Since then, despite IoT dialogue intensifying, relatively little attention has been given to how IoT data from fleets of connected devices will be secured. Perhaps 'devices' is the wrong word. For manufacturing plants, together with hotels, gas stations, retailers and a host of other enterprise beneficiaries, IoT is less about investing in new technologies and more about retrofitting sensors to existing machines and other physical assets.
This matters because IoT sensors have limited processing power and, as a result, are incapable of performing heavy duty computational functions, like encryption. So where does this leave us? We know that encryption is a deal breaker for IT decision makers but, at the same time, it seems beyond reach.
Happily, the solution is also a revenue opportunity for communication service providers (CSPs), and involves encryption being performed at a central point before the data is transmitted across the WAN. After all, the biggest risk to corporate data security does not come from the factory floor, the hotel staff, or the gas station attendant; it comes from the threat of that data being intercepted by a third party as it is being transmitted across the web.
By using a customer premises-based router as a managed service delivery platform, CSPs can centralise all of a customers IoT data from across their sites and provide encryption as a service, pre-transmission. This means that the CSP can hold both the encryption and the decryption keys centrally and securely, on behalf of the customer. Whats more, because the customer-premises equipments (CPEs) functions are also managed by the CSP, it is about as tamper-resistant a piece of hardware as the enterprise is likely to find.