July 21, 2016, Beijing News - According to many well-known security technology experts said hundreds of millions of interconnected devices are facing a potential security risk, unless the required security-sensitive software enables standard e-commerce security level.
Companies including ARM, Intercede, Solacia and Symantec are collaborating to assess the security challenges of hundreds of millions of connected devices from different sectors, including industries, homes, health services and transportation. Finally, it is concluded that any system can be invaded unless a system-level root of trust can be established.
In order to cope with this risk, the company has reached an Open Trust Protocol (OTrP) cooperation, using the mature technology used in large-scale banking and sensitive data services in clients (such as mobile phones, tablets, etc.) to secure the architecture and trust. A combination of trusted code management.
Marc Canel, vice president of ARM security systems, said: "In the world of Internet connectivity, it is imperative to build trust between all devices and service providers. Operators need to trust the devices they interact with, and OTrP can easily This is achieved by combining e-commerce trust architecture with high-level protocols for easy integration into any existing platform.
Other members of the OTrP Joint Shareholders Agreement include Beopod, Sequitur Labs, Sprint, China Branch Chuangda, Trustkernel and Verimatrix.
Challenges
According to Symantec estimates, about one million Internet attacks occurred every day during 2015. Market research firm Gartner pointed out that IoT has further expanded the scope of attacks, and now security has become a top priority for the development of connected devices.
Detailed interpretation of OTrP
OTrP is an advanced management protocol that supports a wide range of security solutions, such as the ARM® TrustZone®-based trusted execution environment, to protect mobile computing devices from malicious attacks. The agreement is now available for download through the IETF website for prototyping and testing.
The agreement paves the way for open interoperability standards, and by leveraging the existing e-commerce security architecture, trusted software management eliminates the need for centralized databases. The management protocol, in conjunction with public key infrastructure (PKI) and a certificate-based trust architecture, helps service providers, software developers and OEMs use their own keys to authenticate and manage trusted software and assets. OTrP is an advanced and simple protocol that can be easily integrated into existing trusted execution environments or microcontroller platforms that implement RSA public key cryptography.
OTrP is currently in the Internet Engineering Task Force (IETF) Notice Status (informaTIonal) and plans to further develop it through standard definitions, promoting it as an interoperability standard and being accepted on a large scale.
Partner testimony
OTPA Minister and futurist Lubna Dajani said: "The chain of trust used to connect services must be based on strong personal and device digital identities to ensure data and application integrity, openness and interoperability. OTrP is industry-wide A big step forward will enable the industry to achieve more effective cooperation on the public foundation and compete through value differentiation."
Richard Parris, CEO of Intercede's Digital Trust Experts Division, said: "OTrP's announcement at IETF informaTIonal is an important step in providing universal digital trust for mobile and IoT connected devices, from chip to service. This makes network operators and Based on interoperability, policy, and cost considerations, application developers can control their chosen hardware security modules and key providers through a unified management of hybrid devices."
Sanglin Park CEO Sanglin Park said: "Building an OTrP ecosystem for trusted applications is critical to ensuring market flexibility in the market. We are committed to widely adopting open standards for use in the security industry, and SecuriTEE will leverage ARM TrustZone technology. Help us achieve this goal and guarantee the universality of a secure mobile platform."
Dr. Ron Marquardt, vice president of technology at Sprint, said: "As a wireless carrier, providing a secure and reliable ecosystem of communications and data is our number one priority. As the global ecosystem of interconnected devices and mobile applications continues to grow, security challenges Increasingly upgraded, OTrP provides a powerful and flexible solution to this challenge to deliver and maintain a system-level root of trust in the service ecosystem."
Brian Witten, senior director of Symantec's IoT Security Division, said: "The new technology has brought about a growing security risk. The Internet of Things and smart mobile technology are welcoming a wide range of applications, so it is necessary to establish an open protocol. To mitigate and accelerate the adoption of hardware-backed security and protect onboard encryption keys."
Dac Cable,100G Qsfp28-Qsfp28 Cable,10G Sfp+ To Sfp+ Cable,100G Qsfp To 4 Sfp28 Cable
Dongguan Aiqun Industrial Co.,Ltd , https://www.gdoikwan.com