Microchip Technology announced Thursday its end-to-end security solution for Internet of Things (IoT) devices that connect to Amazon Web Services IoT (AWS IoT). Microchip and AWS collaborated to develop this integrated solution to help IoT devices comply with AWS’s mutual authentication IoT security model. Using Microchip’s new security solution will help companies implement these security best practices from evaluation through production. The solution adds a high level of security, simplifies the supply chain, and is now one of the fastest ways to connect to the AWS Cloud.
Microchip’s end-to-end security solution handles this process during three production steps. First, the AT88CKECC kit will allow customers to meet the security standard of AWS’s mutual authentication model and connect to the AWS IoT platform during the evaluation and engineering phase. Second, the AWS-ECC508 device assists with meeting security standards during the prototyping and pre-production phase. Finally, devices will be customized for production stages to ensure information security in customer applications.
Currently, third party manufacturers of devices that connect to AWS IoT service must take specific actions to comply with the advanced security model. First, they must pre-register their security authority to AWS servers in order to establish a trust model. Second, for each IoT device they must generate unique cryptographic keys that are mathematically linked to the pre-registered security authority. Finally, the unique device keys must remain secret for the life of the device.
In volume production, the generation and secure handling of these unique keys can be a daunting challenge in the chain of manufacturing especially where third parties with different trust and compliance levels are involved.
AWS and the ECC508 device naturally complement each other with comprehensive mutual authentication security capabilities. The device has strong resistance against environmental and physical tampering including countermeasures against expert intrusion attempts. In addition, the device features a high quality random number generator, the internal generation of secure unique keys and the ability to seamlessly accommodate various production flows in the most cost-effective manner.
A typical IoT device consists of a small [8-bit] microcontroller, and is battery powered. It is typically constrained for resources like central processing unit (CPU) performance to provide low latency responsiveness, memory and code space for security protocols and for how much power they can consume in order to preserve battery life. The ECC508 device has a low-power processor-agnostic cryptographic acceleration for compatibility with the widest range of resource constrained IoT devices.
Developed jointly with AWS, the Microchip AWS Zero Touch Secure Provisioning Kit helps designers to develop IoT devices that are in compliance with the new AWS security regulations. These new regulations state that a device must use mutual authentication with a remote server to be authorized on the AWS cloud. Incorporating Microchip’s pre-configured ECC508 and software kit into a system is now the simplest and most secure method to connect to the AWS IoT service.
“We understand the often complex nature of implementing AWS mutual authentication in microcontrollers,” said Nuri Dagdeviren, vice president and general manager of secure products at Atmel, a wholly-owned subsidiary of Microchip. “The customer would need to have some understanding of how to secure a software implementation, and this often creates a huge barrier. We have had a long standing relationship with AWS and are thrilled to have the opportunity to work with the world’s largest cloud provider to build a solution that helps our customers easily and securely connect to the AWS Cloud.”
“We have a strong relationship with Microchip and we are very excited to be able to offer a world-class solution to anyone who wishes to deploy secure and scalable IoT solutions on our cloud services,” said Marco Argenti, vice president for mobile and IoT, AWS. “For all companies we work with, embracing security best practices are an essential step in achieving our mutual goal of offering customers the best and most secure IoT platform available. We believe this new solution will be one of the simplest and most cost-effective ways for our customers to comply with our security best practices.”