Gemalto and Mocana partner on IoT security
July 27, 2017
At this week’s Black Hat conference in Las Vegas, security companies Mocana and Gemalto announced a partnership to bring connectivity, security and monetisation to IoT deployments.
The two companies will provide an end-to-end IoT security lifecycle management, including interoperability of California-based Mocana's IoT security platform and Dutch company Gemalto's digital security products to protect data and digital identities across endpoint devices, gateways and clouds.
"Hundreds of manufacturers and IoT companies use Mocana's specialist endpoint security products to harden devices and improve performance," said Sebastien Cano, executive vice-president at Gemalto. "With this collaboration, we are providing our customers with a common platform to centrally manage the security and crypto policies for devices, furthering our goal of bringing trust to an increasingly connected world."
Combining the companies' respective areas of expertise should make it easier for manufacturers, enterprises and service providers to build strong security into IoT devices and critical infrastructure that are vulnerable to cyber attacks.
Gemalto and Mocana will leverage their global ecosystems to make it easier to embed cyber security into IoT devices, industrial control systems and M2M networks. Users will have access to IoT security including:
- Identity provisioning: device identity provisioning and management;
- Key and certificate management: key and certificate management for endpoints, gateways and clouds;
- Device integrity: controls for secure boot and secure update to ensure device and supply chain integrity;
- Multi-factor authentication: ability to support multi-factor authentication across manufacturers, end users and service providers;
- Assured interoperability: validated interoperability of Mocana's IoT security platform with Gemalto's Safenet HSMs and Cinterion secure elements;
- Secure transport: secured communications for standard networking protocols such as cellular, LoRa and standard network transport protocols;
- Security lifecycle management: key lifecycle management and crypto policies for the devices; and
- Monetisation: ability to enable and disable billable device features and service capabilities dynamically based on business policies.