IoT reference design promises end-to end security, from Avnet Silica
Inherent to IoT is the transfer of data over numerous different networks (WLAN, WAN, IP core, the cloud, etc.), each with their own distinctive protocol stacks and security mechanisms. Generally IoT-enabled devices (sensors, robots, etc.) need to connect to industrial networks using low power wireless connectivity technologies (like Bluetooth, 802.11, Z-Wave, etc.). It is, however – Avnet Silica asserts – likely to be another 5 to 6 years before these will have IP capabilities. Standard transport layer security (TLS), which relies on IP, therefore cannot be applied.
Through its partnership with embedded software specialist Ubiquios, plus related firmware support from Trusted Objects, Avnet Silica says it is ensuring that non-IP network vulnerability is fully addressed. A streamlined microcontroller stack has been developed through this cooperation, which forms the basis of the new IoT security reference design. The reference design is X509 certificate compliant, but this aspect has been rationalised, so that it respects the power and data limitations of Bluetooth 4.1 and other non-IP wireless protocols, while simultaneously being able to maintain the highest degrees of system security.
The reference design is intended to simplify the provisioning of devices in the field (whether it is within an IP or non-IP context), making the procedure quicker to complete. An operative does not need such a high level of training in order to complete the task. As the end device can be identified directly from the server, it is straightforward to renew the local key remotely. This avoids having to send an operative back out into the field to renew that key manually (which in reality rarely happens, due to the costs involved, thereby undermining protection provided over time).
“The more assets that a company has connected to the Internet, the greater their exposure will be to potential security threats. Though covering everything from the server down to the gateway may not prove to be a major problem, there are serious challenges for engineers at the network edge,” stated John Jones, Director of Innovation at Avnet Silica. “As our new security reference design is not restricted to IP nodes managed by the standard TLS process, IoT devices can thus be connected to IP-based infrastructure without security being compromised. By delivering an X509 certificate compliant solution, it is completely aligned with what IT directors expect, but in a stripped down format that is practical for low power wireless connectivity. The microcontroller stack design dispenses with the need for high performance microcontrollers at gateways. This makes the system more cost effective and energy efficient, as well as being much easier to implement.”
Avnet Silica; www.avnet-silica.com
If you enjoyed this article, you will like the following ones: don't miss them by subscribing to :
