Insights into The Current State of IoT Security and Practical Advice for Safeguarding IoT Endpoints

时间： 2024-08-20 来源：Sierra Wireless Official Website

技术问答

选型帮助

研发客服

商务客服

In the fast-evolving IoT landscape, securing connected devices and their IT systems is crucial. During our recent webinar, "IoT Security Strategies: Implementing Secure Connected Solutions," expert IoT specialists — Chris Barker, Senior Director Product Security at Semtech(Semtech:formerly Sierra Wireless), and Paul Bradley, Vice President Solutions Sales at Kigen — shared insights into the current state of IoT security and practical advice for safeguarding IoT endpoints. You can find highlights of the Q&A session, which includes helpful references and guidance for IT and technical leaders.

What’s the difference between eSIM, IoT SAFE and a TPM?

An eSIM is a platform that hosts different mobile operator profiles, allowing multiple profiles to exist within the same physical SIM, or more accurately, an eUICC. IoT SAFE is an application that operates within the eUICC, which reduces bill of materials (BoM) costs by combining the functions of both a physical eUICC and a Secure Element or TPM into one component.

On the other hand, TPMs originated from the PC world, often associated with applications like BitLocker, which encrypt the contents of your hard disk. In the mobile space, where power efficiency is crucial, secure elements and SIMs have increasingly served as trusted roots for transacting or in-device security such as biometric authentication. While eSIMs with IoT SAFE and TPMs have similar roles, they have evolved differently to suit their respective environments.

What should companies consider when deploying IoT devices in multiple jurisdictions, particularly regarding compliance with regulations?

Companies need to examine the specific regulations for each jurisdiction where they are deploying IoT devices. It’s essential to ensure compliance with local laws, as regulations can vary significantly. Even IoT manufacturers face challenges in navigating the myriad of regulations, often receiving inquiries from customers about specific certifications. While there are common guidelines, such as avoiding hard-coded passwords and ensuring regular updates, the complexity of compliance depends on the deployment location. To aid in this process, initiatives like PSA Certified have been established, which map local regulations to certification requirements, providing traceability and assisting companies in achieving compliance with IoT security standards.

What are some recommendations for achieving end-to-end security?

To ensure end-to-end security, it's important to consider the use case, especially if the data is sensitive or will be used in a sensitive manner. A key recommendation is to secure the credentials that guarantee data provenance and transport from the device to the cloud within tamper-resistant hardware. This could be a SIM using IoT SAFE or a root of trust. Protecting those credentials is essential.

How do you approach end-to-end security from the device to the cloud?

We focus on the entire process, looking at every component from the device to the cloud. We build our security and defenses based on this comprehensive view, implementing security controls and testing them thoroughly, including third-party assessments, to ensure a smooth end-to-end security process.

How important is training for customers on IoT security, and what responsibility do manufacturers have in this regard?

Training for customers on IoT security is crucial, and as IoT manufacturers, we hold a responsibility to educate our users. Hosting webinars and providing security hardening guides are some ways we facilitate this training. However, as an industry, we can definitely improve our efforts in security awareness for IoT. Our team frequently discusses how to better engage with customers, ensuring that security is a key topic during conversations, especially during sales discussions. We're continuously exploring ways to effectively communicate the importance of security and how customers can protect their devices.

Is there any security reference architecture for IoT infrastructures?

Yes, one well-known option is the ARM platform security architecture, which you can certify against. It provides practical guidelines that align with various governmental regulations from different institutions. If you explore sites like the IoT Security Foundation, you'll find a comprehensive list of 30 to 50 links to different resources, some of which contain examples of security architectures as well as connections to specific regulations.

What about governmental security standards like GDPR, FIPS, etc.?

It's crucial to be aware of these standards when deploying IoT solutions. It's important to work closely with your legal team to understand the regulations applicable to your jurisdiction, especially if sensitive data is involved. Ensuring compliance and maintaining transparency across the board is essential for every use case you implement. Additionally, there's an increasing expectation for vendors to provide compliance as a service, as enterprises will look to them for guidance on meeting security and regulatory requirements.

发送到邮箱 |
+1 赞 0
收藏
评论 0
| 转发至：

本文由Natalia转载自Sierra Wireless Official Website，原文标题为:Key Takeaways from Our Webinar on IoT Security Strategies: Implementing Secure Connected Solutions，本站所有转载文章系出于传递更多信息之目的，且明确注明来源，不希望被转载的媒体或个人可与我们联系，我们将立即进行删除处理。

全部评论（0）

暂无评论

IoT Router Failover Functionality on

IoT Router The failover function on the network is an important means to ensure the stability and reliability of the industrial Internet of Things network. Through the application of multi-link backup, dual SIM card failover, SD-WAN technology, VRRP protocol support, and remote fault diagnosis and recovery functions iot router It can maintain efficient and stable operation in a complex and ever-changing network environment, providing strong support for the digital transformation and intelligent upgrade of enterprises.

技术探讨发布时间 : 2024-08-23

The Role of Embedded eSIM Functionality in Router Lte 4g

The integration of embedded eSIM functionality in Router Lte 4g serves as a powerful tool for enterprises seeking to enhance their IoT connectivity solutions. It offers seamless and flexible connectivity, simplifies network deployment and management, enables easy scalability and adaptability, and enhances the overall security of the industrial network.

技术探讨发布时间 : 2024-03-23

How eSIM and iSIM Help Unlock Business Value

The embedded SIM (eSIM) and integrated SIM (iSIM) are the latest innovations in SIM technology, and they offer a number of benefits for IoT solution providers, including increased flexibility, ruggedization, security, and lower costs.

技术探讨发布时间 : 2023-11-01

Sierra Wireless（司亚乐）是全球模块、路由器、连接性三大物联网市场排名前5的供应商，并在无线市场提供硬件、软件和服务，为客户提供创新、可靠、高性能的解决方案。其产品包括4G/5G/LPWA/WIFI蓝牙模组、智能网关、路由器、云服务平台及解决方案。

SIM卡 E-SIM卡 4G模组 5G模组智能模组 LPWA模组 WIFI蓝牙模块 GNSS定位模块可编程物联网网关基本物联网网关天线调制解调器云服务

授权代理商 - 世强控股有限公司线上商城技术资料

展开

ROHM（罗姆）传感器产品选型指南（英文）

目录- Company Profile Motion Sensors Environment Sensors Interface Wireless Communication Sensor Control Evaluation Kits R&D Sensors Thin-Film Piezoelectric MEMS Service Package

型号- BU52492NUZ,BH1790GLC,BU52274NUZ,BU52040HFV,WQFN32,WSOF5,WQFN40,WSOF6,RLD82PZJ1,SIR-568ST3F,RPMD-0100,TCM 310,ML7396D,RPT-38PB3F,ML7396A,RLD94PZJ5,BU21170 MUV,BU52074GWZ,BU21180FS,RLD94PZJ7,SOP16,RPR-0521RS,USB 400J,RPI- 441C1E,STM 431J,KXG07,ECO 200,BH1900NUX,KXG08,BU52073GWZ,BU21077MUV,BU21029MUV,VQFN028V5050,KX022-1020,BP35A1,BM1386GLV,BP35C2,BM1383AGLV,KX122-1037.KX122-1037,BP35C0,VQFN024V4040,SIM-22ST,BU21025GUL,PTM 330,BH1620FVC,ML7404,ML7406,PTM 210,BH1682FVC,WSON008X2120,RLD85PZJ4,WLGA010V28,ML7416N,BU52075GWZ,BDJXXX0HFV,BU52098GWZ,RPI-441C1,BH1726NUC,RPI-0352E,BD9251FV,BH1749NUC,BU21170MUV,BD1020HFV,BU52493NUZ,RPI-222,SSOP5,VSON008X2030,KX122-1037,RPI-221,RLD85NZJ4,PTM 210J,SSON004X1216,BU52494NUZ,1053KX222,ML630Q464,RLD84NZJ2,ML630Q466,KMX62-1031,BU52092GWZ,RPT-34PB3F,KX123-6000,BH1721FVC,ML7066,BU21079F,K X112-10 42,KX224-1053,BU52097GWZ,RPI-441C1E,KX126-1063,BH1792GLC,PTM 430J,BU52273NUZ,RLD84PZJ2,RPR- 0521RS,STM 429J,ML610Q793,STM 300,ML620Q503H,BU21027MUV,TCM 410J,ML7344J,ML7344C,BU21023GUL,BH1680FVC,KX222,BM1422AGMV,MK71251-02,MK71251-01,SIM-030ST,BP3580,KX112-1042,ML620Q504H,BH1730FVC,BU52054GWZ,MK71050-03,BP359B,ML7345D,ML7345C,BP3599,SIR-34ST3F,RPI-352,BP3595,BGA81,KXTC9,RPT-37PB3F,BP3591,BU52272NUZ,BU52792GWZ,SIM-040ST,KX126 -1063,ML630Q791,VCSP50L,SIR-563ST3F,BH1603FVC,RLD94NZJ7,RLD94NZJ5,RPI-125,RPI-246,RPI-121,USB 300,C-QFN24,RPI-122,RPI-243,BU21028FV-M,RPM-22PB,SIR-341ST3F,BU21026MUV,KX222-1054,SSOP-B20,VQFN020V4040,SSOP-B28,SIR-56ST3F,BU21023MUV,BU52078GWZ,UCSP35L,HVSOF5,ML62Q1000,KX124-1051,SSOP-B14,KXCJB-1041,KXTJ3-1057,BD7411G,BU52095GWZ,BU21072MUV,K X TJ3 -10 57,BU52177GXZ,BU21078FV,KXG03,KXG07-1080,BU21024FV-M,RPI-0226,ML610Q794G,MK71251-02B,MK71251-02A,RPI- 441C1,BU52077GWZ,VQFN48,ML7345,STM 320,RLD82NZJ1,HSM 100,BU52055GWZ,BU21029GUL,RPM-20PB,STM 400J,BU52072GWZ,SIM-20ST,KX123,KX122,BU21078MUV,RPI-0125,STM 331,ML8540

选型指南 - ROHM - Vol.3.1 - 05.2018 PDF 英文下载

Iot Made Easy: Energiya and Semtech Corp Collaborate to Enable Customers to Quickly Connect Any Device to the Cloud

Semtech and Energiya collaborate to connect legacy devices to the cloud via the FX30 gateway, which supports 4G LTE and is expandable with Energiya‘s add-in cards. This solution is designed for minimal effort IoT integration and includes a global SIM for cloud connectivity. It‘s suitable for various applications, from industrial to environmental monitoring, and requires the FX30, a SIM, add-in cards, and optional custom application development.

应用方案发布时间 : 2024-09-10

有人物联（usr）工业路由器选型指南

目录- Company Profile High performance 4G industrial VPN router Dual module 4G cellular router Dual Ethernet with serial port 4G router Dual Ethernet 4G industrial router Small business 4G industrial router 5G Gigabit industrial cellular router Solutions and applications PUSR cloud

型号- USR-G781-A,USR-G781-43,USR-G806-EAU,USR-G781-E,G810,USR-SDR160,USR-IO424T,USR-G810,USR-G808-33,USR-G808-AA,USR-G808-EE,USR-G809-EAU,USR-G810-E,USR-0781,USR-G805-ECAUX,USR-G806,USR-G806W,USR-G809,USR-G808,USR-G805-ECEUX,USR-G806S,USR-G808-AU,G781,USR-G781,USR-G809-E,USR-G806S-EAU,USR-G806-G,USR-G806-AU,USR-G806-E,G808,USR-G806-43,USR-G806-A,USR-TCP232-410S,G806S,USR-G805,USR-G781-AU,USR-G806S-43

选型指南 - 有人物联 - 2023/3/8 PDF 英文下载

全球TOP物联网通信厂商Sierra，带来寿命超10年低功耗LPWA模组

Sierra推出寿命超10年1.8µA LPWA模组、5G模组及提供完整的物联网云端解决方案。

公司动态发布时间 : 2022-09-09

有人物联（usr）通信网关/通信模组/交换机选型指南（英文）

描述- Positioned as a "trustworthy smart IIoT partner" and an industry-leading IIoT software/hardware solution provider,Jinan USR IOT Technology Limited operates in the upstream and downstream sections of the IIoT industry value chain and focuses on the R&D, production and sales of communication products in order to fulfill the mission of “connection value, and value connection”.

型号- USR-N5X0 SERIES,USR-G817,USR-K7,USR-K6,USR-M100,USR-N510,USR-CANET200,USR-N5X0,USR-ISG SERIES,USR-TCP232-T2,USR-G806 SERIES,USR-N668,USR-DR504-G,U200,USR-ISG008P,USR-ISG008,USR-DR502-E,USR-G816,USR-ISG005,USR-G816H,USR-G806,USR-G806W,USR-TCP232-ED2,USR-G809,USR-G808,USR-TCP232-E2,USR-G806S,USR-N540,USR-DR302,USR-ISG,USR-DR301,USR-N520,USR-W630,USR-G771-E,USR-W610,USR-TCP232-S2,WH-LTE-7S1-E,USR-G781,USR-G786-G,USR-DR404,USR-TCP232-410S,USR-TCP232-304,USR-G805,USR-TCP232-302

选型指南 - 有人物联 - 2023/3/30 PDF 英文下载

【产品】高集成度SOC芯片CM6610，完全兼容3GPP TS 36.211协议，适用于低速IoT场景

中移芯昇SOC芯片CM6610高性能、高集成度，适用于低速IoT场景。完全兼容3GPP TS 36.211协议，内部集成协议栈和SIM卡接口。支持699MHz~960MHz，1.71GHz~2.2GHz频段；QFN 6mmx6mm封装。

产品发布时间 : 2022-09-11

具有eUICC功能的Smart Connectivity Premium，用一张国际SIM卡可实现跨地域/技术的全面覆盖

Sierra Wireless宣布推出具有eUICC功能的Smart Connectivity Premium，凭借一张国际SIM卡实现了跨地域和跨技术的全面覆盖，通过GSMA eSIM（eUICC）规范支持的多IMSI、多配置文件设计，提供了灵活的物联网连接管理，可满足未来需求。SIM卡在无法访问配置文件或网络时，它会在两者之间进行动态切换，在190多个国家提供最大的覆盖范围和内置故障切换。

厂牌及品类发布时间 : 2023-02-14

MeiG Smart’s 5G module SRM825N Has Successfully Passed Chinese CCC, SRRC, CTA certification

SRM825N series adopt M.2 packaging, conform to the M.2 interface standard, and are designed with a standard size of 30x52x2.3mm. They have USB 3.1, PCIe 3.0, GPIO, and other interfaces, and are compatible with eSIM design, enabling rich IoT applications.

厂牌及品类发布时间 : 2023-04-14

AirVantage® Cellular Smart Connectivity is Now Available on AWS Marketplace

Smart Connectivity is powered by AirVantage, a comprehensive connectivity management platform built on AWS. Smart Connectivity is a highly resilient cellular connectivity service that enables connections through two or more operator networks within a given country. With over 600 partner networks in more than 190 countries, it offers truly global coverage. Users can enjoy always-on connectivity with One SIM, regardless of their location. The solution also offers flexible pricing options that can be customized to match anticipated data consumption, ensuring optimal value for users.

厂牌及品类发布时间 : 2023-11-21

美格智能发布搭载展锐唐古拉V510国产芯片的5G模组SRM821，尺寸为30522.3mm

美格智能携手我国集成电路设计龙头企业展锐，正式发布了基于展锐唐古拉5G基带芯片平台V510的5G国产芯模组SRM821。搭载展锐唐古拉V510国产芯片, 采用标准M.2封装，尺寸为30*52*2.3mm，四天线设计，支持eSIM和双SIM卡设计，可支持5G独立组网（S A）和非独立组网（NSA）两种网络架构，并向下兼容4G/3G网络，支持国内四大运营商频段需求。

厂牌及品类发布时间 : 2023-05-10

Sierra Wireless Introduces Smart Connectivity Premium with eUICC Capabilities and Extends Connectivity Coverage in the United States

This new offering enables customers access to more networks via Kigen eSIM, enabling future-proofed IoT-managed connectivity for global applications. With industrial IoT increasingly becoming business-critical, resilient connectivity options are essential.

厂牌及品类发布时间 : 2023-02-09