AWS Launches Enterprise IoT Security Tool
This week Amazon announced the release of AWS IoT Device Defender, a new tool designed to help enterprises secure Internet of Things devices.
According to Amazon, the tool makes it easier for organizations to manage these configurations to ensure device identity, authenticate and authorize devices and encrypt device data.
AWS IoT Device Defender is a fully managed service that continuously audits IoT configurations, which are organization-specified technical controls to help keep information secure when devices are communicating among one another and the cloud.
Along with continuously auditing the IoT configurations on devices against a set of predefined security best practices, AWS IoT Device Defender can also monitor devices to detect unexpected behavior and anomalies that could indicate a compromised device and send out an alert so organizations to fix any potential issues, the company said in a post last week.
Spokesperson Jeff Barr detailed how the new service works in his own post, where he discusses audits -- scanning for imperfect configurations and AWS issues such as overly permissive IoT policies -- and detection functionality.
"On the detection side, Device Defender looks at network connections, outbound packet and byte counts, destination IP addresses, inbound and outbound message rates, authentication failures, and more," Barr said. "You can set up security profiles, define acceptable behavior, and configure whitelists and blacklists of IP addresses and ports. An agent on each device is responsible for collecting device metrics and sending them to Device Defender. Devices can send metrics at 5 minute to 48 hour intervals."
More information on the service is available in the Device Defender developer guide.
David Ramel is the editor of Visual Studio Magazine.