- Thales, Telstra, Microsoft and Arduino have implemented the GSMA IoT SAFE solution to address the IoT devices market fragmentation and enable robust and effective IoT Security at scale.
- Mobile operators, IoT service providers and device makers will benefit from a one-stop-shop solution that dramatically simplifies the deployment of connected and secure IoT devices.
- The solution establishes end-to-end, chip-to-cloud security for IoT products and services, guaranteeing data integrity and confidentiality, as per GSMA IoT Safe Security Guidelines.
Thales and Telstra, Australia’s leading telecommunications company are working with Microsoft and Arduino to pave the way for scalable security for connected IoT devices, by implementing a solution that enables trusted and secure end-to-end communication between device and cloud.
The solution enables instant and standardised mutual authentication between a device and a cloud platform via cellular networks, while fully-complying with GSMA IoT SAFE security specifications.
Within the IoT ecosystem, billions of devices collect, process and send data to the cloud, where a range of different IoT services are executed. To enable security, the IoT cloud service must have absolute trust in data received from connected devices. Equally, devices need to trust the cloud. This is only possible if the device and server are mutually authenticated. However, the IoT devices market is so fragmented - with a patchwork of different operating systems and chips being utilised - that security services scalability and duplication are very limited.
That’s why Thales, Telstra, Microsoft and Arduino decided to team up to work on a solution that addresses the challenge of securely and efficiently connecting IoT devices to clouds in the most simplified way and through cellular networks. The level of trust required is enabled by a sophisticated ‘security-by-design’ approach for any IoT devices based on field-proven and standardised SIM or eSIM technology.
As a result, as soon as an IoT device is switched on, any SIM or eSIM featuring Thales’s IoT SAFE application is automatically and securely provisioned. Once the IoT device gets a proper Digital Certificate created and stored in the SIM/eSIM, then a trusted communication between the device and the server is permitted, in full respect of data integrity and confidentiality.
said Tony Shakib, General Manager, Azure IoT Business Acceleration at Microsoft Corp.
 Microsoft integrated the IoT SAFE solution with their Azure IoT Hub and also provided Azure Stream Analytics, Cosmos DB and Power BI services to quickly enable the development of an example end-to-end IoT application.
 Arduino developed a library (under an open-source licence) which implements the security mechanism of the GSMA IoT Safe standard on their MKR NB 1500 boards and provides a valid alternative to the usage of the CryptoChip already present on the Arduino board. The project has been a great example of collaboration with companies operating in various IoT sectors, on which Arduino focuses for professional and industrial applications through the brand new Arduino Pro division.