Embedded credentials and certificate enrolment for IoT and M2M

November 02, 2016 // By Julien Happich
Icon Labs' Floodgate Key Manager enables OEMs and device developers to easily add secure credentialing services to their devices. The embedded key management solution provides integration with multiple certificate authorities, including Verizon’s certificate authority, also known as IoT SC.

The embedded key management client provides automated enrolment with Certificate Authorities using the industry’s only RTOS-compatible implementation of the SCEP protocol. The Floodgate Key Manager supports embedded Linux and a wide variety of RTOSes including Nucleus, UC/OS-III, ThreadX, VxWorks, and LynxOS.

The secure credentialing solution adds to Icon Labs' Floodgate Security Framework which includes secure boot, secure software updates, firewall, intrusion detection, TLS, and a management agent.

Today’s security challenge is “how do I automate the process of securely enrolling each new device into the network?” 

Icon Labs, Renesas, and Verizon have teamed up to provide a solution.  Icon Labs’ Floodgate Key Manager for IoT devices works with Verizon’s IoT SC solution to allow IoT devices to perform automatic enrolment.  During enrolment, each device securely obtains a certificate that is used for identification and authentication when communicating with other devices also enrolled in the same PKI system.  

The development and integration is complete and available today for demonstration on the Renesas Synergy platform from Renesas Electronics America, Inc.  The Synergy platform provides the hardware foundation ensuring that the secure boot code, cryptographic keys, certificates, and signatures have not been tampered with.  Synergy provides hardware enforced memory protection to ensure that hackers cannot tamper with the boot sequence or the secure boot operations.

Visit Icon Laboratories at www.iconlabs.com