Arm announces first industry framework for IoT security
UK semiconductor firm Arm has announced the introduction of the first common industry framework for building secure connected Internet of Things (IoT) devices.
Called Platform Security Architecture (PSA), it is intended to provide a common framework for developers, hardware, and silicon providers as a way of enhancing the security of IoT devices built on system-on-a-chip (SoC) Arm Cortex processors.
Arm made the announcement ahead of TechCon 2017. The company said “security cannot be an afterthought across all parts of the value chain from device to cloud”.
According to Arm, this is particularly true for its own ecosystem, “which expects to have shipped 200 billion Arm-based chips by 2021 (100bn+ to date and another 100bn by 2021)”. The firm said the sheer number of chips highlights its responsibility to “ensure these increasingly diverse connected devices that communicate with each other are designed with a common secure foundation”.
PSA is intended to deliver representative IoT threat models and security analyses, as well as hardware and firmware architecture specifications, which have been built on key security principles, defining a best practice approach for designing endpoint devices.
It will also provide a reference open source implementation of the firmware specification, called Trusted Firmware-M.
According to Arm, “PSA is a fundamental shift in the economics of IoT security, enabling ecosystems to build on a common set of ground rules to reduce the cost, time and risk associated with IoT security today”.
In order to allow the IoT ecosystem to quickly see the benefits of PSA, Arm will deliver an open source reference implementation firmware conforming to the PSA specification. The development will initially target Armv8-M systems, with source code release expected in early 2018.
PSA is “OS agnostic”, meaning it is capable of being supported by all of Arm’s real-time operating systems and software vendor partners, including the latest version of Arm’s market-proven Arm Mbed OS.
Share This Post, Choose Your Platform!
With over 25 years in the business telecoms industry and an unrivalled reputation of delivering excellent, personal customer service, Arrow is one of very few companies in the UK able to provide a full telecoms, IT and energy consultancy and service proposition.
Savings through automation, scale, improved service. We’ve got that covered. But the true value comes with empathy, through empowerment, collaboration. It’s connecting people that drives us forward. It’s people that make tomorrow happen.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
The technical storage or access that is used exclusively for statistical purposes.The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.