Seize the Trillion Device Opportunities with Arm the... · Pelion IoT device management...
Transcript of Seize the Trillion Device Opportunities with Arm the... · Pelion IoT device management...
© 2018 Arm Limited
Seize the Trillion Device Opportunities with ArmJerry Wang Presales Technical Consultant, IoT Services Group
© 2017 Arm Limited 2
© 2
01
8A
rm L
imit
ed.
About Arm
Employees with major presence in China and wider APAC
~6,000
in FY17 revenue$1.8B
Arm-based chips shipped to date and counting
125B+
The architects of global possibilities
Founded in 1990
HQ in Cambridge UK with global offices across Asia, Europe and US
Acquired by Softbank Group Corp. in 2016
Partner ecosystem
1,000+of the world’s population uses Arm technology
of world’s smartphones are based on Arm
>95%
© 2017 Arm Limited 3
© 2
01
8A
rm L
imit
ed.
Arm: the industry’s architecture of choice
>95% the world’s smartphones are based on Arm
22 years
4 years
4 years
20171991 2013 2021
50 billionchips shipped
50 billionchips shipped
100 billionchips expected to ship
>50% of Arm chips shipped in FYI6 (17+bn) into embedded devices
© 2017 Arm Limited 4
© 2
01
8A
rm L
imit
ed.
Key challenges for IoT deployments
Investment returnWhat is the value of data to my business?
SecurityconcernsCan the data be trusted?Does it make me vulnerable?
InteroperabilityhurdlesWhat is required to integrateIoT with current systems?
© 2017 Arm Limited 5
© 2
01
8A
rm L
imit
ed.
Challenge: Deploying and managing IoT at scale
Fragmented Deployments
Edge Gateway
Ultra-Constrained
Constrained
Mainstream
Cloud
ConnectingDevices
Harnessing Data
Security
Rich Node
ManagingDevices
Developing Devices
Different IoT device classes, connectivity options, and hybrid environments lead to fragmentation, complexity, & the need for security
PrivateOn Premises
Control
Data
© 2017 Arm Limited 6
Business Outcomes with IoT Technologies
Nobody just buys IoT technologies… Our customers found business outcomes.
© 2017 Arm Limited 7
© 2
01
8A
rm L
imit
ed.
Introducing the Pelion IoT PlatformEnd-to-end services built on Arm IPG+ISG security framework
Applications Ecosystem
(App Development Enablement)
Device EcosystemMbed OS Ported to Module and Chips
Connectivity Management Services
Device Management Services
Data Management Services
CDP Asset Tracking
Dev
ice-
to-d
ata
secu
rity
Pelion
Enterprise+
Other Data
Control
Data
© 2017 Arm Limited 8
© 2
01
8A
rm L
imit
ed.
Secure device management
Pelion IoT device management capabilities ensure messages are delivered securely and reliably from the right devices at the right time
• Device onboarding
• Device lifecycle management
• Secure software update
Equipment, environment, parts, materials, people
Application
data
data data data data data
InsightsOptimizationsResponses
Application
IoT PlatformDevice Management
Device Management Services
Application
© 2017 Arm Limited 9
© 2
01
8A
rm L
imit
ed.
Global IoT connectivity
A single vendor / multiple network options
Access to over 600 Networks globally
Highly available Global APN Providing Access to a range of different MNO connectivity services
• Various cellular connectivity offerings for all industries, including 4G LTE, 3G, 2G
• Sponsored Roaming, High Usage, Low Cost
• Global Roaming, Low Usage, Low Cost
• Local in country connectivity
• eUICC Services• Global roaming based bootstrap connectivity
• Local eUICC profiles orchestrated through IoT-X
• Industry standard ITIL Based Support Model
• Monitoring and NOC 24/7/365
• Service Centres in Europe and North America
Connectivity Management Services
© 2017 Arm Limited 10
© 2
01
8A
rm L
imit
ed.
Analyze Act Ingest Integrate Store Prepare Discover Share Analyze Act
Raw IoT Data
Enterprise and industrial data
Pelion Data Management Services
“…the supply of usable IoT data”
Partner / Customer Solutions
Enable an expert ecosystem
Data management unlocks valueData Management Services
© 2017 Arm Limited 11
The Pelion IoT Platform
Data Management Services
Device Management Services
Identity Access Mgt.
Connectivity Management
One View of
Data
One View of Devices
Marketing
Asset Visibility
Energy Management
Smart Lighting
Industrial Automation
In-homePatient Care
Complexity due to Diversity Abstraction of Complexity Business Value Creation
Partner and Customer
ApplicationsBusiness Systems
BusinessIntelligence
Visualization
WorkflowSaaS
Analytics
Machine Learning
SaaS
Database
Marketing
Social
Ultra-constrained
constrained
Rich node
gateway
Cellular
satellite
LPWAN
Pelion abstracts away the complexities of IoT
One View of
Connections
SIM Mgt. ServiceQuality
Network Orchestration
Lifecycle Mgt.
Unified operational
view
Unified Security
Unified Identity
Ingest Integrate Store Prepare
© 2017 Arm Limited 1212
Pelion Device Management
Service
© 2017 Arm Limited 13
Pelion device management: Many Communications Protocols, One Device Management
IoT connectivity may need many new communication technologies
• Common interface and tools
• Reduce Cost of Employee Training
• Scale to millions of devices easily
Simpler Device Management
NB-IoT
TODAY FUTURE
© 2017 Arm Limited 14
Connecting chip to cloud
IoT Cloud Applications
App Management, Monitoring, Logging
Web Servers,Load Balancing
Analytics and Rules Engines
VMs, Compute, Auto-scaling
Databases, Caching, Storage, Archiving
Events, Streaming, Message Busses
Device Services 3rd Party Cloud Platforms & Services
Device Silicon and Hardware
IoT Device Application
Device Software
Device Provisioning, Identity, Onboarding
Device Connectivity, Events, Monitoring
Device Update, Firmware Installation
Mbed Clients –Mbed OS, ToolsPelion Client,
© 2017 Arm Limited 15
Pelion device management service
Simple, secure and energy efficient IoT connectivity solution
for a diversity of devices, enabling unified connectivity from cloud applications
▪ Key features
▪ Standard based OMA LWM2M, CoAP and TLS/DTLS
▪ End-to-end channel security
▪ Secure device bootstrap
▪ Optimizes for small devices and energy efficiency
▪ IoT device communication via REST APIs to enterprise
software and web apps
©2017 Arm Limited
Two contrasting device management approaches
Vertically-integrated device management
Locks-in customers into a public computing platform
Horizontally-integrated device management
Enables flexibility in deployment of business applications
Public Cloud Computing Platform
Integrated Device Management
Public CloudCompute
Platform-independentDevice Management
Private Cloud
On-PremisePublic Cloud
ComputePublic CloudComputing Platform
©2017 Arm Limited
Secure all stages of device life-cycle
Manufacturing
On-boarding
Regular Use
SecureDeviceAccess
FactoryProvisioning
SecureSoftwareUpdate
BootstrapExternal CA
Commissioning
© 2017 Arm Limited 18
© 2
01
8A
rm L
imit
ed.
Removing friction to Device Management
On-boarding
• Connect to bootstrap service,get registration credentials
Regular use – update the device
• Securely remote updates of device
Retire/decommission
• Remove from the service (end of life) • Securely wipe sensitive key material
Commissioning
• Securely configure network credentials and operational parameters
1 Manufacturing – factory provisioning
• Configure devices with trusted unique identity• Device receives bootstrap credentials
2
3
5 6
Device Management Services
Regular use – sense/ send data
• Normal life device operation• Controlled access to devices in the field
4
©2017 Arm Limited
IoT Cloud Applications
App Management, Monitoring, Logging
Web Servers,Load Balancing
Analytics and Rules Engines
VMs, Compute, Auto-scaling
Databases, Caching, Storage, Archiving
Events, Streaming, Message Busses
Device Services 3rd Party Cloud Platforms & Services
Device Silicon and Hardware
IoT Device Application
Device Software
Device Provisioning, Identity, Onboarding
Device Connectivity, Events, Monitoring
Device Update, Firmware Installation
Mbed Clients –Mbed OS, ToolsPelion Client,
Confidential © Arm 2018 Limited 20
Pelion Device Management ClientThe client profile for robust management of constrained IoT devices
Easy to use, out of the box solution pre-integrated with Mbed OS and with Linux
Support for protocol stacks specifically designed for constrained nodes
Supports certificate based channel security with forward secrecy
Supports remote secure firmware update
Low footprint fitting into mainstream device leaving sufficient resourcesfor your application
Confidential © Arm 2018 Limited 21
Pelion Device Management Client LiteThe client profile for robust management of constrained IoT devices
Easy to use, out of the box solution pre-integrated with Mbed OS
Support for protocol stacks specifically designed for constrained nodes
Supports channel security
Supports remote secure firmware update
Low footprint fitting into constrained device leaving sufficient resourcesfor your application
© 2017 Arm Limited 22
Enterprise-class resiliency at the edge
©2017 Arm Limited
Connected to devices via gateway
Manage devices and gateway
Ready for compute at the edge
PELION DEVICE MANAGEMENT EDGE
© 2017 Arm Limited 23
Key components of Pelion Device Management Edge
© 2017 Arm Limited 24
IoT security challenges
Many IoT devices do not have proper security capabilities
• Due to cost
• Due to time to market
• Due to feature prioritization
• Due to lack of expertise
Extremely fragmented market - no trust between stakeholders
Security need is realized in hindsight
© 2017 Arm Limited 25
trusted
Building on proven security practices
Defense in depth strategy that uses layers of hardware security in the system
IoT architecture should re-use proven security practices:
• Uses principles of hardware “Compartmentalization” and “Least privilege”
• Use a hardware root of trust & trusted boot
• Ensure system is updatable
Security is at the system design level, not an add-on component
Lifecycle securityCommunication securityPlatform security
© 2017 Arm Limited 2626
Mbed OS
© 2017 Arm Limited 27
© 2
01
8A
rm L
imit
ed.
Removing friction to Developing Devices
Drivers
RTOS
Security
Middleware
Communication
Update Manage
Provision Connect
Application
Device Stacks 50%
30%Device Management
Device Application 20%
Mbed OS
MCU MCU
Application
© 2017 Arm Limited 28
What is Mbed OS?
An open source Platform OS built to address the complexity of IoT at scale running on Arm hardware
Built-in security (PSA)
Supports multi-protocol connectivity
>120 development platforms supported
>320K developers
Open source project in collaboration with ecosystem to accelerates IoT system development
MbedOS
Based on trusted CMSIS
RTOSkernel
Portabledrivers
Integratedsecurity
IoTconnectivity
Managementservices
Development
tools
Developer community
Partner ecosystem
© 2017 Arm Limited 29
Connected spaces need multi-protocol connectivity
IoT systems need secure, cost effective connectivity for a diversity of device applications
Mbed OS
© 2017 Arm Limited 30
© 2
01
8A
rm L
imit
ed.
Example: Asset tracking device
Blocks available with traditional RTOS Blocks available with Mbed OS
© 2017 Arm Limited 31
© 2
01
8A
rm L
imit
ed.
Expanding support for mass production modules
Providing product developers a simple entry point to the module marketplace where they can find mass production-quality modules running Mbed OS
© 2
01
8A
rm L
imit
ed.
© 2017 Arm Limited 32
Example Mbed OS products
Smart CityParking sensor
Smart AgricultureSoil monitoring
Smart RetailBLE Beacon
Smart TransportationEV Charger Station
Smart BuildingHVAC sensor
Smart HomeAI devices
© 2017 Arm Limited 3333
Mbed Linux
© 2017 Arm Limited 34
Extending Mbed to Cortex-A
In the past many OEMs have built and maintained their own operating system
Device and data management shouldn’t be an afterthought
• Expensive in time and cost
• Shortage of embedded developers
• Has lead to some shocking security failures
Price-performance ratio of Cortex-A based devices continues to improve, making them ideal for
• Quicker product development
• Reduced cost of ownership
• Enable large scale deployment
• Complex IoT workloads
• Rapid product development
© 2017 Arm Limited 35
Mbed Linux OS VisionAn IoT Operating System based on the proven Linux kernel but reimagined for IoT
Centrally ManagedDeployment and lifelong device
management made
easy with Pelion
SecureIntegrated chip to cloud
security. E.g. secure boot.
TrustZone, app isolation
Designed for IoTThe Performance and flexibility
of Cortex-A with
the experience of Mbed
Quick & EasyFaster to market & efficient to
maintain with support and
community of Arm Mbed
Delivering the freedom and power to deliver durable innovation at pace
© 2017 Arm Limited 36
What do you get with Mbed Linux OS?
Grows with your products Integrated connectivity and management
• Support for development & evaluation boards
• Support for modules
• Help with custom PCBs
• Public test suites
A lightweight, secure and managed Linux distribution built from the Yocto Project
• Wired, wireless, mesh, cellular
• Deeply integrated with Pelion
Choose between
• Taking a binary
• Adapt and rebuild if necessary
© 2017 Arm Limited 37
Mbed Linux OS vs Mbed OS20,000’ View
What’s the same?
Integrated with Pelion
OSS model
Commercial support
What’s different?
Mbed OS
• Cortex-M
• Nearly instant start from cold boot
• Hard real-time OS
Mbed Linux OS
• Cortex-A
• Separate user space
• Multiple processes
• Ability to use interpreted languages
© 2017 Arm Limited 38
Flexible Deployment and Management
© 2017 Arm Limited 39
© 2
01
8A
rm L
imit
ed.
+ Advantech
©2017 Arm Limited
©2017 Arm Limited
▪ Agreement with KEPCO to transform smart utilities for largest energy company in South Korea
▪ Arm uniquely positioned in IoT to deliver secure development, connectivity, provisioning and management from chip to cloud
▪ Arm IoT solutions will enable new use cases for KEPCO including connecting and analyzing data from 20 million smart utility devices
“We chose Arm to lead our smart utilities efforts as they provide a comprehensive IoT solution for securely developing, managing, provisioning and connecting IoT devices from the chip to the cloud.” Dong-Sub Kim, EVP & CTO for KEPCO
Dong-Sub Kim, EVP & CTO for KEPCO
©2017 Arm Limited
https://cloud.mbed.com/docs/current/connecting/device-management-client-tutorials.html
https://cloud.mbed.com/guides/connect-device-to-pelion
Get free tier account and learn how to connect your device to Pelion Device Management.
4343
Thank You!Danke!Merci!谢谢!ありがとう!Gracias!Kiitos!감사합니다धन्यवाद
© 2017 Arm Limited
Contact: [email protected]