BotConference2017, Donato Ettorre (Blu5) Hardware Security for Bot and Enterprise

Transcript

1. Blu5 Hardware Security for Bot and Enterprise 13 April 2017

2. Blu5 Group Established in 2007 … starts rolling in 2009

   ..... in IT-ICT Security and professional communications since 1991 Blu5 team knowledge and capabilities are the key enabler to innovate and maximise potential ✓ technical know-how ✓ market hands-on experience ✓ corporate methodologies applied to a small, light and lean company

3. Blu5 Group Singapore HQ Sales Offices Asia Middle East Europe

   core R&D Team Malta (Europe) Blu5 Group Fully Owned - Intellectual Property - Mechanisms - Protocols - Hardware Design - Key Technologies - Brands Taiwan Manufacturing

4. Blu5 Group Singapore Taiwan Malta

5. Why There The most suitable place to do what needs

   to be done Singapore Best place to do business #1 World Bank Doing Business ranking #2 World Economic Forum’s competitiveness index #6 World Most Innovative Economies Taiwan Most effective production hub for technology products Malta Optimal location for R&D team Key for EU Accademia activities

6. TOP of the TOP

7. TOP of the TOP SEcube Test laser cut for R&D

8. Blu5 Intellectual Properties IP - Intellectual Property is key 1.

   The real asset for the company, the real value for the Customer 2. Cornerstone for development 3. No-Patent strategy • avoid disclosure requested by patent • protect our Customers • be fast for product launch

9. Blu5 Intellectual Properties

10. Blu5 Ideas, Techniques and Mechanisms Blu5 HW /SW Architectures and

    Design Blu5 HW /SW Implementation Third Parties Implementations 
 and Solutions Blu5 Intellectual Properties

11. Open Security Platform Blu5 Intellectual Properties Academia cooperation Conferences Courses

    Funded projects Blue-sky projects Characterisation Open Source Blu5 Products Blu5 Hardware & Software Platforms xSE™ PipeComm® SEfile™ SElink™ Next Generation Products Client projects Optimised Blu5 Platforms O Y O S™ Custom Systems training & support Future Projects

12. Accademia Liaison

13. R & D and Product Timeline xSE ICT Solutions 2011

    2008 Linux Phone Architecture 2009 SPS Phone Stack 2009 USE 2010 ESE ESE USEpro 2011 2013 WG5 2010 mSE PipeComm® Network PipeComm® Cloud PipeComm® Mail vSE iOS & Android 2014 2014 2015 USEcube 2015 PipeComm® 3.0 SEcube

14. Product Strategy Not the usual

15. Once, you could even design inefficient, absurd products and succeed.

16. Now you can’t

17. Designing products for today is that complicated

18. ESE The ICT Security LEGO® Blu5 makes added value “Lego®

    bricks” for solutions architects to deliver seamless integrated trusted systems

19. ICT Security LEGO®

20. Open Security Platform

21. SEcube™ - Single Chip Open Security Platform The First Open

    Security Platform in a Single Chip ✓ ARM Cortex M4, Floating Point, Low Power CPU ✓ FPGA for Hardware Custom Developments ✓ Security Controller (Smart Card) certified EAL 5+ + + = CPU FPGA Smart Card SEcube™ SEcube™

22. LEGO® Style Development Approach The SEcube™ platform is modular and

    reusable like a LEGO® box Developers can use security blocks and pre-built functionalities. They may also create a design using the LEGO® basic blocks or invent completely new projects. Developers can also reinvent the basic blocks and build a new fully customised security system. ✓ Simple Set of APIs ✓ Service Oriented Security Abstraction Level ✓ Fast Integration

23. Technology In Your Hands Open HW and SW Technology in

    your hands Full Control Full Custom Fully Exploitable

24. Make your Own Projects and Products

25. Separated Liabilities

26. Separated Roles and Responsibilities

27. xSE™ - Secure Environment ✓ Core element for Security ✓

    Multiple form factors ✓ Multiple applications ✓ Standard and custom algorithms ✓ HW crypto engine stream encryption, voice processing, data encryption, strong authentication, digital signature, standard & custom security functions, running secure applications ✓ Internal keys database ✓ Driver-less, OS independent ✓ mSE designed for Mobile Application ✓ SDK full support ESE

28. SEcube™ Devices

29. mSE™ micro Smart Environment mSE™ is a microSD card with

    a powerful STM32F4 CPU on board, which turns out to be an extremely flexible and powerful environment The mSE™ is available in several configurations to support the most demanding requirements • mSE™ – micro Smart Environment is the powerful computational Element which supports the PipeComm® KIT development environment • mSE™ – micro Secure Environment supports PipeComm® System functions integration with a strong accent on security • mSE™ - open HW Platform is available on demand as fully open environment to support custom implementations Not the usual Smart Card

30. mSE™ Raspberry Integration Raspberry Pi, Pi2, Pi3, Pi0 mSE Two-Factor

    Authentication, Secure File System and other extensions are fully integrated in the mSE™ Raspberry SDK compatible with the following operating systems: • Noobs/Raspbian • Ubuntu Mate • Snappy Ubuntu core • Windows 10 for IoT • Other OS supported on demand

31. InfoSec Platforms Security Platforms Secure Services PipeComm Network Standard infrastructure

    xSE Secure Environment Voice Video Messaging SMS Next Generation Services File Transfer File Sharing Cloud Next Generation Services Mail Standard infrastructure Voice & Video Messaging Transactions Web Services Next Generation Services Web Apps SElink SEfile PipeComm

32. Unprotected Data SEfile™ Protected Data SElink™ Protected Connection Unprotected Connection

    Unprotected Data SEfile™ Protected Data SElink™ vs SEfile™

33. PipeComm Network Full integration of ICT Secure Networks with PipeComm

    and SElink technologies Telco/Internet
 Service Provider PipeComm® over WiFi/Ethernet/3G/4G
 @HQ over Radio Link @remote location over 3G/4G
 @town National IP Network Telco/Internet
 Service Provider Radio link Core Network Satellite
 Service Provider over Satellite @sea

34. Standard 
 Messaging platform Bot 
 Application Logic ✓ HW

    Tokens ✓ SElink and SEfile SDKs

35. Introducing security in BOT systems II Core Network Bot 


    Application Logic ✓ HW Tokens ✓ Pipecomm SDK

36. Native apps Native SDKs: - Windows - Linux - MacOS

    - Android

37. B5 WRT Develop using - HTML5 - JS - CSS

38. Server dev Server SDKs: - PHP - JAVA - Native

39. Confidential - All Rights Reserved Thank You !

40. Not the usual Donato Ettorre mail: [email protected] follow: @DonatoEttorre @pipecomm1

    @blu5group