IoT SAFE

The IoT is set for extraordinary growth, with a predicted 5.4 billion cellular IoT connections by 2028 (Ericsson Mobility Report, October 2023).

To reach this figure, there is a clear opportunity for everyone involved in the IoT ecosystem to leverage widely deployed and field-proven networks.

There's more.

The new generation of  5G networks is a tremendous asset for 5G IoT, helping to enable an explosive increase in the number of devices connected to people and each other. 

But there's an itch.

IoT SAFE - The mobile industry's specs to securely deliver at scale

GSMA IoT SAFE

 

Addressing IoT cyber security with GSMA IoT SAFE

Watch the video 

 

The emergence of billions more connected IoT devices presents profound security challenges for IoT service providers to protect sensitive data.

In response, the GSMA specifications (the IoT SAFE initiative) are being introduced to address the cyber security of the IoT.

IoT SAFE stands for IoT Sim Applet For Secure End-to-End Communication and is explicitly designed to secure IoT devices and address IoT cloud security.

All this by leveraging the IoT SIM card: the industry-recognised tamper-resistant elements of eSIM, SIM and, more recently, iSIM.

 

The key stakeholders in the cellular IoT ecosystem

  • Mobile network / Telecoms operators - preparing for significant new commercial opportunities by providing the connectivity that embraces not only billions of people but also billions of device
  • IoT Service Providers - developing applications for clouds and devices, managing fleets
  • Public Cloud Providers - hosting and managing IoT applications and credentials
  • OEMs - building IoT devices

IoT SAFE

Within the IoT ecosystem, devices collect, process and send data to the cloud, where various IoT applications are executed.

But while the emergence of billions more IoT devices creates a wealth of new opportunities for stakeholders, it also presents profound security challenges. 

Increasing IoT attacks 

The volume of IoT attacks is skyrocketing, doubling in six months according to a Kaspersky analysis: 1.5 billion IoT attacks were conducted in H1 2021, up from 639 million in H2 2020. When the United States showed more maturity in 2022, Africa, the Middle East and Turkey experienced a 659% increase in attacks in Q3 2022 vs Q3 2021.

To address these threats, the cloud platform for IoT must have absolute trust in the data received from IoT devices.

This trust is only possible by ensuring that both the device and the server are mutually authenticated (i.e. the device knows it is sending its data to the correct server, and the server knows it is a genuine device which requests data to be sent). 

However, the IoT is characterised by fragmentation regarding the OS and chips employed.

An array of open-source and proprietary IoT OS is already on the market.

Given the rich and varied mix of applications, hardware and connectivity encompassed by the IoT, the market will likely continue to sustain multiple OS and chips for the foreseeable future.

The result?

Proprietary IoT security solutions will not be able to scale or be duplicated.

Count on the SIM

The critical challenge is, therefore, how the device middleware can leverage the security services embedded in tamper-resistant elements in a scalable manner.

This is the problem that the GSMA IoT SAFE  initiative solves by specifying an API so the IoT device middleware can use the credentials and security services in the SIM card for IoT, namely iSIM, eSIM or SIM, in a standardised manner.

In short, the solution is to utilise hardware tamper-resistant elements to secure IoT applications by design. 

Securing the TLS handshake

The foundation of IoT cyber security is the TLS handshake protocol between the IoT device and the IoT cloud. It ensures that mutual authentication is enabled before any data exchange occurs.

Specifically, this process is achieved through hardware tamper-resistant element-based security and cryptography and GSMA IoT SAFE specifications. 

 

SIM/eSIMs are ideally suited for IoT security.

Hardware tamper-resistant elements are a standard technology that integrates the new GSMA IoT SAFE specifications.

They deliver scalable 'security by design' for the IoT, meeting the scalability requirements of an IoT security framework by utilising standardised and field-proven SIM/eSIM technology, irrespective of form factor, and leveraging the multitude of devices already deployed in the field. 

Hardware tamper-resistant elements address the three essential IoT security requirements: 

  1. Mutual trust between the IoT device and the cloud
    This end-to-end mutual authentication enables a TLS connection
  2. Protection of data at rest and in motion
    Data integrity
    Data confidentiality
  3. Scalability
    There are already billions of Secure Elements in the field

GSMA IOT SIM APPLET

Hardware tamper-resistant elements deliver scalable trust for IoT applications.

They act as the root of trust / cryptographic toolbox, based on tamper-proof hardware that stores private keys, digital certificates and security services.

Documents

tel-beecham-research-secure-iot

Can GSMA’s new framework secure cellular IoT?

Beecham research - Whitepaper

Download the whitepaper
tel-wp-how-to-measure-iot-success.png

How to Measure IoT Success?

Download the report
tel-wp-iot-magazine-guide-iot-security-thumbnail

The IoT Now Guide to IoT Security 2022

Discover how recent developments in IoT SIM security can enhance cybersecurity and massive IoT deployments. A document from IoT Now Magazine.

Read more
tel-brochure-iot-cybersecurity-esim-thumbnail

Addressing IoT Cyber Security through eSIM-based Scalable Trust

Download the report
tel_report_becham_connecting_wireless_data_thumbnail

Connecting Wireless Data Deploying IoT Everywhere

Don’t miss the latest report of Beecham on the acceptance of eSIM in the IoT Market, based on survey of 412 IoT Suppliers and Solution Providers.

Download the report
tel-info-IoT-Safe.png

Thales IoT SAFE delivers scalable trust for IoT applications

Infographic

Thales IoT SAFE delivers scalable trust for IoT applications [PDF - 182kb]

The role of identity verification in protecting travellers.

Download the whitepaper

10 things you should know about the latest “Global Mobile Trends 2023” report where you will find  highlights on 5G deployment, satellites and non-terrestrial networks, Private networks, the enterprise vertical stories: IoT 2.0, eSIM and the drive to scale, among many other impacting trends.

Read the latest report by the GSMA Intelligence

2024: the Year of eSIM unleashed? a Thales perspective

Don't miss the enlightening interview between Thales and Kaleido Intelligence, where they dive deep into the world of eSIM for consumers and IoT. Discover invaluable insights into the cutting-edge developments of eSIM and iSIM, the crucial factors that unlock the true potential of IoT, and Thales' visionary roadmap for empowering the industry in the years ahead. Don't wait, seize this opportunity to stay at the forefront of IoT innovation.

Watch the interview now 

 

5 things you should know about breaking Barriers with eSIM in 2023 

 

Watch the interview of Thales by Kaleido Intelligence, addressing eSIM for consumers and IOT 

105th IAI Annual Education Conference

Interview on the fast growing eSIM market for the IoT

Stephane Quetglas, Marketing Director for eSIM and IoT Services at Thales  and Tim Hatt, Heard of Research & Consulting at GSMA Intelligence &talk about the fast growing eSIM market for the IoT.

Watch the interview

Podcast: The control of IoT security risks in the Industry

The control of IoT security risks in the Industry

IoT solutions are becoming increasingly important to business operations. So, inevitably, there are solutions that are becoming larger, more business-critical and far-reaching. 
In this podcast, Stephane Quetglas, Marketing Director for eSIM and IoT Services and IoTNow’s host Jeremy Cowan are talking about IoT cyber security 

Watch the interview

tel-wp-gsma-iot-safe-specifications.jpg

Hardware tamper resistant elements deliver scalable trust for IoT applications

Hardware tamper resistant elements deliver scalable trust for IoT applications
tel-connected-drones.jpg

Connected Drones

The central role of Mobile Network Operators in the commercial drone market

Connected Drones [PDF - 3mb]

ScaleFlyt Remote ID & tracking for safe drone operations

Thales’s ScaleFlyt Remote ID is a brand new innovation that provides secure identification and tracking information of a drone in flight for UTM providers, airspace managers, UAV operators and ground observers. Delivering a trusted solution for a safer sky, ScaleFlyt Remote ID is technology that will contribute to enabling safe and secure large-scale drone operations.

Our IoT cybersecurity solutions

We can address the challenge of securely and efficiently connecting IoT devices to clouds through cellular networks, offering demonstrable benefits for all key stakeholders.

Specifically, we enable the opportunity to leverage assets that include widely deployed and field-proven cellular networks and Secure Element-based security solutions that store credentials, to deliver services that can be enhanced to address IoT security in an interoperable environment defined by GSMA IoT SAFE specifications. 

We proactively lead the creation of new specifications, collaborating with the GSMA and other vital industries to facilitate streamlined deployment of IoT security and offer THALES' advanced implementation of the GSMA IoT SAFE initiative. 

We are the world leader in OTA (Over The Air) platform solutions that enable credential life cycle management. 

Need more information on scalable security for the IoT?

Are you interested in a proof of concept?

Contact us:

Thales Wins Gold for Best Cellular IoT Initiative

Thales Wins Gold for Best Cellular IoT Initiative” Award

‘We are honoured to be awarded for Best Cellular IoT initiative. Given increased 5G roll-outs, billions of IoT devices in all industry sectors, such as healthcare and smart metering, need to securely send data to their cloud. Thales has implemented GSMA IoT SAFE specifications now available as a service, to provide a scalable and efficient security framework, built on field-proven, standardised SIM/eSIM technology. This approach eliminates integration and provisioning challenges for operators, compliancy issues for device makers and service providers.
Guillaume Lafaix, VP Mobile Connectivity Solutions at Thales

An interview with Juniper Research
Analysts expect an impressive growth of connected objects; among them, many will be connected to cellular networks. Telecom Operators have a crucial role to play 
in the development of cellular IoT. In particular, they can significantly contribute to security. Discover how our award-winning cellular IoT service helps them achieve scalable and sustainable security for IoT in a cost-effective way.
Read the interview
 

More resources on IoT security and connectivity

Press Release

Get in touch with us

For more information regarding our services and solutions contact one of our sales representatives. We have agents worldwide that are available to help with your digital security needs. Fill out our contact form and one of our representatives will be in touch to discuss how we can assist you.

Please note we do not sell any products nor offer support directly to end users. If you have questions regarding one of our products provided by e.g. your bank or government, then please contact them for advice first.