We developed a comprehensive suite based on state-of-the-art technologies that brings strong security in IoT Systems:
• State-of-the-art secure elements on client side
• Standard cryptographic protocols for communication channels and data encryption
• Standard X.509-v3 certificates for mutual authentication
The interest on IoT is rapidly growing in a large part of today’s business.
IoT devices have many applications that are designed to make life easier and simpler, but as the number of connected devices grows so do attempts to compromise their security. As we connect more devices - an expected one trillion by 2035 - we need to design-in enough protection to secure them against emerging threats.
Theft of intellectual properties
Theft of Data
Access from unauthorized devices
Spread of unauthorized firmware
We must ensure our products are not putting an organization's assets, and public and private infrastructure at risk.
If the opportunities, knowledge and insight enabled by the IoT is to benefit people and businesses, it's clear that the security of our connected devices and data streams cannot be an afterthought.
Security must be embedded in every element and process, starting from the design phase.
The "IoT Secure Suite" offers security solutions suited to the true needs of each use case, in order to extend the protection to as many as possible smart and connected devices.
With our “IoT Secure Suite” we have designed a unique security process that builds a secure IoT infrastructure, taking into account all the System components (Client Protection, Data Protection, Cloud Protection, Channel Protection).
State-of-the-art PKI with X.509-v3 standard certificates
Secured procedure for Device certificates generation
CA’s Private keys securely stored
Safe and reliable set up of PKI
State-of-the art support for Smartphone and PCs connections
Each device is provisioned with a unique set of keys
- For secure communication
- For secure firmware upgrade
- Application-specific keys
The Key provisioning process is secured
Ability to secure data exchange between devices and cloud
Fine-grained device identification
Each device enables the use of a secure element
The SE safely stores secret and private data
The SE enables secure exchange with other system elements
Non cloneable device
Secure mutual authentication with other parties of infrastructure
The firmware is encrypted and signed
The devices can determine if firmware is genuine
Firmware update accessible only for genuine devices
Only genuine firmware can be installed on devices
In recent years, various initiatives have been launched worldwide to highlight the main risks of the lack of security in the IoT sector and recently the UK government published the Code of Practice for IoT Security.
The aim of this code is to support all parties involved in the development, manufacturing and retail of consumer IoT with a set of 13 guidelines to ensure that products are secure by design.
No default passwords
Implement a vulnerability disclosure policy
Keep software updated
Securely store credentials and security-sensitive data
Minimise exposed attack surfaces
Ensure software integrity
Ensure that personal data is protected
Make systems resilient to outages
Monitor system telemetry data
Make it easy for consumers to delete personal data
Make installation and maintenance of devices easy
Validate input data
The IoT Secure Suite is perfectly compliant with all these requirements and covers all these risks.