How to secure and

identify devices in the

Internet of Everything

In the Internet of Everything, identity is everything.

By Ronald De Temmerman (VP Strategic Sales & PKI Services EMEA)

GlobalSign Webinar

MEET THE

PRESENTER

RONALD DE

TEMMERMAN

VP Strategic Sales &

PKI Services EMEA

WHAT

YOU WILL

LEARN

TODAY

1 The role of identity and

security in the IoE

2 New considerations for the IoE

3 PKI case studies for IoE

4 Strategic planning for IoE

5 Managing identities and

access rights in the IoE

///THE ROLE OF

IDENTITY& SECURITY

IN THE IOE

By 2020…

…50bn devices

…250m connected vehicles…50 trillion GBs data

Sources: Gartner, Cisco, Capgemini

…more than 25m apps

…4bn connected people

ROLE #1 -

AUTHENTICATION

“The only solution to assured authentication is –

and always will be – to combine and use

multiple factors or modalities.”

- Lumidigm

///

ROLE #2 -

ENCRYPTION///“[In the Internet of Things] Privacy needs to be

thought of as a functional requirement and not

just a quality attribute…built-in and not bolted

on.”

- Jonathon Fox & Tyson Macaulay, McAfee

ROLE #3 –

DATA INTEGRITY

“Privacy might cost you some embarrassment,

but integrity can easily cost you your life.”

- Martin Ruubel, Guardtime

///

NEW

CONSIDERATIONS

FOR THE IOE///

NEW CONSIDERATIONS FOR IOE

Trust Models/////

Diversity of devices and processing power /////

Size, Scale, and Scope of your Ecosystem/////

Lifecycle management across device & cloud/////

/// PKI CASE STUDIES

FOR THE IOE

Certificates enable secure boot

process, authenticate the

antennae, and encrypt the data

transmission to main appliance

76%

API to automatically embed

during manufacturing & reissue

throughout device lifespan

Embed certificates in their radio

and service nodes for wireless

coverage in buildings with poor

coverage

63%

CELLULAR

SIGNAL

AMPLIFIER

WHAT

WHY

HOW

Secures the connection between

device and users, and device and

company’s back end

Used GlobalSign’s highly

customizable PKI option to

achieve push certificates to

each device and replace every

10 days

Embed SSL certificates into

network management devices in

public locations

NETWORK

ACCESS

DEVICES

WHAT

WHY

HOW

STRATEGIC

PLANNING FOR

THE IOE

///

ADAPTING

PKI TO

MEET IOE

NEEDS

Shorter root hierarchies

Flexible subject parameters

Strong cryptographic algorithms

ECC Availability

Both longer & shorter certificate validities

Custom EKUs

Bootstrapped trust & revocation

IOE ECOSYSTEM KEY PLAYERS

Platform Providers

Application Developers

Thing Producers

The Things

PLATFORM PROVIDER USE CASE

The Things

Consumer

Administrator

Business

3rd

Party

Application

Vendor

Data Web Services

AdminPortal

Thing Web Services

Consumer Web Portal

Partner Web Portal

Cloud Provider

Public Trust

Private Trust

Trust needs are

scenario dependent

DEVICE MANUFACTURER USE CASE

Manufacturing

Enrollment

Usage

• Install software – including trust roots

• Possible to add certificate now

• Device comes online, needs to authenticate

to cloud services

• Possible to add certificate now

• Lifecycle of credentials

MANAGING

IDENTITIES &

ACCESS RIGHTS

///

IS PKI THE ANSWER TO

SECURING IOT?

///// Arguably the best option currently

///// Established standard, covers authentication,

encryption, and data integrity

///// Each deployment is going to have its own needs!

THANK YOU!

GET IN TOUCH

www.globalsign.de

GlobalSign SSL

@globalsign_de

GlobalSign Deutschland

GMO GlobalSign Ltd

verkauf@globalsign.com