Introducing The Open Trust Protocol: Tech Companies Answer to IoT Security
- Open Trust Protocol set to bring banking and smartphone security standards to IoT devices
- Compose of Arm, Symantec and a handful of technology influencers
- OTrP is available now for stress-testing, no date for official release
With an estimated "6.4 billion connected things" – growing to more than 20 billion by 2020 – occupying the IoT space, many are wondering what is keeping unwanted guests from compromising our connected home, corporate and industrial devices.
ARM, Symantec and a handful of influencers in the technology industry may finally have an answer.
The coalition has introduced The Open Trust Protocol (OTrP), "a protocol to install, update, and delete applications and to manage security configuration in a Trusted Execution Environment."
The 109-page memo details that OTrP aims to introduce the same security architecture and code management that many banking and smartphones use to guard sensitive data today.
In layman's terms, OTrP establishes a system-level root for trusted devices. Behind the scenes, IoT manufacturers will introduce the protocol to all their devices, protecting them without interfering with the OS.
“In an Internet-connected world, it is imperative to establish trust between all devices and service providers,” said ARM Vice President of Security Systems Marc Canel. “Operators need to trust devices their systems interact with and OTrP achieves this in a simple way. It brings eCommerce trust architectures together with a high-level protocol that can be easily integrated with any existing platform.”
Companies such as Intercede, Solacia, Beanpod, Sequitur Labs, Sprint, Thundersoft, Trustkernel, and Verimatrix compose the rest of the group.
OTrP is currently available for stress-testing from Internet Engineering Task Force, as well as a list of active internet-drafts.
"The Internet of Things and smart mobile technologies are moving into a range of diverse applications," said Brian Witten, Senior Director for Internet of Things Securit. "It is important to create an open protocol to ease and accelerate adoption of hardware-backed security that is designed to protect on board encryption-keys."