Embedded World 2024

Green Custard is joining ZAYA at stand 4-502b at Embedded World 2024. Held in Nuremberg, Germany, from the 9th - 11th of April, Embedded World is a world-leading conference presenting state-of-the-art technology and forward-looking research in embedded technologies.

IoT Device Security by ZAYA

Amazon Web Services (AWS) offers tools and software development kits (SDKs) to help ensure that information travelling between internet-connected devices (like smart thermostats or security cameras) and AWS servers stays safe from prying eyes. However, there's a gap when it comes to securing these devices as part of a full end-to-end solution. Without suitable security measures, a malicious attacker could still tamper with the IoT devices themselves without authorization, and potentially take control.

A critical security measure is to provide each device with its own unique certificate to allow it to securely identify itself to the outside world. However, without suitable protections these certificates can be compromised by unauthorised parties, posing another risk to the system's security.

ZAYA shields connected IoT devices from outside threats, safeguarding them against attack. It also ensures the security of certificates stored within the device, preventing unauthorised access to these vital security keys.

In-The-Field Vendor Provisioning

In a traditional manufacturing workflow, a unique certificate is created for each device and stored on the device as it is built in the factory. ZAYA simplifies this process, while retaining security, by enabling the provisioning of certificates during manufacture or after the device has been deployed to the field.

Third-Party Provisioning

ZAYA extends support for the secure handling of certificates and keys to third-party applications and services. Each device has a “root” certificate used by ZAYA, but third parties can add their own certificates and keys for deployment of their own services that run on a device. Third parties retain control of the process and can be a signing authority for newly prepared device certificates, without sharing their secret keys with ZAYA. The service offered by ZAYA stores the third-party certificates and keys in a secure storage in a tamper-resistant way.

Microservices for Embedded Devices

ZAYA introduces a microservice approach for embedded devices, offering plug-and-play secure services from both ZAYA and trusted third-party providers. For instance, an "AWS Microservice" seamlessly connects IoT devices to Amazon Web Services. Each service runs in its own isolated container, and this approach ensures security and significantly speeds up the product design and go-to-market process. In our demonstration, we'll showcase how to build an entire lifecycle for an IoT device in just minutes, including provisioning, field deployment, and monitoring through the AWS IoT Console.

Device Monitoring From AWS IoT Console

Once the device is set up as described, it will begin transmitting sensor data to the AWS IoT console. This solution is compliant with security legislation such as the UK Publicly Available Specification for Trustworthy Digital Identification (PAS 499).