At the RSA Conference in San Franciso, Ca. Ayla Networks teamed with NXP Semiconductors to show how to provide a secure cloud (i.e., Web services) connection for a variety of Internet of Things applications.
Via a Linux-based IoT gateway NXP's’s secure element processor can be connected to the Ayla Cloud Platform, accessed by applications running on smartphones and tablets.
“There is growing concern among both IoT product manufacturers and consumers regarding security, privacy and vulnerabilities of connected devices,” said Dave Friedman, Chief Executive Officer and Co-Founder for Ayla Networks, who cited a recent report from ISACA which estimated that 92% of people have concerns about the information collected by Internet-connected devices.
“Hackers and malicious entities often scan for poor or misconfigured security on networks,” he said. “Unfortunately, the IoT explosion has exposed a whole new world of data assets to these entities.” Ayla's end to end cloud service first embeds agents in connected devices which consists of a suite of connectivity services and libraries for mobile apps – that delivers multi-level security capabilities, including authentication, authorization, access control, encryption, over the air patch updates and end-to-end policy management.
By incorporating NXP’s secure hardware components (secure hardened microcontrollers, secure root key storage, and near field communication hardware components), he said the companies were able to protect against threats that target key extraction from embedded systems.
“Securing the Internet of Things is complex and requires a complete, multi-layered approach,” said Friedman, pointing out that most first generation IoT connected devices lack the robust, built-in, multi-layered security capabilities that are necessary to shut-down the potential vulnerabilities and privacy concerns.