GlobalSign’s IoT Identity Platform is a set of products and services flexible and scalable enough to issue and manage billions of identities for IoT devices of all types.

Using Public Key Infrastructure (PKI) as the identity mechanism, the IoT Identify Platform can serve the varied security use-cases of the IoT across all verticals, including manufacturing, agriculture, smart grid, payments, IoT gateways, healthcare, other industrial ecosystems and more.

The Platform supports device identity lifecycle, from initial certificate provisioning (both greenfield and brownfield deployments) to lifetime maintenance through to final sunsetting, decommissioning or transfer of ownership.

Giving each device or endpoint a unique identity allows them to get authenticated when they come online and then throughout their lifetime, prove their integrity, and securely communicate with other devices, services and users.

The central feature of the Platform is IoT Edge Enroll, a full-fledged enrollment client used to provision and manage PKI-based identities to IoT devices of all types.

Providing these unique identities to all devices enables trust within the ecosystem, allowing for mutual authentication between devices and systems as well as protecting communications from eavesdropping or tampering.

IoT Edge Enroll provides a way to deploy these identities and maintain them throughout the full device lifecycle, with added features such as device Registration Authority (RA), certificate lifecycle management, and expanded protocol support.

The cloud-based IoT Identity Platform needs a way to communicate with end devices to deliver, validate and revoke identities, and IoT Edge Enroll acts as the enrollment mechanism.

GlobalSign can issue certificates at unprecedented speed and volume – more than 3,000 per second. There are three integration options and a combination of these can be used depending on a user’s environment.

• IoT Edge Enroll – Delivering a comprehensive enrollment client with enhanced features that include device RA, certificate lifecycle management and expanded protocol support.
• IoT CA Direct – Created for environments that only require a device identity issuance engine. In-house systems are able to communicate with GlobalSign’s services via a modern RESTful API, and handle device enrollment and lifecycle management.
• IoT CA Connect – Ideal for environments using a third-party device and identity management solution which handles device enrollment and lifecycle management. In addition, it enables developers to issue certificates to devices directly from their own platforms.

“The GlobalSign IoT Identity Platform greatly improves the process of identity lifecycle management, from enabling customers to use our highly scalable managed PKI solution as an identity issuing engine to full-fledged enrollment and flexible API integrations with other application and platforms,” said Lancen LaChance, Vice President, IoT Solutions, GlobalSign.

“The Platform meets a tremendous need in the marketplace as security is essential to IoT ecosystems, and is well-suited to low-cost IoT device implementations. Currently, we have a number of early adopter companies using the IoT Identity Platform with very positive results.”

By offering scalable certificate issuance and flexible API integrations, GlobalSign’s IoT Identity Platform offers the essentials of implementing PKI for IoT devices. Key features of the platform include:

• PKI-based, strong and unique device identities – Leverage standards-based PKI to authenticate and establish trust between devices and services, as well as encrypt and ensure the integrity of the source of all data transmitted within your ecosystem.
• Scalable – Secure RESTful APIs support high volume and throughput, capable of issuing millions of certificates per day and more than 3,000 certificates per second.
• Flexible – Support for complex PKI hierarchies, with dedicated intermediates and public or private trust, along with flexible certificate formats or extensions to accommodate virtually any ecosystem and industry.
• Interoperability – GlobalSign enables trust through the entire IoT stack, via partnerships on the device side with secure elements (e.g., TPMs, PUFs) and Secure MCUs, and on the cloud side with virtually every cloud platform provider (e.g., Arm Mbed Cloud platform, AWS IoT, Azure IoT Hub).

GlobalSign’s IoT Identity Platform is available today.

from Help Net Security https://ift.tt/2KnMwx7

Quantum Xchange launches quantum, fiber-optic network in the United States and commercial Quantum Key Distribution (QKD) service for quantum-safe data protection based on the laws of quantum physics.

Leveraging the company’s Trusted Node technology, the Quantum Xchange QKD network extends the technology beyond the previous limitations of transmission distances, to offer commercial enterprises and government entities point-to-point support over unlimited distances.

In doing so, Quantum Xchange provides hardened encryption available to address the shortcomings of today’s encryption standards, and the threat of quantum computers.

The $10 million round of funding led by New Technology Ventures (NTV) will support the deployment of dark fiber quantum networks that will serve the Northeast Corridor from Washington D.C. to Boston, before expanding nationwide.

Quantum Xchange’s first QKD network will connect the financial markets on Wall Street with back office operations in New Jersey, helping banks keep high-value transactions and mission-critical data safe and secure.

“Quantum Xchange raises the bar for modern-day encryption and gives organizations a future-proof data security infrastructure to combat the looming threat of quantum computers,” said John Prisco, President and CEO of Quantum Xchange.

“Our technology is easy to deploy, complements and enhances current encryption investments, and is not weakened by quantum computing, mathematical discoveries, or massive parallel computing networks. As such, Quantum Xchange is the ultimate solution for keeping mission-critical data safe today, tomorrow, and well into the future.”

The world’s volume of data has been growing exponentially year-over-year, giving cybercriminals a greater opportunity to expose massive amounts of data in a single breach and costing the global economy $600 billion annually.

The arrival of quantum computers will arm actors with machines powerful enough to crack the Internet security ciphers in just seconds. Even stolen data that is protected by Secure Socket Layer (SSL) will be easily deciphered by quantum computers in the not-so-distant future.

“Quantum Xchange is a true industry trailblazer,” said David Monahan, Managing Research Director at Enterprise Management Associates (EMA).

“Nation-states and other nefarious agents have been stockpiling encrypted data for years waiting for the arrival of technology to decode it. Quantum computers capable of breaking existing SSL encryption may only be a few years away. The time to prepare for this eventuality is now. Organizations without a well-articulated quantum risk management plan will fall behind, and lose business to, those that do.”

Current protocols for secure data transmission are rooted in mathematical algorithms that can be solved – even when enterprises extend SSL key lengths.

In contrast to public-key cryptography protocols like Diffie-Hellman, RSA, and elliptic-curve cryptography, QKD systems leverage the fundamental properties of quantum mechanics – using photons of light, not prime numbers, to physically transfer a shared secret between two entities.

QKD takes advantage of a photon’s multiple quantum states, coupled with its no-change and no-cloning attributes, which means keys cannot be unknowingly interrupted, corrupted, cloned, or exposed during transmission.

As commercial QKD solution in the U.S., Quantum Xchange owns the distance enhancing Trusted Node technology developed by Battelle which can extend the QKD range using 100-mile multiples, making large-scale QKD over long distances possible and practical.

The Trusted Nodes use quantum keys generated by QKD devices from ID Quantique, the Swiss leader in quantum communications, under an exclusive US licensing agreement.

“ID Quantique’s QKD solutions have been working robustly in the field, securing Swiss elections for over a decade,” said Dr. Grégoire Ribordy, CEO and Co-Founder of ID Quantique.

“Other long-term customers include banks, governments and enterprises worldwide. Quantum Xchange’s model to provide end-to-end quantum keys on demand in the US will ensure easy accessibility for such customers to the highest levels of data protection, with inbuilt eavesdropping detection and forward security.”

“NTV invests in companies that are positioned to force paradigm shifts with high-impact technologies addressing significant, unmet societal needs,” adds Hal Chapel, Managing Director and Partner, New Technology Ventures.

“Quantum Xchange’s commercially proven solution for implementing QKD to transport high-value data offers just that. We look forward to seeing the leadership role this company will assume as it pushes the cyber and IT industries to address the looming security threat from the evolution of quantum computing.”

Highly regulated, high-risk organizations, including those in banking, critical infrastructure, telecommunications, healthcare, and government are ideal candidates for Quantum Xchange’s distance enhancing QKD solution.

It requires no changes to current encryption tools or protocols and can be implemented today. Quantum Xchange-as-a-Service is available as a monthly subscription for unlimited use of keys with one, three, and five-year pricing packages.

from Help Net Security https://ift.tt/2KjSUlU

MapR Technologies announced a series of MapR Data Platform advances to speed the operational impact of automated analytics, improve the productivity of developers and data scientists, lower TCO, and streamline security and storage across on-premises data centers, clouds and edge deployments.

“Customers have made it clear that traditional approaches to managing and processing data for AI and Analytics leave critical gaps. In response, MapR’s newest innovations enable data scientists and developers to power distributed AI and analytics by leveraging all data for more impactful results,” said Anoop Dawar, senior vice president product management and marketing, MapR.

“The continual evolution of the MapR platform is evident in this rich release of new capabilities, built in close collaboration with leading customers, to provide a multi-temperature, multi-protocol on-prem, edge and cloud data platform.”

“Integration and data management are at the heart of our advanced Liaison ALLOY Platform which is designed to solve complex business problems for large global enterprises in healthcare, financial services and other industries. The MapR Data Platform is fundamental to ALLOY’s ability to enable a seamless flow of data securely and at scale for our customers,” said Larry Mieldezis, CIO, Liaison Technologies.

“We look forward to the new AI and Analytics capabilities which will provide exciting new advancements to our customers while significantly simplifying security and storage requirements for our ALLOY Platform.”

The platform update from MapR includes areas of innovation that extend the data fabric to cloud storage through object tiering; fast ingest erasure coding for more data retention; security innovations to enable security across the environment, a S3 API supporting applications and application portability; and an array of analytical and real-time streaming enhancements.

A recent Gartner research note states the need for a new approach citing that “Data growth has far outstripped compute growth, resulting in an imbalance in system architectures. Emerging data-intensive workloads that require data-centric processing — such as AI, high-performance computing (HPC) and IoT — will expose the system imbalance, especially in data movement, resulting in new architectural innovations to address this gap.”

New Breakthrough Capabilities

New benefits from the added features and updates of the MapR Platform include:

Core Data Service Innovations to Speed AI & Analytics and lower TCO

• Policy-Driven automatic data placement across performance-optimized, capacity-optimized and cost-optimized tiers, on-premises or in cloud, with Object Tiering,
• Fast ingest erasure coding that can now be used for capacity-optimized tiers or with high speed SSDs for an optimized analytics tier,
• Native S3 Interface for next-generation applications for direct analytics on operational data and transparent application portability across on-premises and multi-cloud environments,
• Advanced Secure File-based services to ensure corporate security compliance with NFSv4.

Simplified Development and Deployment of AI and Analytic Applications

• High performance, continuous processing with Spark 2.3 for structured streaming and machine learning,
• Analytics toolkit support with Hive 2.3 that has over 800 JIRAs resolved,
• Non-programmer enablement to create streaming applications with KSQL,
• Simplified streaming analytics application development with Change Data Capture (CDC) and KStreams,
• Apache Drill 1.14 with expanded SQL support, high performance at scale and query experience with Hue,
• Native language bindings (Python and Node.JS) and efficient queries directly on JSON data types without ETL for faster and easier database applications development.

Streamlined Security and Critical Data Asset Protection

• Volume-based data encryption at rest provides an additional means to prevent unauthorized access to sensitive data. Encryption is also used to avoid exposure to breaches such as packet sniffing and theft of storage devices,
• Secure by Default ensures that data platform security out-of-the-box including core and ecosystem services for new installations with a single click. All data can be stored encrypted and all network connections are encrypted with authentication enabled.

Partnerships

MapR partners with innovators in cloud computing. MapR also partners with software vendors to extend the value of their solutions, and with consulting and system integrator companies that provide consulting services and related implementation, integration, and training services to joint customers.

“Our clients understand the importance of data and data-driven decision-making in their digital transformation journey,” said Justin Gillespie, principal and analytics practice lead at the Hackett Group.

“MapR’s industry-leading data platform not only sets the bar for transformational analytics, AI and machine learning, but they are also delivering a platform that optimizes TCO, security and agility throughout the enterprise, whether in the cloud or on-premises.”

from Help Net Security https://ift.tt/2KkUKTr