Securing your IoT Thing
0 likes81 views
This document discusses securing IoT devices and providing secure over-the-air firmware updates. It describes using a secure element like STSAFE-A to provide secure storage, authentication, and firmware upgrades. The document also discusses providing end-to-end security through the gateway and nodes, including device protection, secure boot, key management, and secure communications. Finally, it discusses the importance of cellular remote updates and tools to manage updates for large fleets of IoT devices through trusted execution, integrity verification, and automated deployment.
Securing your IoT Thing
- 1. Securing your IoT “Thing” Andrew Pockson 21st November, 2018
- 2. Slide 2AS9120 (prEN 9120:2016) / ISO 9001:2015 ISO 14001:2015 IECQ-CECC Microcontrollers / Microprocessors – Security & Encryption &
- 3. STSAFE-A secure services Secure storage Secure Firmware upgrade Easy to use security services for IoT developers USB Type-C General Purpose MCU STSAFE-A secure element I2C Secure Communication Authentification Secure Element
- 4. Slide 4AS9120 (prEN 9120:2016) / ISO 9001:2015 ISO 14001:2015 IECQ-CECC End to End Security – Gateway & Nodes (“Things”) Securityarchitecture Sensory Input Software Data Protection Secure Storage Trust Zone Secure Boot JTAG Protection Unique Key/Certificate Device Protection Processor Storage Secure Communication Key M anagem ent Secure OTA Secure Channel Data Protection Auto Onboarding M utual Authentication Device M anagem ent
- 5. Slide 5AS9120 (prEN 9120:2016) / ISO 9001:2015 ISO 14001:2015 IECQ-CECC Device protection and trustedcode execution Unique, tamper-resistantIDinjected during the manufacturing process. ARTIKkeymanagementservice(KMS)and code signing service Secureover-the-air (OTA) updates Secure communications with otherdevices and the cloud TLS1.2industry-standard cryptographic algorithms Mutualauthentication and root of trust Securedevice registration (SDR) Secure JTAG Secure storage, secure file system,and secure element TheSamsungeMMC securefile system ARM®TrustZone Dataencrypted withruntime-generated key Tamper-resistantCommon Criteria EAL5 secure element Physicallyunclonable function (PUF)(ARTIK 053) *Not including020and030 ARTIK module ARTIK S-module Comments Deviceprotectionand trustedexecution KMSinfrastructureforcode signing Keymanagement service Code verificationkeyinHW Securekeystorage Secureboot(checksfor authorizedcode) Boot imageverification JTAGaccesslocked Lockout debugaccess Secure communications Per-deviceunique key and certificate Uniquelyidentifies device KeystoredinHWsecure element Securekeystorage PKIinfrastructure: mutual authenticaionofdeviceandcloud Devicetalksto authorizedcloudand vice versa Securestorage, secure file system, andsecure element SecureOS(separatesnormaland secureoperations) Hardwareenforced secure applicationsvia TEE LimitedsecuritylibAPI (3 API calls) Randomnumber generator, get certificateand signature Full securitylib API(27APIcalls) Keymanager, authentication,secure storage, encrypt/de- crypt Credential provisioning Add andmanage certificatesandkeyson device(andin secure element) Securestorage Encrypt datastoredon Flash End to End Security – Gateway & Nodes (“Things”)
- 6. Slide 6AS9120 (prEN 9120:2016) / ISO 9001:2015 ISO 14001:2015 IECQ-CECC Cellular – Module Services Over-the-air updates are needed to guarantee the scalability and profitability of IoT solutions
- 7. Slide 7AS9120 (prEN 9120:2016) / ISO 9001:2015 ISO 14001:2015 IECQ-CECC Cellular – Remote Updates Unprotected updates can lead to malicious software being installed in field devices, compromising your business and reputation Poorly programmed update campaigns can result in excessive data or energy consumption, defeating their initial purpose Managing thousands of device updates requires careful field campaign planning by customer care and service operation teams + + Campaign planning Airtime & energy cost Security threats Industrial IoT software management tools need to address these aspects specifically
- 8. Slide 8AS9120 (prEN 9120:2016) / ISO 9001:2015 ISO 14001:2015 IECQ-CECC Cellular – Safe and efficient IoT Fleet Updates Update Release management ensures only safe and tested Cinterion firmware and software can be pushed out to the field Campaign planning, execution and verification tools that help operation teams manage thousands of updates effectively Smart campaigns guarantee updates are data-efficient (incremental) and only pushed to healthy end-points Trusted software and application execution allow only authorized software to be installed and executed Integrity & Source Verification Automated software deployment
- 9. Slide 9AS9120 (prEN 9120:2016) / ISO 9001:2015 ISO 14001:2015 IECQ-CECC Cellular – Typical Dashboard Recently launched campaigns Close follow-up of campaign execution Error tracking and update retry option Map visualization of failed update attempts
- 10. Slide 10AS9120 (prEN 9120:2016) / ISO 9001:2015 ISO 14001:2015 IECQ-CECC Anglia Components Ltd Sandall Road, Wisbech, PE13 2PS United Kingdom Tel: +44 (0)1945 47 47 47 www.anglia.com info@anglia.com