Building a Secure IoT Device
Building a secure connected device is a complex challenge.- Provisioning of a device requires handling of secrets. While creating a physically secure facility is an accepted way of securely provisio …
| Talk Title | Building a Secure IoT Device |
| Speakers | Ashutosh Kumar Singh (Principle Software Engineer, Arm) |
| Conference | Open Source Summit + ELC North America |
| Conf Tag | |
| Location | San Diego, CA, USA |
| Date | Aug 19-23, 2019 |
| URL | Talk Page |
| Slides | Talk Slides |
| Video | |
Building a secure connected device is a complex challenge.- Provisioning of a device requires handling of secrets. While creating a ‘physically secure’ facility is an accepted way of securely provisioning a device, this doesn’t scale very well in a globally distributed supply chain model- In a multivendor (hardware and software vendors) scenario, mutual trust needs to be minimized- The integrity of the system (hardware/software) needs to be guaranteed- Devices need to be able to support secure connectivity- Cloud entity must be able to ‘attest’ the device’s current status to be able to decide the ‘quality of service’ it should offer to a device- Firmware must be updatable to mitigate newly discovered threatsThis talks elaborates on these challenges and explains the steps involved in building a secure connected device. It also covers how these challenges are addressed in the context of Platform Security Architecture(PSA) and Trusted Firmware M project.
