Inside Rambus’ IoT Security Service

Subscribe To Download This Insight

By Michela Menting | 4Q 2017 | IN-4812

Earlier this year, in May 2017, Rambus launched a new turnkey solution: CryptoManager IoT Security Service. The service, part of its broader CryptoManager platform, provides secure connectivity, lifecycle management, and advanced device monitoring for the IoT. The service is targeted at service providers and OEMs and is focused on providing security from the device all the way to the cloud. The security as a service solution includes a client software development kit (SDK) that is pre-integrated with chipset SDK and service providers’ IoT Platform as a Service (PaaS) offering. This integrated solution aims to reduce time-to-market through fast device onboarding, easy scaling of services, and the support of multiple device architectures.

Registered users can unlock up to five pieces of premium content each month.

Log in or register to unlock this Insight.

 

From Device to Cloud

NEWS


Earlier this year, in May 2017, Rambus launched a new turnkey solution: CryptoManager IoT Security Service. The service, part of its broader CryptoManager platform, provides secure connectivity, lifecycle management, and advanced device monitoring for the IoT. The service is targeted at service providers and OEMs and is focused on providing security from the device all the way to the cloud. The security as a service solution includes a client software development kit (SDK) that is pre-integrated with chipset SDK and service providers’ IoT Platform as a Service (PaaS) offering. This integrated solution aims to reduce time-to-market through fast device onboarding, easy scaling of services, and the support of multiple device architectures. 

Anchoring Trust in Hardware

IMPACT


The Rambus CryptoManager IoT Security Service utilizes the installed root of trust to authenticate the device and performs certificate provisioning which enables secure connection between the device and the IoT service. The trust element can be based on either the Rambus CryptoManager hardware Security Engine, or a third party’s hardware further increasing its interoperability in a constantly evolving IoT ecosystem. To this end, Rambus has partnered with silicon manufacturers such as Qualcomm (Snapdragon 820 processor and QCA4010 Wi-Fi chip) and STMicroelectronics (STM32 microcontroller) to provide a comprehensive hardware-based security solution that helps customers deploy IoT devices. Where secure hardware is not available, Rambus’ software based security engine can be used.

As such, CryptoManager IoT Security Service protects high availability of service and helps mitigate a variety of attacks including distributed denial of service (DDoS). Features of the solution include the ability to automatically update device credentials after a compromise is resolved to periodically ensure minimal service disruption and minimize field recalls. Additionally, the IoT Security Service reduces the risk of devices being hijacked, copied, re-purposed, or even disabled by a remote attacker through strong authentication between the device and service.

On the secure services side, Rambus has partnered with Softbank Technology and its subsidiaries Cybertrust and Miracle Linux Corporation. Cybertrust offers PKI solutions enabling Rambus to deliver secure key provisioning and security services for a range of connected devices. The applications targeted include automotive, industrial, medical, smart building and smart city, among other IoT deployments. 

Security-as-a-Service

COMMENTARY


Rambus CryptoManager IoT Security Service is indicative of the market demand for authentication and security analytics solutions for the IoT. Further, security services demand is driven by the need for end-to-end security at multiple layers, and to abstract some of the complexity of managing keys for authentication, provisioning and security analytics purposes.

Typically, the encryption key management model is not well suited to the IoT, whether it is the management of private keys, or adapting public key infrastructures to IoT networks. For security services, anchoring the trust in secure silicon is an enabler for secure systems, and there is an opportunity to adapt this to the IoT, through the development of a Silicon to Cloud secure service model that targets embedded systems and interconnected applications.

One of the driving trends in the secure lifecycle management market is to make such provisioning and maintenance as simple as possible, by leveraging automation and by ensuring that the device, once purchased by an end user, can provision itself as quickly and as seamlessly as possible. There have been IoT application and cloud enablement platforms for a number of years, but Rambus’ CryptoManager IoT Security Service seeks to provide a comprehensive IoT security solution (running from device to cloud) that does not disrupt a device maker’s profitability or time to market, and still offers protection for users connected to private and enterprise networks. In other words, it’s about allowing entry through the door to authorized data and users, but not to hackers.

Services

Companies Mentioned