Skip to main content
purple hex pattern

Incorporate strong connected IoT device credential security from the outset

The IoT is opening up new opportunities for businesses and consumers, and is the linchpin of almost every digital transformation initiative. At the same time, a quick scan of the headlines reveals real security concerns that come with connected devices' credentials that can be remotely attacked and used for nefarious purposes. Entrust nShield HSMs are here to help you secure your IoT digital transformation.

Entrust works with IoT device manufacturers and end users to inject keys and PKI digital certificates to form a root of trust and enable strong authentication for connected devices.

The Role of Authentication in Manufacturing IoT

Growth in Connected Medical Devices Furthers the Need for Authentication


Remote Attacks

Once a device comes online it can become a target for cybercriminals who wish to exploit device credentialing vulnerabilities to find an entry point to networked systems or introduce malicious code.

Issuing Bug Fixes and Other Updates

No manufacturer intends to deploy products with software bugs, but it does happen. Likewise, developers may wish to add new features and functionality to devices that have already gone out the door, potentially opening up additional revenue streams. While customers recognize that code updates may be required on occasion, producers must do so with minimal downtime and a process which ensures authenticity and integrity of the updates to ensure a positive customer experience and protect revenues.

Unauthorized Production

Unsecured manufacturing processes provide criminals opportunities to change production runs to introduce unauthorized code or produce additional units that are subsequently sold on the black market.


Device Authentication

IoT experts across the industry agree: Strong device credential authentication is required to ensure that connected devices can be trusted. Entrust helps manufacturers create a unique device identity that can be authenticated when a device attempts to connect to a gateway or central server. With this unique ID in place, you can track each device throughout its lifecycle, communicate securely with it and prevent it from executing harmful processes. If a device exhibits unexpected behavior, you can simply revoke its privileges.

Code Signing

To ensure the integrity of software and firmware updates, and defend against the risks associated with code tampering or code that deviates from organizational policies, the code must be signed as a key step in the software release process. Entrust has extensive expertise with code signing best practices, including securing signing keys using tamper-resistant hardware security modules.

Secure Manufacturing

Using Entrust nShield HSMs and supporting security software, manufacturers can inject keys and digital certificates, and control the number of units built and the code incorporated into each.


Defense Against Attacks

By establishing trust in your connected devices, you can help ensure only authorized activity on your enterprise networks, providing better defense against attacks on data stores and corporate IP.

Cost Savings and Revenue Opportunities

With the ability to update devices deployed in the field, you can reduce the time and costs associated with in-person updates. You can also deliver firmware updates that create new revenue opportunities through improved product performance or additional functionality.

Protect Against Brand and Financial Damage

By defending against the production of unauthorized units you can mitigate the brand and financial damage associated with overbuilding and cloning, especially with remote manufacturing facilities.


Solution Brief: Entrust nShield HSMs Enable the Root of Trust in IoT Device

The Internet of Things requires security and trust in order to reach its full potential. The explosion of the IoT introduces significant opportunities – as well as potential threats.

Entrust nShield HSMs Enable the Root of Trust in IoT Device

Data Sheets: Entrust nShield HSMs

Entrust nShield HSMs help manufacturers establish unique identities for connected devices. Entrust nShield HSMs provide a hardened, tamper-resistant environment for secure cryptographic processing, key generation and protection, encryption and more.

Entrust nShield HSMs Data Sheet

poly logo
Case Study

Entrust nShield HSMs accelerate Polycom’s integration of digital certificates into phones

Polycom uses Entrust nShield HSMs to give each of its phones a unique identity, making it easier to identify them on customer and service providers’ networks while thwarting would-be counterfeiters and fraudsters.

Case Study

Qube Cinema revolutionizes digital cinema distribution with help from Entrust nShield HSMs

As a manufacturer of servers, projectors, mastering and distribution technology for digital cinema, Qube Cinema saw a unique opportunity to introduce a highly disruptive technology...

Qube logo

Related Products