New platform protects industrial IoT devices
Internet of Things devices are the latest threat vector that businesses have to deal with, introducing a potential extra weakness into corporate networks and leading experts to warn of increased risk.
To help guard against the threat, Mocana Corporation is introducing a new security platform designed to protect IoT devices and associated device-to-cloud communications.
It's also announcing capabilities that allow industrial manufacturers to make use of the newest hardware-based security technologies, automate digital certificate management to harden devices and effectively scale their IoT deployments.
The Mocana platform provides a full-stack solution for securing IoT systems from the endpoint, to the gateway, to the cloud, and back again. The platform includes a 'hardened inside-out' approach that ensures endpoint and gateway trustworthiness, data and device integrity, authentication and confidentiality. Additionally, the platform provides, a set of simple APIs and a path to utilize Mocana's planned management and analytics capabilities.
"When it comes to mission-critical IoT security, there is no middle-ground or acceptable margin for error. Hackers have demonstrated their ability to get behind firewalls and take over IoT devices. Once a hacker has control of an IoT device or controller behind a firewall, they can wreak havoc by manipulating flow controls, valves, compressors, power systems and engine controls that result in loss of critical services and loss of life," says William Diotte, CEO of Mocana. "The Mocana IoT Security Platform is the most comprehensive IoT security solution for industrial manufacturers that are concerned about cyberattacks on embedded systems, IoT devices and industrial cloud systems."
Key features of the platform include the Mocana Trust Engine, a vendor-agnostic trust abstraction layer that allows device manufacturers to take advantage of the latest security chip technologies. There's also support for automated certificate management using Enrollment over Secure Transport (EST) and trust chaining to ensure a lifecycle of trust for secure boot, secure firmware updates and trusted operations.
A full-stack architecture and a strong cryptographic engine ensure authentication, integrity, confidentiality, visibility and control for devices, gateways and cloud applications. The software abstracts the underlying hardware, enabling applications to call cryptographic functions through a single API. In addition openSSL-compatibility of the interface allows customers to replace OpenSSL with a lightweight defense-grade crypto library.
You can find out more about how the Mocana solution can harden IoT devices on the company's website.
Image Credit: PlusONE / Shutterstock