Post on 11-Apr-2017
© 2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
John Burry, Senior Manager, Solutions Architecture
June 21, 2016
Overview of IoT Infrastructure
and Connectivity at AWS
The “Internet of Things”
(plural)
Things are NOT static assets
“There is nothing in that patent except as a toy.”
William Orton
The customer has many identities
AWS IoT
Publish / Subscribe
Standard Protocol Support
MQTT, HTTP, WebSockets
Long Lived Connections
Receive signals from the cloud
Secure by Default
Connect securely via X509 Certs
and TLS 1.2 Client Mutual Auth
Sensor Messages
Standard Protocol Support
MQTT, HTTP, WebSockets
Topic / Channel
Message routing hierarchy.
Control over full tree
Payload (JSON)
Customer Defined JSON payload
Extracting the value from messages
• Filter messages with certain criteria
• Move messages to other topics
• Move messages to other systems
• Transform the payload of messages
• Predict messages based on trends
• React based on messages
Rules Engine
Elasticsearch Integration
Predict Function
Adding human computation?
A company does not have to disrupt its core
offering when being disrupted
AWS IoT Device Shadow
AWS IoT Device Shadow
Securing Devices
new: Bring Your Own Certificate
• Use Certificates issued by your own CA
• Existing certificate issuance infrastructure
• Use certificates already on-board
• Limited Internet connectivity from assembly / manufacturing
locations
• Seamless provisioning of devices
• 8 new API calls to support management of certificates
Securing AWS Resource Access
Creating the Trust Relationship with AWS IoT
P P
PRole
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "",
"Effect": "Allow",
"Principal": {
"Service": “iot.amazonaws.com”
},
"Action": "sts:AssumeRole"
}
]
}
Securing AWS Resource Access
Securing User Access
• WebSockets support SigV4 Authentication
• IAM Roles and Policies
• Cognito Identity Pools
• Anonymous access to iot:Subscribe
• Use your own application level authentication patterns
Thank You!
John Burry, Senior Manager, Solutions Architecture