By Ed Agis, Intel
Now that connected devices are beginning to outnumber the world’s population, the need for secure interoperability within the IoT is at an all-time high. With such large amounts of data flowing across the internet and from device to device, sensitive information can land in the wrong hands. The first step for IoT security requires a robust means to authenticate and authorize devices onto the cloud.
For that purpose, organizations must build the “chain of trust” needed to authenticate, certify and authorize devices onto cloud networks. This chain of trust must provide mutual authentication between devices, maintain the integrity and confidentiality of collected data, ensure the legitimacy of software downloaded on devices and preserve the privacy of any sensitive data to stay in line with security regulations.
This chain of trust is called a Public Key Infrastructure (PKI). Through public and private cryptographic key pairs, PKI facilitates the secure electronic transfer of information through authenticating and encrypting data using digital certificates. By providing the IoT industry with this chain of trust, organizations can build confidence and secure communications as they produce and deploy IoT-enabled devices and networks.
According to Gartner analysts, PKI is one of the “most relevant authentication mechanisms for organizations to address the IoT authentication problem.” OCF recently announced its implementation of PKI, providing a means of authenticating and authorizing devices onto a cloud network and allows devices to interoperate across the cloud. As OCF’s PKI is scalable and flexible, this infrastructure can lay the groundwork for what organizations can continue to build upon to meet the growing needs for IoT secure interoperability. When deploying a safe IoT model, usage of OCF PKI is mandatory, allowing manufacturers to use OCF PKI or their own PKI deployments.
When implementing and improving IoT networks, it is important to have a mechanism in place that you can build on in terms of trust and in terms of security. PKI does just that and allows organizations to build upon it as the IoT security landscape continues to change and evolve. By launching the use of PKI, OCF is providing the IoT industry with a set of open ‘keys’ to a network’s ‘house.’ These keys not only allow devices to verify who they say they are but enables networks to allow those devices into their house once authenticated and approved. This improves the overall security and interoperability of IoT networks and connected devices.
OCF’s PKI is now available to all members. Harness PKI’s potential and build the chain of trust today. For more information on how to become a member and OCF membership benefits, visit www.OpenConnectivity.org/foundation/join.