Microchip Technology and Amazon Web Services(AWS) partners to deliver avowed industry’s first end-to-end security solution for Internet of Things (IoT) devices.
Directly connected to Amazon Web Services IoT (AWS IoT), the companies are known to have collaborated to develop this integrated solution to help IoT devices quickly and easily comply with AWS’s mutual authentication IoT security model.
Using Microchip’s new security solution adds a high level of security, simplifies the supply chain, and is now one of the fastest ways to connect to the AWS Cloud. The new integration is sought to enroute company’s security best practices from evaluation through production.
Currently, third party manufacturers of devices that connect to AWS IoT service undergoes step-by-step actions to comply with the advanced security model – includes pre-register for security authority, each IoT devices generates unique cryptographic keys linked to the pre-registered security authority; lastly, users have to keep the device keys secret for the life of the device.
To keep the process secure and seamless in manufacturing chain where third parties with different trust and compliance levels are involved; Microchip’s end-to-end security solution handles this process during three production steps.
- First, the AT88CKECC kit will allow customers to meet the security standard of AWS’s mutual authentication model and easily connect to the AWS IoT platform during the evaluation and engineering phase.
- Second, the AWS-ECC508 device assists with meeting security standards during the prototyping and pre-production phase.
- Finally, devices will be customised for production stages to ensure information security in customer applications.
Customers simply solder the device on the board and connect it over I2C to the host microcontroller (MCU) which runs an AWS Software Development Kit (SDK) leveraging the ECC508 device for AWS IoT. Once this is complete, there is no need to load unique keys and certificates required for authentication during the manufacturing of the device as the AWS-ECC508 is pre-configured to be recognised by AWS without any intervention. All the information is contained in a small (3×2 mm), easy to deploy crypto companion device.
“We understand the often complex nature of implementing AWS mutual authentication in microcontrollers,” said Nuri Dagdeviren, vice president and general manager of secure products at Atmel, a wholly-owned subsidiary of Microchip. “The customer would need to have some understanding of how to secure a software implementation, and this often creates a huge barrier. We have had a long standing relationship with AWS and are thrilled to have to the opportunity to work with the world’s largest cloud provider to build a solution that helps our customers easily and securely connect to the AWS Cloud.”
Key nuggets of this joint end-to-end security solution includes,
- AWS and the ECC508 device naturally complement each other with comprehensive mutual authentication security capabilities.
- The device is sought to have strong resistance against environmental and physical tampering including countermeasures against expert intrusion attempts.
- The device features a high quality random number generator, the internal generation of secure unique keys and the ability to seamlessly accommodate various production flows in the most cost-effective manner.
- A typical IoT device consists of a small [8-bit] microcontroller, and is battery powered.
- The ECC508 device has a low-power processor-agnostic cryptographic acceleration for compatibility with the widest range of resource constrained IoT devices.
“We have a strong relationship with Microchip and we are very excited to be able to offer a world-class solution to anyone who wishes to deploy secure and scalable IoT solutions on our cloud services,” said Marco Argenti, vice president, Mobile and IoT, Amazon Web Services, Inc. “For all companies we work with, embracing security best practices are an essential step in achieving our mutual goal of offering customers the best and most secure IoT platform available. We believe this new solution will be one of the simplest and most cost-effective ways for our customers to comply with our security best practices.”
The AWS-ECC508 kit (part # AT88CKECC-AWS-XSTK) is exclusively obtainable. The AWS-ECC508 (part # ATECC508A-MAHAW-S and ATECC508A-SSHAW-T) is available in UDFN and SOIC packages and is available today for sampling and volume production each in 10,000 unit quantities.