Hardening the Attack Surface at the Edge

Hardening the Attack Surface at the Edge
Phil Strong9:55 pmSeptember 5th, 2019
Hardening the Attack Surface at the Edge
Understanding and Hardening the Attack Surface at the Edge

Hardening the Attack Surface at the Edge

AWS re:Invent. Learn how to improve edge security with hardware security modules

perimeter security

“If you can only improve one aspect of the attack surface in an edge system, then do this…..
NEVER HAVE PRIVATE KEYS IN MAIN MEMORY”

Tim Mattison, Global Tech Lead, IoT Partners, Amazon Web Services


WATCH VIDEO

Key Takeaways from Session

  • Store keys and credentials in a hardware root of trust
  • Secure flash DOES NOT usually protect a system from software exploits since the flash is decrypted for them
  • OTA – many homebrew OTA systems out there that aren’t hardened
  • Code repo and integration systems – control who commits and has access.
  • AWS Greengrass HSI (Hardware Security Integrations) provide a ready to go security solution.

Application of Zymbit AWS Hardware Security Integration

Ask How Valuable are Your Digital Assets?

Think About Whole Device Security

Production Ready Solution – Zymbit Security Module

Zymbit Developer Kit

WATCH VIDEO
BUY NOW

Learn more about Zymbit security modules

  • Getting started with Zymkey 4i


  • Encrypt your root file system on Pi – LUKS, dm-crypt


  • Using perimeter detection


  • AWS IoT integrations


  • OpenSSL, Apache setup, generating CSR

    • Further reading

  • Schneier On Security – Securing a Raspberry Pi
  • Raspberry Pi Foundation – Securing Your Raspberry Pi
  • Key Management

    • Tags:, , , , ,
    3
    0

    0 Comments

    Leave a reply

    Your email address will not be published. Required fields are marked *

    *