Insights into The Current State of IoT Security and Practical Advice for Safeguarding IoT Endpoints
In
the fast-evolving IoT landscape, securing connected devices and their
IT systems is crucial. During our recent webinar, "IoT Security
Strategies: Implementing Secure Connected Solutions," expert IoT
specialists — Chris Barker, Senior Director Product Security at Semtech(Semtech:formerly Sierra Wireless), and Paul Bradley, Vice President Solutions Sales at Kigen — shared
insights into the current state of IoT security and practical advice
for safeguarding IoT endpoints. You can find highlights of the Q&A
session, which includes helpful references and guidance for
IT and technical leaders.
What’s the difference between eSIM, IoT SAFE and a TPM?
An eSIM is a platform that hosts different
mobile operator profiles, allowing multiple profiles to exist within
the same physical SIM, or more accurately, an eUICC. IoT SAFE is an application that operates within the eUICC, which reduces bill of materials (BoM) costs by combining the functions of both a physical eUICC and a Secure Element or TPM into one component.
On the other hand, TPMs
originated from the PC world, often associated with applications like
BitLocker, which encrypt the contents of your hard disk. In the mobile
space, where power efficiency is crucial, secure elements and SIMs have
increasingly served as trusted roots for transacting or in-device security such as biometric authentication. While eSIMs with IoT SAFE and TPMs have similar roles, they have evolved differently to suit their respective environments.
What should companies consider when deploying IoT devices in multiple jurisdictions, particularly regarding compliance with regulations?
Companies need to examine the specific
regulations for each jurisdiction where they are deploying IoT devices.
It’s essential to ensure compliance with local laws, as regulations can
vary significantly. Even IoT manufacturers face challenges in navigating
the myriad of regulations, often receiving inquiries from customers
about specific certifications. While there are common guidelines, such
as avoiding hard-coded passwords and ensuring regular updates, the
complexity of compliance depends on the deployment location. To aid in
this process, initiatives like PSA Certified have
been established, which map local regulations to certification
requirements, providing traceability and assisting companies in
achieving compliance with IoT security standards.
What are some recommendations for achieving end-to-end security?
To ensure end-to-end security, it's
important to consider the use case, especially if the data is sensitive
or will be used in a sensitive manner. A key recommendation is to secure
the credentials that guarantee data provenance and transport from the
device to the cloud within tamper-resistant hardware. This could be a
SIM using IoT SAFE or a root of trust. Protecting those credentials is essential.
How do you approach end-to-end security from the device to the cloud?
We focus on the entire process, looking at
every component from the device to the cloud. We build our security and
defenses based on this comprehensive view, implementing security
controls and testing them thoroughly, including third-party assessments,
to ensure a smooth end-to-end security process.
How important is training for customers on IoT security, and what responsibility do manufacturers have in this regard?
Training for customers on IoT security is
crucial, and as IoT manufacturers, we hold a responsibility to educate
our users. Hosting webinars and providing security hardening guides are
some ways we facilitate this training. However, as an industry, we can
definitely improve our efforts in security awareness for IoT. Our team
frequently discusses how to better engage with customers, ensuring that
security is a key topic during conversations, especially during sales
discussions. We're continuously exploring ways to effectively
communicate the importance of security and how customers can protect
their devices.
Is there any security reference architecture for IoT infrastructures?
Yes, one well-known option is the ARM platform security architecture,
which you can certify against. It provides practical guidelines that
align with various governmental regulations from different institutions.
If you explore sites like the IoT Security Foundation, you'll find a comprehensive list of 30 to 50 links to different resources, some of which contain examples of security architectures as well as connections to specific regulations.
What about governmental security standards like GDPR, FIPS, etc.?
It's crucial to be aware of these
standards when deploying IoT solutions. It's important to work closely
with your legal team to understand the regulations applicable to your
jurisdiction, especially if sensitive data is involved. Ensuring
compliance and maintaining transparency across the board is essential
for every use case you implement. Additionally, there's an increasing
expectation for vendors to provide compliance as a service, as
enterprises will look to them for guidance on meeting security and
regulatory requirements.
- |
- +1 赞 0
- 收藏
- 评论 0
本文由Natalia转载自Sierra Wireless Official Website,原文标题为:Key Takeaways from Our Webinar on IoT Security Strategies: Implementing Secure Connected Solutions,本站所有转载文章系出于传递更多信息之目的,且明确注明来源,不希望被转载的媒体或个人可与我们联系,我们将立即进行删除处理。
相关推荐
IoT Router Failover Functionality on
IoT Router The failover function on the network is an important means to ensure the stability and reliability of the industrial Internet of Things network. Through the application of multi-link backup, dual SIM card failover, SD-WAN technology, VRRP protocol support, and remote fault diagnosis and recovery functions iot router It can maintain efficient and stable operation in a complex and ever-changing network environment, providing strong support for the digital transformation and intelligent upgrade of enterprises.
技术探讨 发布时间 : 2024-08-23
The Role of Embedded eSIM Functionality in Router Lte 4g
The integration of embedded eSIM functionality in Router Lte 4g serves as a powerful tool for enterprises seeking to enhance their IoT connectivity solutions. It offers seamless and flexible connectivity, simplifies network deployment and management, enables easy scalability and adaptability, and enhances the overall security of the industrial network.
技术探讨 发布时间 : 2024-03-23
How eSIM and iSIM Help Unlock Business Value
The embedded SIM (eSIM) and integrated SIM (iSIM) are the latest innovations in SIM technology, and they offer a number of benefits for IoT solution providers, including increased flexibility, ruggedization, security, and lower costs.
技术探讨 发布时间 : 2023-11-01
ROHM(罗姆)传感器产品选型指南(英文)
目录- Company Profile Motion Sensors Environment Sensors Interface Wireless Communication Sensor Control Evaluation Kits R&D Sensors Thin-Film Piezoelectric MEMS Service Package
型号- BU52492NUZ,BH1790GLC,BU52274NUZ,BU52040HFV,WQFN32,WSOF5,WQFN40,WSOF6,RLD82PZJ1,SIR-568ST3F,RPMD-0100,TCM 310,ML7396D,RPT-38PB3F,ML7396A,RLD94PZJ5,BU21170 MUV,BU52074GWZ,BU21180FS,RLD94PZJ7,SOP16,RPR-0521RS,USB 400J,RPI- 441C1E,STM 431J,KXG07,ECO 200,BH1900NUX,KXG08,BU52073GWZ,BU21077MUV,BU21029MUV,VQFN028V5050,KX022-1020,BP35A1,BM1386GLV,BP35C2,BM1383AGLV,KX122-1037.KX122-1037,BP35C0,VQFN024V4040,SIM-22ST,BU21025GUL,PTM 330,BH1620FVC,ML7404,ML7406,PTM 210,BH1682FVC,WSON008X2120,RLD85PZJ4,WLGA010V28,ML7416N,BU52075GWZ,BDJXXX0HFV,BU52098GWZ,RPI-441C1,BH1726NUC,RPI-0352E,BD9251FV,BH1749NUC,BU21170MUV,BD1020HFV,BU52493NUZ,RPI-222,SSOP5,VSON008X2030,KX122-1037,RPI-221,RLD85NZJ4,PTM 210J,SSON004X1216,BU52494NUZ,1053KX222,ML630Q464,RLD84NZJ2,ML630Q466,KMX62-1031,BU52092GWZ,RPT-34PB3F,KX123-6000,BH1721FVC,ML7066,BU21079F,K X112-10 42,KX224-1053,BU52097GWZ,RPI-441C1E,KX126-1063,BH1792GLC,PTM 430J,BU52273NUZ,RLD84PZJ2,RPR- 0521RS,STM 429J,ML610Q793,STM 300,ML620Q503H,BU21027MUV,TCM 410J,ML7344J,ML7344C,BU21023GUL,BH1680FVC,KX222,BM1422AGMV,MK71251-02,MK71251-01,SIM-030ST,BP3580,KX112-1042,ML620Q504H,BH1730FVC,BU52054GWZ,MK71050-03,BP359B,ML7345D,ML7345C,BP3599,SIR-34ST3F,RPI-352,BP3595,BGA81,KXTC9,RPT-37PB3F,BP3591,BU52272NUZ,BU52792GWZ,SIM-040ST,KX126 -1063,ML630Q791,VCSP50L,SIR-563ST3F,BH1603FVC,RLD94NZJ7,RLD94NZJ5,RPI-125,RPI-246,RPI-121,USB 300,C-QFN24,RPI-122,RPI-243,BU21028FV-M,RPM-22PB,SIR-341ST3F,BU21026MUV,KX222-1054,SSOP-B20,VQFN020V4040,SSOP-B28,SIR-56ST3F,BU21023MUV,BU52078GWZ,UCSP35L,HVSOF5,ML62Q1000,KX124-1051,SSOP-B14,KXCJB-1041,KXTJ3-1057,BD7411G,BU52095GWZ,BU21072MUV,K X TJ3 -10 57,BU52177GXZ,BU21078FV,KXG03,KXG07-1080,BU21024FV-M,RPI-0226,ML610Q794G,MK71251-02B,MK71251-02A,RPI- 441C1,BU52077GWZ,VQFN48,ML7345,STM 320,RLD82NZJ1,HSM 100,BU52055GWZ,BU21029GUL,RPM-20PB,STM 400J,BU52072GWZ,SIM-20ST,KX123,KX122,BU21078MUV,RPI-0125,STM 331,ML8540
Iot Made Easy: Energiya and Semtech Corp Collaborate to Enable Customers to Quickly Connect Any Device to the Cloud
Semtech and Energiya collaborate to connect legacy devices to the cloud via the FX30 gateway, which supports 4G LTE and is expandable with Energiya‘s add-in cards. This solution is designed for minimal effort IoT integration and includes a global SIM for cloud connectivity. It‘s suitable for various applications, from industrial to environmental monitoring, and requires the FX30, a SIM, add-in cards, and optional custom application development.
应用方案 发布时间 : 2024-09-10
有人物联(usr)工业路由器选型指南
目录- Company Profile High performance 4G industrial VPN router Dual module 4G cellular router Dual Ethernet with serial port 4G router Dual Ethernet 4G industrial router Small business 4G industrial router 5G Gigabit industrial cellular router Solutions and applications PUSR cloud
型号- USR-G781-A,USR-G781-43,USR-G806-EAU,USR-G781-E,G810,USR-SDR160,USR-IO424T,USR-G810,USR-G808-33,USR-G808-AA,USR-G808-EE,USR-G809-EAU,USR-G810-E,USR-0781,USR-G805-ECAUX,USR-G806,USR-G806W,USR-G809,USR-G808,USR-G805-ECEUX,USR-G806S,USR-G808-AU,G781,USR-G781,USR-G809-E,USR-G806S-EAU,USR-G806-G,USR-G806-AU,USR-G806-E,G808,USR-G806-43,USR-G806-A,USR-TCP232-410S,G806S,USR-G805,USR-G781-AU,USR-G806S-43
全球TOP物联网通信厂商Sierra,带来寿命超10年低功耗LPWA模组
Sierra推出寿命超10年1.8µA LPWA模组、5G模组及提供完整的物联网云端解决方案。
公司动态 发布时间 : 2022-09-09
有人物联(usr)通信网关/通信模组/交换机选型指南(英文)
描述- Positioned as a "trustworthy smart IIoT partner" and an industry-leading IIoT software/hardware solution provider,Jinan USR IOT Technology Limited operates in the upstream and downstream sections of the IIoT industry value chain and focuses on the R&D, production and sales of communication products in order to fulfill the mission of “connection value, and value connection”.
型号- USR-N5X0 SERIES,USR-G817,USR-K7,USR-K6,USR-M100,USR-N510,USR-CANET200,USR-N5X0,USR-ISG SERIES,USR-TCP232-T2,USR-G806 SERIES,USR-N668,USR-DR504-G,U200,USR-ISG008P,USR-ISG008,USR-DR502-E,USR-G816,USR-ISG005,USR-G816H,USR-G806,USR-G806W,USR-TCP232-ED2,USR-G809,USR-G808,USR-TCP232-E2,USR-G806S,USR-N540,USR-DR302,USR-ISG,USR-DR301,USR-N520,USR-W630,USR-G771-E,USR-W610,USR-TCP232-S2,WH-LTE-7S1-E,USR-G781,USR-G786-G,USR-DR404,USR-TCP232-410S,USR-TCP232-304,USR-G805,USR-TCP232-302
【产品】高集成度SOC芯片CM6610,完全兼容3GPP TS 36.211协议,适用于低速IoT场景
中移芯昇SOC芯片CM6610高性能、高集成度,适用于低速IoT场景。完全兼容3GPP TS 36.211协议,内部集成协议栈和SIM卡接口。支持699MHz~960MHz,1.71GHz~2.2GHz频段;QFN 6mmx6mm封装。
产品 发布时间 : 2022-09-11
具有eUICC功能的Smart Connectivity Premium,用一张国际SIM卡可实现跨地域/技术的全面覆盖
Sierra Wireless宣布推出具有eUICC功能的Smart Connectivity Premium,凭借一张国际SIM卡实现了跨地域和跨技术的全面覆盖,通过GSMA eSIM(eUICC)规范支持的多IMSI、多配置文件设计,提供了灵活的物联网连接管理,可满足未来需求。SIM卡在无法访问配置文件或网络时,它会在两者之间进行动态切换,在190多个国家提供最大的覆盖范围和内置故障切换。
厂牌及品类 发布时间 : 2023-02-14
MeiG Smart’s 5G module SRM825N Has Successfully Passed Chinese CCC, SRRC, CTA certification
SRM825N series adopt M.2 packaging, conform to the M.2 interface standard, and are designed with a standard size of 30x52x2.3mm. They have USB 3.1, PCIe 3.0, GPIO, and other interfaces, and are compatible with eSIM design, enabling rich IoT applications.
厂牌及品类 发布时间 : 2023-04-14
AirVantage® Cellular Smart Connectivity is Now Available on AWS Marketplace
Smart Connectivity is powered by AirVantage, a comprehensive connectivity management platform built on AWS. Smart Connectivity is a highly resilient cellular connectivity service that enables connections through two or more operator networks within a given country. With over 600 partner networks in more than 190 countries, it offers truly global coverage. Users can enjoy always-on connectivity with One SIM, regardless of their location. The solution also offers flexible pricing options that can be customized to match anticipated data consumption, ensuring optimal value for users.
厂牌及品类 发布时间 : 2023-11-21
美格智能发布搭载展锐唐古拉V510国产芯片的5G模组SRM821,尺寸为30*52*2.3mm
美格智能携手我国集成电路设计龙头企业展锐,正式发布了基于展锐唐古拉5G基带芯片平台V510的5G国产芯模组SRM821。搭载展锐唐古拉V510国产芯片, 采用标准M.2封装,尺寸为30*52*2.3mm,四天线设计,支持eSIM和双SIM卡设计,可支持5G独立组网(S A)和非独立组网(NSA)两种网络架构,并向下兼容4G/3G网络,支持国内四大运营商频段需求。
厂牌及品类 发布时间 : 2023-05-10
Sierra Wireless Introduces Smart Connectivity Premium with eUICC Capabilities and Extends Connectivity Coverage in the United States
This new offering enables customers access to more networks via Kigen eSIM, enabling future-proofed IoT-managed connectivity for global applications. With industrial IoT increasingly becoming business-critical, resilient connectivity options are essential.
厂牌及品类 发布时间 : 2023-02-09
电子商城
现货市场
登录 | 立即注册
提交评论