**6. Security**

Threats to networked and other inter-connected systems are continually evolving. The adoption and growth of the IoT throughout the building services domain serves to increase the vulnerability of autonomous networked devices to attack from external hazards and malign enterprises. To ensure that remote systems and applications continue to be updated with protection against new threats as they appear and with minimum risk of introducing vulnerabilities, security measures should adhere to published standards and be developed using third-party tools, which are developed and maintained by experts. The SEIS schema itself does not include cyber-security measures, which is correct since it is concerned only with describing building transportation systems.

Connection to any external network or communication channel, whether confined to the building perimeter or extending beyond it raises critical cyber security issues and potential data-protection concerns, which are discussed in CIBSE Guide-D [3].

Securing the integrity of systems from both


should be addressed directly and must be continually reviewed against newly emerging threats. This responsibility extends throughout all roles in a business and all its processes (i.e. staff induction, in-service training and departure; product design philosophy, customer/client interaction, service procedures, etc., etc.). It cannot simply be addressed by technology-based solutions.
