Live secure provisioning and secure data exchange shown between LoRaWAN sensor and cloud-hosted backend
Avnet Silica, an Avnet company, Actility, the industry provider of low power wide area networking, and Trusted Objects, a provider of secure firmware and security services, announced the availability of a demonstrator showcasing hardware-secured Over-the-Air (OTA) activation of a LoRaWAN™ sensor with an Actility LoRaWAN Join Server also including Hardware Security Module (HSM) technology followed by end-to-end encrypted data exchange between the sensor and a cloud-hosted backend through Actility’s ThingPark Wireless Internet of Things (IoT) network platform.
The solution relies on the TO136-LoRaWAN-OTAA secure element, the only low-power secure element in the market, which can secure battery-powered applications without impacting their battery life.
The TO136 secure element is mounted on Avnet Silica’s Visible Things™ LoRaWAN modem PMOD plugging into a temperature sensor. This sensor board connects wirelessly to an Actility base-station provisioned on ThingPark Wireless providing the LoRaWAN Join Server capability required by the Over-the-Air Activation and the link to a cloud-hosted control panel.
Upon automatic LoRaWAN 1.0.2 compliant secure activation between the secure element on the device and Actility’s HSM in the network, the sensor is able to communicate privately end-to-end with the cloud-hosted backend without exposing any secret key at any time.
Guillaume Crinon, Innovation Technical Marketing manager for security with Avnet Silica commented: “After announcing the availability of our lowest power TO136-LoRaWAN family of secure elements, we are proudly demonstrating a typical use case of an Over-the-Air Activation of our Visible Things LoRaWAN PMOD over Actility’s network.
Secret keys have been personalised at our factory and exchanged with Actility’s Join Server by means of a secure key-ceremony. We are now ready to roll-out with our LoRaWAN public and private network partners and customers bringing security on LoRaWAN networks to new heights.”
Olivier Hersent, founder and CTO of Actility, added: “The latest ThingPark brings LoRaWAN security to a new maturity level. Our secured Join Server features carrier-grade network security through the use of FIPS certified Hardware Security Modules, and we are now integrating with Avnet/Trusted Objects secure elements on the device side.
This will allow not only end to end data security from device to application servers, but also complete secured lifecycle management for high security use cases requiring the commissioning of symmetric keys on both device and network in an integrated way.
The ThingPark solution integrated with secure element manufacturers will simplify the way device manufacturers can design in security, and makes LoRaWAN system security resistant not only to wiretapping, but also to direct hardware attacks.”
Hervé Roche, vice president of Marketing, Trusted Objects, added: “Thanks to our partnership with Actility and Avnet Silica, we are proud to demonstrate that our security solution based on the TO136 Secure Element provides the root of trust allowing a highly secure over-the-air activation and an end-to-end secure data exchange between a LoRaWAN sensor and a cloud-hosted backend. Specially customised to comply with LoRaWAN 1.0.2 specification, Trusted Objects hardware-based security solution is available to all developers of applications looking for enhanced security on LoRaWAN.”
The demo will be displayed at Actility’s booth Hall 8.0C3 at Mobile World Congress, Barcelona, February 27 – March 2, 2017. Do come and visit us!
Comment on this article below or via Twitter: @IoTNow_ OR @jcIoTnow