Presentation is loading. Please wait.

Presentation is loading. Please wait.

Arete Technology Confidential. 2 Security Threats on IoT Arete Technology Confidential When everything goes to the Internet, changing human life, it brings.

Published byWesley Hunter Modified over 8 years ago

Similar presentations

Presentation on theme: "Arete Technology Confidential. 2 Security Threats on IoT Arete Technology Confidential When everything goes to the Internet, changing human life, it brings."— Presentation transcript:

1 Arete Technology Confidential

2 2 Security Threats on IoT Arete Technology Confidential When everything goes to the Internet, changing human life, it brings great convenience and smartness If you do “NOTHING”… it maybe a disaster Security

3 3 Security Risk on Manufacture IoT Arete Technology Confidential Chrysler, Jeep Cherokee Hacker approaches to manufacture (w/o Internet) USB storage Maintenance PC Sensor Camera Current IoT Remote Monitor 2015.7, 1.4 million cars were recalled because hackers can take over the vehicle through Uconnect. In 2014, Hacking on manufacturing factories increases eight times than ever, from American ICS-CERT

4 4 Security Threats on IoT Arete Technology Confidential A Fake Server Sending incorrect commands which can be used to trigger unplanned events, or send some physical instruction (shutdown, restart, …etc) A Fake Device Injecting fake measurements which can disrupt the control processes and cause them to react (generate surroundings or tool overheating event,…etc) Data Corruption Modification of users’ data (Decrease meter numerical values to save money) An Eavesdropper Listening to commands or data which can reveal confidential information about the operation of the infrastructure

5 5 Importance of Device Authentication in IoT Material from ST-Micro Arete Technology Confidential

6 6 Solutions that Arete provide Arete Technology Confidential Communication interface Answer ® RTOS Secure CPU Core Secure Boot Crypto Vault Key Asset Bus Scramble Network Management Autonomous Mix Interface Mesh Authorization Security Components Authentication Crypto API BT WiFi ZigBee Ethernet PLC UART Integrity Checking, Anti-power analysis, Ani-invasive attack Security SOC Tamper Resistance Anti-clone, Confidentiality Sub-G

7 7 Peer-to-Peer Device Authentication Arete Technology Confidential Sensor, End device Device 1 ANSWER® Device 2 ANSWER® Device 3 ANSWER® Cloud Server Gateway Router Session key 1-2 Session key 2-3 Network1 key No central Certificate Authority is needed in the process of device authentication Existing network protocols are applied between gateways and Answer ® devices. CA Device 4 ANSWER® Device 5 ANSWER® Network2 key Session key 4-5 Session key 3-4

8 8 Arete Technology Confidential Use Case

9 9 Device Authentication using Triple-DH Arete Technology Confidential Device 1 Device 2 Device1 Key Pair: Y = y*G, Epoch key pair: B = b*G Device2 Key Pair: X = x*G, Epoch key pair: A = a*G Hello[r dev1 ] Certificate[Cert Dev2 ] KeyExchange[A] r = r dev1 +r dev2 Hello[r dev2 ] Verify(Cert Dev2 ) and get X k 2 = 2DHKDF((A+d A X)b, r) r = r dev1 +r dev2 k 3 = 3DH-KDF((A+d A X) (b+e B y), r) Certificate[Enc k2 [Cert Dev1 ]] KeyExchange[B] k 2 = 2DH-KDF((a+d A x)B, r) Decrypt and get Cert Dev1 Verify(Cert Dev1 ) and get Y k 3 = 3DH-KDF ((a+d A x) (B+e B Y), r) Key pairs generation Nonce Exchange Device 2 Cert. & Key A delivery Device 2 Cert. Verification Device 1 Cert. & Key B delivery Device 1 Cert. Verification Session key delivery encrypted by common derived key k3, Enc k3 [Sek]

10 10 ANSWER® System is the Solution Arete Technology Confidential A utonomous N euro S ecure W ise E fficiency R elay

11 11 Arete Technology Confidential Thanks for Listening

12 12 Comparison with chips in IoT Arete Technology Confidential General MCU Authentication Device DSP/Crypto Processor Secure CPU Core Built-in Crypto Vault Authentication Secure boot/FOTA ANSWER RTOS Arete SOC Security Performance

Download ppt "Arete Technology Confidential. 2 Security Threats on IoT Arete Technology Confidential When everything goes to the Internet, changing human life, it brings."

Similar presentations

Avoid data leakage, espionage, sabotage and other reputation and business risks without losing employee performance and mobility. Simplify authentication.

Avoid data leakage, espionage, sabotage and other reputation and business risks without losing employee performance and mobility. Simplify authentication.
Using Cryptographic ICs For Security and Product Management Misconceptions about security Network and system security Key Management The Business of Security.

Using Cryptographic ICs For Security and Product Management Misconceptions about security Network and system security Key Management The Business of Security.
Part of the BRE Trust Protecting People, Property and the Planet Smart Buildings and Security: Developing a unified approach Will Lloyd BRE Global Limited,

Part of the BRE Trust Protecting People, Property and the Planet Smart Buildings and Security: Developing a unified approach Will Lloyd BRE Global Limited,
Depending on who you ask, IoT is either: Nothing new A unicorn Magic, and will soon change everything. We’ve been doing this for 40 years.

Depending on who you ask, IoT is either: Nothing new A unicorn Magic, and will soon change everything. We’ve been doing this for 40 years.
Ultra-low cost IoT system for smart house applications Characterization Presentation Students: Sagiv Katony Asaf Luster Advisors: Evgeny Kuksin  28.04.2015.

Ultra-low cost IoT system for smart house applications Characterization Presentation Students: Sagiv Katony Asaf Luster Advisors: Evgeny Kuksin 
Security fundamentals Topic 5 Using a Public Key Infrastructure.

Security fundamentals Topic 5 Using a Public Key Infrastructure.
Cevgroup.org C utting E dge V isionaries. cevgroup.org TODAY’s TALK 1) Internet Of Things (IoT) 2) Wi-Fi Controlled Robots 3) Augmented Reality.

Cevgroup.org C utting E dge V isionaries. cevgroup.org TODAY’s TALK 1) Internet Of Things (IoT) 2) Wi-Fi Controlled Robots 3) Augmented Reality.
VPN. CONFIDENTIAL Agenda Introduction Types of VPN What are VPN Tokens Types of VPN Tokens RSA How tokens Work How does a user login to VPN using VPN.

VPN. CONFIDENTIAL Agenda Introduction Types of VPN What are VPN Tokens Types of VPN Tokens RSA How tokens Work How does a user login to VPN using VPN.
 Attacks and threats  Security challenge & Solution  Communication Infrastructure  The CA hierarchy  Vehicular Public Key  Certificates.

 Attacks and threats  Security challenge & Solution  Communication Infrastructure  The CA hierarchy  Vehicular Public Key  Certificates.
UNIT 7 SEMINAR Unit 7 Chapter 9, plus Lab 13 Course Name – IT482 Network Design Instructor – David Roberts – Office Hours: Tuesday.

UNIT 7 SEMINAR Unit 7 Chapter 9, plus Lab 13 Course Name – IT482 Network Design Instructor – David Roberts – Office Hours: Tuesday.
SSL: Secure Socket Layer By: Mike Weissert. Overview Definition History & Background SSL Assurances SSL Session Problems Attacks & Defenses.

SSL: Secure Socket Layer By: Mike Weissert. Overview Definition History & Background SSL Assurances SSL Session Problems Attacks & Defenses.
IoT Cooperation Strategy

IoT Cooperation Strategy
The Secure Sockets Layer (SSL) Protocol

The Secure Sockets Layer (SSL) Protocol
Cloud Storage Service with Proven Military Grade Security

Cloud Storage Service with Proven Military Grade Security
Palo Alto Networks Certified Network Security Engineer

Palo Alto Networks Certified Network Security Engineer
Principles of Automotive cyber-security

Principles of Automotive cyber-security
Secure Connected Cars – SONG LI

Secure Connected Cars – SONG LI
chownIoT Secure Handling of Smart Home IoT Devices Ownership Change

chownIoT Secure Handling of Smart Home IoT Devices Ownership Change
Applying Cryptography to Physical Security

Applying Cryptography to Physical Security
Hardware-rooted Trust for Secure Key Management & Transient Trust

Hardware-rooted Trust for Secure Key Management & Transient Trust

Similar presentations

Ads by Google