Do you recognize these challenges?
Whether the connected thing is a vehicle, a refrigerator, a toy or a sensor, the manufacturing process may pose security challenges:
- Issuance of birth certificates in a secure manufacturing network without Internet connectivity
- On-device key generation is time consuming and a bottleneck in the manufacturing process
- Cumbersome administration and maintenance of multiple Certificate Authorities (CA)
How does it work?
A “Factory CA” issuing a “birth certificate” to the connected device when manufactured, ensures that the device can authenticate and securely communicate with an IoT application. It furthermore enables the device to authenticate for being onboarded to an IoT platform and/or become part of the operating environment. An “operational CA” can issue an operational certificate for the same device to be used for secure communication in this operating environment.
Nexus Smart ID IoT provides a factory CA where security requirements mandate an on-premise CA. Nexus GO IoT service, based on Nexus Smart ID IoT, can also provide PKI certificate lifecycle management throughout the devices’ lifetime. A “lifecycle CA” can augment the factory CA and provide revocation status service and renewal of certificates. Nexus Smart ID and the GO IoT service are based on mature, scalable, highly reliable, continuously tested and maintained products. The multi-CA solution helps you adapting the PKI hierarchy and request certificates via standard protocols. Nexus' solution offers administration, reporting and automation features and has a solid track record.
The main advantages of Nexus GO IoT are: