Do you recognize these challenges?
Whether the connected thing is a vehicle, a refrigerator, a toy or a sensor, the manufacturing process
may pose security challenges:
- Issuance of birth certificates in a secure manufacturing network without Internet connectivity
- On-device key generation is time consuming and a bottleneck in the manufacturing process
- Cumbersome administration and maintenance of multiple Certificate Authorities (CA)
- OPC UA (IEC 62541) Global Discovery Service (GDS) certificate management
Trusted identities for IoT (Internet of Things)
During this release video, we explore topics pertaining to secure provisioning and management of trusted identities for IoT. Some of the topics we cover include what is PKI and how it ensures confidentiality, integrity, and availability of a connected ecosystem, and Nexus’s solutions around birth (factory) identity and on-field identity for IoT devices.
How does it work?
A “Factory CA” issuing a “birth certificate” to the connected device when manufactured, ensures that the device can authenticate and securely communicate with an IoT application. It furthermore enables the device to authenticate for being onboarded to an IoT platform and/or become part of the operating environment. An “operational CA” can issue an operational certificate for the same device to be used for secure communication in this operating environment.
Nexus Smart ID IoT provides a factory CA where security requirements mandate an on-premise CA. Nexus GO IoT service, based on Nexus Smart ID IoT, can also provide PKI certificate lifecycle management throughout the devices’ lifetime. A “lifecycle CA” can augment the factory CA and provide revocation status service and renewal of certificates. Nexus Smart ID and the GO IoT service are based on mature, scalable, highly reliable, continuously tested and maintained products. The multi-CA solution helps you adapting the PKI hierarchy and request certificates via standard protocols. Nexus' solution offers administration, reporting and automation features and has a solid track record.
The main advantages of Nexus GO IoT are:
Explore more customer cases
Smart ID IoT to secure world’s most ambitious smart meter project
For the critical infrastructure sector, especially Power & Energy, the potential consequences of a security breach can be devastating. With rapid digital transformation and adoption of smart meters in smart grids, due emphasis is being given to securing the advanced metering infrastructure (AMI).
How Danfoss secures their connected things with PKI for manufacturing
Danfoss has a wide portfolio of
IoT-based solutions and products and requested Nexus to help support them with a flexible public-key infrastructure (PKI) platform. This would allow them to combine on-premise and SaaS-based Certificate Authorities (CA) in one PKI.
Simplified and secured IoT device management
Nexus, Software AG and a range of industry experts are contributing to the open-source thin-edge.io project. This project provides a cloud-agnostic IoT framework that can be easily deployed on a wide range of PLCs, protocol gateways and other IoT devices using Linux-based operation systems.