Upgrade to Pro — share decks privately, control downloads, hide ads and more …

GSMA Mobile 360 Series - IoT Security: Safeguar...

Sponsored · Ship Features Fearlessly Turn features on and off without deploys. Used by thousands of Ruby developers.
Avatar for Arduino Arduino
May 29, 2019
Technology
300
1

GSMA Mobile 360 Series - IoT Security: Safeguarding the Network

Avatar for Arduino

Arduino

May 29, 2019

More Decks by Arduino

See All by Arduino
Control your Embedded Linux remotely by using WebSockets
Avatar for Arduino arduino
1
500
Many LoRaWAN Sensors, One Arduino IoT Cloud to Rule Them All
Avatar for Arduino arduino
0
330
Arduino is Hardware, Software, IoT and Community
Avatar for Arduino arduino
0
370
Control your Embedded Linux remotely by using MQTT and a web interface
Avatar for Arduino arduino
2
1.1k

Other Decks in Technology

See All in Technology
Claude Code の Sandbox 機能を Anthropic Sandbox Runtime(srt) で試そう!/lets-play-anthropic-sandbox-runtime
Avatar for tomoki10 tomoki10
1
540
「エンジニア進化論」2028年の開発完全自動化、エンジニアはどう進化するか
Avatar for CyberAgent cyberagentdevelopers
PRO
6
4.6k
エラーバジェットのアラートのタイミングを考える.pdf
Avatar for KairiM kairim0
0
130
AIっぽい文章を採点して人間らしく直すアプリを作ってみた
Avatar for Yuuki Yamashita yama3133
2
130
AIはどのように 組織のアジリティを変えるのか?
Avatar for J.K junki
0
350
非定型業務をAI slackbotで自動化する ~ 社内要望を自動壁打ちするbotを作った ~/automating-ad-hoc-work-with-ai-slackbot
Avatar for shibayu36 shibayu36
0
610
Claude Codeをどのように キャッチアップしているか
Avatar for Oikon oikon48
10
5.5k
Amazon Bedrock AgentCore ワークショップ JAWS UG TOHOKU / amazon-bedrock-agentcore-workshop-jawsug-tohoku-2026
Avatar for geeawa gawa
9
710
AGENTS.mdとSkillsで始めるAIエージェント活用
Avatar for そのだ sonoda_mj
3
200
2026TECHFRESH畢業分享會 - Lightning Talk - 打造精準高效的 MCP 設計模式與測試實務
Avatar for LINE Developers Taiwan line_developers_tw
PRO
0
830
2026TECHFRESH畢業分享會 - AI 時代的人生存檔點
Avatar for LINE Developers Taiwan line_developers_tw
PRO
0
830
社内 AI エージェント Synapse と セマンティックレイヤーの育て方
Avatar for Hiroaki Sano hiroakis
2
1.7k

Featured

See All Featured
世界の人気アプリ100個を分析して見えたペイウォール設計の心得
Avatar for Akihiro Kokubo akihiro_kokubo
PRO
71
40k
Site-Speed That Sticks
Avatar for Harry Roberts csswizardry
13
1.2k
Believing is Seeing
Avatar for Spiro Bolos oripsolob
1
140
Organizational Design Perspectives: An Ontology of Organizational Design Elements
Avatar for Dr. Kim W Petersen kimpetersen
PRO
1
720
Evolution of real-time – Irina Nazarova, EuRuKo, 2024
Avatar for Irina Nazarova irinanazarova
9
1.4k
sira's awesome portfolio website redesign presentation
Avatar for ElsiraPls elsirapls
0
280
Distributed Sagas: A Protocol for Coordinating Microservices
Avatar for Caitie McCaffrey caitiem20
333
22k
Future Trends and Review - Lecture 12 - Web Technologies (1019888BNR)
Avatar for Beat Signer signer
PRO
0
3.6k
Building AI with AI
Avatar for Ines Montani inesmontani
PRO
1
1.1k
The Curious Case for Waylosing
Avatar for Cassini Nazir cassininazir
1
380
Let's Do A Bunch of Simple Stuff to Make Websites Faster
Avatar for Chris Coyier chriscoyier
508
140k
How to Build an AI Search Optimization Roadmap - Criteria and Steps to Take #SEOIRL
Avatar for Aleyda Solis aleyda
1
2.1k

Transcript

  1. Gianluca Varisco, CISO Arduino GSMA Mobile 360 Series, 29/05/2019 IoT

    Security: Safeguarding the Network @gvarisco

  2. Developing secure and reliable IoT applications can be hard

  3. Hardware Nodes (Devices, Sensors) Constrained devices Require C/C++ firmware skills

    Effective Power Management depends on Firmware Gateways Remote connections, SSH Device management Radio / Networks Long range / Low Power Source: https://makezine.com/2017/06/27/state-boards- platforms-products-purposes-current-crop-microcontrollers- vies-attention/

  4. Cloud Software Many different languages, protocols, libraries, security standards, etc.

  5. Data & persistence Different data formats make data manipulation and

    interpretation difficult

  6. 6 The IoT Landscape is quite fragmented

  7. “Enable anyone to develop secure IoT applications by making complex

    technology simple to use” ARDUINO MISSION for IoT

  8. 8 The “PANINI” Concept:

  9. 9

  10. 10 WHAT ARDUINO PROVIDES Sensors Data + Device Interaction Automatic

    Code Generation Arduino Hardware Secure Cloud Connection Device Management OTA Updates Firmware Changes Business Logic Firmware Upload Certificate or Password Provisioning Dashboards Third Parties IoT SaaS Arduino IoT Cloud

  11. 11 Security Secure in every layer Hardware Software Data

  12. 12 Core to the future and success of IoT is

    the “security of things” Device Identity Anti-tampering Key Management Encrypted Transport and Data Confidentiality

  13. 13 SECURE ELEMENT

  14. 14 Hardware Security ATECC508A/ATECC608A Cryptographic Co-Processor from Microchip Technology What

    we use it for? – Secure Hardware-Based Key Storage up to 16 keys, certificates or data – Hardware Support for Asymmetric Sign, Verify, Key Agreement ECDSA, ECDH, NIST P256 Elliptic Curve Support – Internal high-quality FIPS Random Number Generator (RNG)

  15. 15 Data encryption and secure authentication – All traffic to/from

    Arduino IoT Cloud is encrypted using Transport Layer Security (TLS) – Device authentication using X.509 certificates – Initial support for JSON Web Tokens (ECDSA P-256 SHA-256) in ArduinoECCX08 library – AES-128 (for LoRaWAN™), AES-CMAC for messages exchange, which includes encryption and integrity.

  16. 16 SECURITY RECAP – Hardware-based security – Devices’ provisioning –

    TLS certificates for authentication – Encrypted data transfer

  17. 17 https://www.arduino.cc/sim

  18. THAT’S A WRAP, THANK YOU! Gianluca Varisco <[email protected]> @gvarisco