Author: Richard Kerslake
General Manager of Industrial Control and Robotics Business, Intel IoT Division
Co-Chair of FIDO Alliance IoT Technical Working Group
Recently, I bought a new laser printer for my home. After taking it out of the box, connecting the USB cable, and plugging it into my computer, the driver software installed automatically in a few minutes, and I was ready to work. What shocked me was that this kind of “plug and play” experience is hard to come by with IoT devices, where deployment is usually time-consuming, expensive, and insecure. But it doesn’t have to be this way.
For a long time, Intel has been actively promoting innovation and industrial development in IoT technology, collaborating with innovative ecosystem partners to tackle industry challenges. Today, we, together with the FIDO Alliance, announce the launch of this Open IoT Protocol, which will help everyone install any IoT device more easily and securely.
By 2022, IoT-related spending is expected to reach $1.2 trillion, and we believe that this new protocol standard can help the industry reduce security risks while improving device operability. This is an important first step in addressing many security vulnerabilities in current enterprise and industrial IoT deployments.
With FIDO Device Onboard protocol configuration, industrial IoT devices can utilize public key encryption technology to easily and securely install IoT devices on any cloud or on-premises management platform without manual intervention.
Currently, IoT device deployment involves the installation of physical devices and the setup of related password credentials to securely communicate with the target cloud or platform. This installation process is typically manually performed by technicians, which is often slow, expensive, and insecure. In fact, the installation and setup costs are far lower than the cost of the devices themselves.
This is also a concern for everyone. A recent survey of vendors and enterprise users found that infrastructure vulnerabilities are a serious issue, with 85% of respondents stating that security issues remain a major challenge for the IoT industry. Nearly two-thirds (64%) of respondents indicated that end-to-end IoT security is their top priority in the short term.
Although many companies are striving to achieve automation of the installation process, so far, there is still no standardized solution widely accepted by the industry. Many existing solutions require determining the end customer at the time of device manufacturing for pre-configuration, which creates unnecessary friction and costs in the supply chain.
To address these security challenges, Intel and over 30 companies from around the world established the FIDO Alliance IoT Working Group two years ago. The FIDO Device Onboard (FDO) protocol is a new open IoT protocol that enables industrial IoT devices to utilize public key encryption technology to easily and securely onboard IoT devices to any cloud or on-premises management platform without manual intervention. The FDO standard enhances enterprises in three ways:
● Operability——Fast and more secure zero-touch installation easily integrates with existing installation solutions, eliminating the need for enterprises to pay for complex manual technical installations.
● Flexibility——Can be used with nearly any hardware, a single device SKU can be installed on any cloud platform, greatly simplifying the device supply chain.
● Security——Running “untrusted installers” means that installers no longer need access to any sensitive credentials or password information on the device to install it.
By launching this industry protocol standard, we will continue to refine the FIDO open standard to ensure reduced friction and ease of deployment. As a founding member of the FIDO Alliance, Intel is proud to help the industry reduce reliance on passwords and replace passwords with simple, scalable, and automated methods, making our IoT ecosystem more secure as it deploys globally.
©Intel Corporation, Intel, the Intel logo, and other Intel marks are trademarks of Intel Corporation or its subsidiaries. Other names and brands mentioned are the property of their respective owners.
Related Information
/Please indicate the source when reprinting/
Like or keep watching?
