IoT Solution
Most of the IoT devices come without any security mechanisms, or the security mechanism is very weak, which means the hackers can easily control the device and retrieve data for unauthorized activities. To avoid this kind of threat, security mechanisms must be designed within every device as well as a holistic approach involving the whole system.
iBadge device identity management provides the total solution for IoT device security. The iBadge security solution consists of three function blocks as follows.
- The iBadge server is attached to the vendor’s service cloud; the overall system may include device database, vendor credential modules and IKV-Tech identity management service.
- Client-side IoT devices are embedded with Infineon OPTIGA™ Trust security chips, communicating with the iBadge server via the specialized iBadge application protocol.
- The iBadge server authenticates against IoT devices with Elliptic Curve Cryptography (ECC). Only those with vendor credentials stored in the security chip are authorized to access the cloud.
Leverage IKV-Tech Expertise
iBadge offers a hardware-based security solution for authentication and management. Devices that are equipped with the iBadge solution are easy to implement, with the following capabilities.
Implementation
- No manual work is required during the production process
- A unique chip identifier and authentication key
- No need for complicated cryptographic algorithms in the firmware
- Device management via web-browser or smartphone application
- Easy management of device ID and data through the back-end module
User benefits
- Cost effective hardware-based turnkey security solution for IoT devices
- Shorter time to market and faster deployment for device providers
- Successfully securing vendors’ business model and profitability
Most of the IoT devices come without any security mechanisms, or the security mechanism is very weak, which means the hackers can easily control the device and retrieve data for unauthorized activities. To avoid this kind of threat, security mechanisms must be designed within every device as well as a holistic approach involving the whole system.
iBadge device identity management provides the total solution for IoT device security. The iBadge security solution consists of three function blocks as follows.
- The iBadge server is attached to the vendor’s service cloud; the overall system may include device database, vendor credential modules and IKV-Tech identity management service.
- Client-side IoT devices are embedded with Infineon OPTIGA™ Trust security chips, communicating with the iBadge server via the specialized iBadge application protocol.
- The iBadge server authenticates against IoT devices with Elliptic Curve Cryptography (ECC). Only those with vendor credentials stored in the security chip are authorized to access the cloud.
iBadge offers a hardware-based security solution for authentication and management. Devices that are equipped with the iBadge solution are easy to implement, with the following capabilities.
Implementation
- No manual work is required during the production process
- A unique chip identifier and authentication key
- No need for complicated cryptographic algorithms in the firmware
- Device management via web-browser or smartphone application
- Easy management of device ID and data through the back-end module
User benefits
- Cost effective hardware-based turnkey security solution for IoT devices
- Shorter time to market and faster deployment for device providers
- Successfully securing vendors’ business model and profitability
Technical Detail
The iBadge Device Identity Management system facilitates
- Device authentication
- Controlled device updates
- Inter-device communications
- Counterfeit protection
Special features of the iBadge Device Identity Management system
- The unique identifier and cryptographic key are burned into the device during packaging and testing
- Strong authentication using Elliptic Curve Cryptography
- Flexible control agent, fit for all kinds of devices
- After each successful authentication, a unique session key is generated
- We offer support for the server side, including authentication libraries and a ready-to-use cloud-based web-service, device ID databases, device and server HTTP interfaces and an API for device management.
We also offer a complete iBadge system with integrated Wi-Fi, to further reduce the integration effort necessary for our customers. Currently we are working on integrating our products with manufacturers of other 2.4G/PAN (BLE, ZigBee,...) communication modules.
WhitepaperThe iBadge Device Identity Management system facilitates
- Device authentication
- Controlled device updates
- Inter-device communications
- Counterfeit protection
Special features of the iBadge Device Identity Management system
- The unique identifier and cryptographic key are burned into the device during packaging and testing
- Strong authentication using Elliptic Curve Cryptography
- Flexible control agent, fit for all kinds of devices
- After each successful authentication, a unique session key is generated
- We offer support for the server side, including authentication libraries and a ready-to-use cloud-based web-service, device ID databases, device and server HTTP interfaces and an API for device management.
We also offer a complete iBadge system with integrated Wi-Fi, to further reduce the integration effort necessary for our customers. Currently we are working on integrating our products with manufacturers of other 2.4G/PAN (BLE, ZigBee,...) communication modules.
Whitepaper