Presentation is loading. Please wait.

Presentation is loading. Please wait.

Reliable VPN Solutions IN IOT Environments

Published byMarilynn Horton Modified over 6 years ago

Similar presentations

Presentation on theme: "Reliable VPN Solutions IN IOT Environments"— Presentation transcript:

1

2 Reliable VPN Solutions IN IOT Environments
JULIAN WEINBERGER | +1 (650) |

3 SECURE COMMUNICATION IN IOT ENVIRONMENTS
GROWTH OF IOT ENVIRONMENTS IOT MARKET FORECASTS VARY; ALL PREDICT ENORMOUS GROWTH POTENTIAL. PREDICTIONS FOR 2020 RANGE FROM 12 TO 50 BILLION, UP FROM 1 BILLION IN 2010

4 SECURE COMMUNICATION IN IOT ENVIRONMENTS
IMPLEMENTATION APPROACHES FOR VPN AND IOT VPN provided by a carrier via 3G/4G LTE VPN provided by a router via WiFi/HotSpot VPN Software No additional hardware/services required Traffic encrypted on the device

5 SECURE COMMUNICATION IN IOT ENVIRONMENTS
VPN Connections Connection type depends on the machine application Automatic, or always on e.g, surveillance camera Connection on demand, via command line or API e.g., credit card swipe at POS terminal Gateway VPN Management

6 SECURE COMMUNICATION IN IOT ENVIRONMENTS
Authenticating the connection In the absence of human interaction, a machine needs to perform authentication steps to establish a VPN connection. Username / Password Soft certificates Smartcards Hardware / Machine certificates TPM

7 SECURE COMMUNICATION IN IOT ENVIRONMENTS
Authentication methods at a glance

8 SECURE COMMUNICATION IN IOT ENVIRONMENTS
Authentication methods Username / Password Commonly stored in VPN Client on the machine Credentials can be information e.g. the hostname Soft Certificates User certificates stored on local device Every machine has one certificate, which may not be unique to it

9 SECURE COMMUNICATION IN IOT ENVIRONMENTS
Authentication methods Smartcards Physical external smartcard for authentication User certificate on external chip Adds another level of security Basis for two-factor-authentication Machine hardware certificates User/soft certificates relies on machine fingerprint to bind to unique machine Can not be used with any other machine

10 SECURE COMMUNICATION IN IOT ENVIRONMENTS
Authentication methods TPM (Trusted Platform Module) Smartcard build into machine, soldered onto motherboard Adds another level of security Basis for two-factor-authentication

11 SECURE COMMUNICATION IN IOT ENVIRONMENTS
Managing the Vpn Client Full control, everywhere at any time Rollout of software, configurations and authentication information Configuration and software updates VPN Management Authentication management Gateway VPN Management

12 SECURE COMMUNICATION IN IOT ENVIRONMENTS
VPN Central Management - the Single Point of Administration Endpoint Policy USER directory Certification Authority (CA) Software deployment VPN Gateway RADIUS Server

13 SECURE COMMUNICATION IN IOT ENVIRONMENTS
Summary VPN has been the basis for securing IoT environments for some time Automatic, always-on vs. connection on demand is based on application type Consider resources, flexibility and security when selecting authentication method(s) Look for solutions that enable automatic rollout of VPN configurations, certificates and updates

14 Fleet Management – Connected Cars
Scenario Fleet Management – Connected Cars Operational information for 10,000 vehicles NCP Secure Client IIoT Gateway IIoT Management Data Center Onboard Unit with IIoT Remote Gateway lan Wifi

15 Ticket Vending Machine
Scenario Tramway-Information system Information directly on info displays and ticket vending machines IIoT Gateway IIoT Management Data Center IIoT Remote Gateway Info display IIoT Remote Gateway Ticket Vending Machine lan 3G/4G wifi

16 Secure IN-Store digital display for product promotion
Scenario Secure IN-Store digital display for product promotion Digtial signage at grocery stores or pharmacies Grocery store, medical Pracitce, Pharmacy… IIoT Gateway IIoT Management Content Data Center Service Technician Content Management System lan 3G/4G wifi

17 SECURE COMMUNICATION IN IOT ENVIRONMENTS
About NCP engineering – Network Communication Products 30 YEARS REMOTE ACCESS – SECURE COMMUNICATION EXPERTISE Nuremberg - Germany headquarters founded 1986 100 % privately owned San francisco - California established 2010 Clearwater - Florida established 2015 global support team global network of sales partner international OEM partnerships worldwide more than 30,000 customers

18 Thank you For your Attention
JULIAN WEINBERGER | +1 (650) |

Download ppt "Reliable VPN Solutions IN IOT Environments"

Similar presentations

Implementing Tableau Server in an Enterprise Environment

Implementing Tableau Server in an Enterprise Environment
All rights reserved © 2000, Alcatel 1 CPE-based VPNs Hans De Neve Alcatel Network Strategy Group.

All rights reserved © 2000, Alcatel 1 CPE-based VPNs Hans De Neve Alcatel Network Strategy Group.
1 Intel / Shiva VPN Solutions Stephen Wong System Engineer.

1 Intel / Shiva VPN Solutions Stephen Wong System Engineer.
1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.

1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.
1 Objectives Wireless Access IPSec Discuss Network Access Protection Install Network Access Protection.

1 Objectives Wireless Access IPSec Discuss Network Access Protection Install Network Access Protection.
Remote Networking Architectures

Remote Networking Architectures
Hotspot Express Product Presentation. Agenda 1.Product Perspective 2.Managed Services 3.Conclusion.

Hotspot Express Product Presentation. Agenda 1.Product Perspective 2.Managed Services 3.Conclusion.
Public Key Infrastructure Ammar Hasayen 2013. ….

Public Key Infrastructure Ammar Hasayen ….
ASA 5505 SSL VPN Joe Cicero Northeast Wisconsin Technical College.

ASA 5505 SSL VPN Joe Cicero Northeast Wisconsin Technical College.
“ Does Cloud Computing Offer a Viable Option for the Control of Statistical Data: How Safe Are Clouds” Federal Committee for Statistical Methodology (FCSM)

“ Does Cloud Computing Offer a Viable Option for the Control of Statistical Data: How Safe Are Clouds” Federal Committee for Statistical Methodology (FCSM)
Module 10: Designing an AD RMS Infrastructure in Windows Server 2008.

Module 10: Designing an AD RMS Infrastructure in Windows Server 2008.
1 © 2005 Cisco Systems, Inc. All rights reserved. 111 © 2004, Cisco Systems, Inc. All rights reserved.

1 © 2005 Cisco Systems, Inc. All rights reserved. 111 © 2004, Cisco Systems, Inc. All rights reserved.
EGEE-II INFSO-RI-031688 Enabling Grids for E-sciencE www.eu-egee.org EGEE and gLite are registered trademarks Extending user controlled security domain.

EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Extending user controlled security domain.
BZUPAGES.COM. What is a VPN VPN is an acronym for Virtual Private Network. A VPN provides an encrypted and secure connection tunnel path from a user's.

BZUPAGES.COM. What is a VPN VPN is an acronym for Virtual Private Network. A VPN provides an encrypted and secure connection "tunnel" path from a user's.
Sitefinity Partner Program

Sitefinity Partner Program
VPN Security Policy By: Fred Cicilioni. VPN, or Virtual Private Network, is a protocol that allows remote access, allowing the user to connect to all.

VPN Security Policy By: Fred Cicilioni. VPN, or Virtual Private Network, is a protocol that allows remote access, allowing the user to connect to all.
Module 9: Designing Public Key Infrastructure in Windows Server 2008.

Module 9: Designing Public Key Infrastructure in Windows Server 2008.
Lieberman Software Random Password Manager & Two-Factor Authentication.

Lieberman Software Random Password Manager & Two-Factor Authentication.
Module 8: Managing Terminal Services. Overview Use and manage Terminal Services RemoteApp programs Use and manage Terminal Services Gateway Optimize and.

Module 8: Managing Terminal Services. Overview Use and manage Terminal Services RemoteApp programs Use and manage Terminal Services Gateway Optimize and.
Core 3: Communication Systems. Network software includes the Network Operating Software (NOS) and also network based applications such as those running.

Core 3: Communication Systems. Network software includes the Network Operating Software (NOS) and also network based applications such as those running.

Similar presentations

Ads by Google