTO at Blue Coat, said he thinks the technology could be very useful to authenticate the components of various IoT devices -- many of them made from all over the world.
"You build these things from 30 suppliers," he said, "so I can imagine for the manufacturer and provider, having a method to test and validate the things from other vendors will be useful.
"It would also be good for the end buyer, to be able to routinely go back and make sure they are still OK, with a mechanism to make sure something is in a clean state."
Sign up for CIO Asia eNewsletters.