Seize the Trillion Device Opportunities with Arm the... · Pelion IoT device management...

© 2018 Arm Limited

Seize the Trillion Device Opportunities with ArmJerry Wang Presales Technical Consultant, IoT Services Group

© 2017 Arm Limited 2

© 2

01

8A

rm L

imit

ed.

About Arm

Employees with major presence in China and wider APAC

~6,000

in FY17 revenue$1.8B

Arm-based chips shipped to date and counting

125B+

The architects of global possibilities

Founded in 1990

HQ in Cambridge UK with global offices across Asia, Europe and US

Acquired by Softbank Group Corp. in 2016

Partner ecosystem

1,000+of the world’s population uses Arm technology

of world’s smartphones are based on Arm

>95%


© 2

01

8A

rm L

imit

ed.

Arm: the industry’s architecture of choice

>95% the world’s smartphones are based on Arm

22 years

4 years

4 years

20171991 2013 2021

50 billionchips shipped

50 billionchips shipped

100 billionchips expected to ship

>50% of Arm chips shipped in FYI6 (17+bn) into embedded devices


© 2

01

8A

rm L

imit

ed.

Key challenges for IoT deployments

Investment returnWhat is the value of data to my business?

SecurityconcernsCan the data be trusted?Does it make me vulnerable?

InteroperabilityhurdlesWhat is required to integrateIoT with current systems?


© 2

01

8A

rm L

imit

ed.

Challenge: Deploying and managing IoT at scale

Fragmented Deployments

Edge Gateway

Ultra-Constrained

Constrained

Mainstream

Cloud

ConnectingDevices

Harnessing Data

Security

Rich Node

ManagingDevices

Developing Devices

Different IoT device classes, connectivity options, and hybrid environments lead to fragmentation, complexity, & the need for security

PrivateOn Premises

Control

Data


Business Outcomes with IoT Technologies

Nobody just buys IoT technologies… Our customers found business outcomes.


© 2

01

8A

rm L

imit

ed.

Introducing the Pelion IoT PlatformEnd-to-end services built on Arm IPG+ISG security framework

Applications Ecosystem

(App Development Enablement)

Device EcosystemMbed OS Ported to Module and Chips

Connectivity Management Services

Device Management Services

Data Management Services

CDP Asset Tracking

Dev

ice-

to-d

ata

secu

rity

Pelion

Enterprise+

Other Data

Control

Data


© 2

01

8A

rm L

imit

ed.

Secure device management

Pelion IoT device management capabilities ensure messages are delivered securely and reliably from the right devices at the right time

• Device onboarding

• Device lifecycle management

• Secure software update

Equipment, environment, parts, materials, people

Application

data

data data data data data

InsightsOptimizationsResponses

Application

IoT PlatformDevice Management


Application


© 2

01

8A

rm L

imit

ed.

Global IoT connectivity

A single vendor / multiple network options

Access to over 600 Networks globally

Highly available Global APN Providing Access to a range of different MNO connectivity services

• Various cellular connectivity offerings for all industries, including 4G LTE, 3G, 2G

• Sponsored Roaming, High Usage, Low Cost

• Global Roaming, Low Usage, Low Cost

• Local in country connectivity

• eUICC Services• Global roaming based bootstrap connectivity

• Local eUICC profiles orchestrated through IoT-X

• Industry standard ITIL Based Support Model

• Monitoring and NOC 24/7/365

• Service Centres in Europe and North America

Connectivity Management Services


© 2

01

8A

rm L

imit

ed.

Analyze Act Ingest Integrate Store Prepare Discover Share Analyze Act

Raw IoT Data

Enterprise and industrial data

Pelion Data Management Services

“…the supply of usable IoT data”

Partner / Customer Solutions

Enable an expert ecosystem

Data management unlocks valueData Management Services


The Pelion IoT Platform

Data Management Services


Identity Access Mgt.

Connectivity Management

One View of

Data

One View of Devices

Marketing

Asset Visibility

Energy Management

Smart Lighting

Industrial Automation

In-homePatient Care

Complexity due to Diversity Abstraction of Complexity Business Value Creation

Partner and Customer

ApplicationsBusiness Systems

BusinessIntelligence

Visualization

WorkflowSaaS

Email

Analytics

Machine Learning

SaaS

Database

Marketing

Social

Ultra-constrained

constrained

Rich node

gateway

Cellular

satellite

LPWAN

Pelion abstracts away the complexities of IoT

One View of

Connections

SIM Mgt. ServiceQuality

Network Orchestration

Lifecycle Mgt.

Unified operational

view

Unified Security

Unified Identity

Ingest Integrate Store Prepare


Pelion Device Management

Service


Pelion device management: Many Communications Protocols, One Device Management

IoT connectivity may need many new communication technologies

• Common interface and tools

• Reduce Cost of Employee Training

• Scale to millions of devices easily

Simpler Device Management

NB-IoT

TODAY FUTURE


Connecting chip to cloud

IoT Cloud Applications

App Management, Monitoring, Logging

Web Servers,Load Balancing

Analytics and Rules Engines

VMs, Compute, Auto-scaling

Databases, Caching, Storage, Archiving

Events, Streaming, Message Busses

Device Services 3rd Party Cloud Platforms & Services

Device Silicon and Hardware

IoT Device Application

Device Software

Device Provisioning, Identity, Onboarding

Device Connectivity, Events, Monitoring

Device Update, Firmware Installation

Mbed Clients –Mbed OS, ToolsPelion Client,


Pelion device management service

Simple, secure and energy efficient IoT connectivity solution

for a diversity of devices, enabling unified connectivity from cloud applications

▪ Key features

▪ Standard based OMA LWM2M, CoAP and TLS/DTLS

▪ End-to-end channel security

▪ Secure device bootstrap

▪ Optimizes for small devices and energy efficiency

▪ IoT device communication via REST APIs to enterprise

software and web apps

©2017 Arm Limited

Two contrasting device management approaches

Vertically-integrated device management

Locks-in customers into a public computing platform

Horizontally-integrated device management

Enables flexibility in deployment of business applications

Public Cloud Computing Platform

Integrated Device Management

Public CloudCompute

Platform-independentDevice Management

Private Cloud

On-PremisePublic Cloud

ComputePublic CloudComputing Platform

©2017 Arm Limited

Secure all stages of device life-cycle

Manufacturing

On-boarding

Regular Use

SecureDeviceAccess

FactoryProvisioning

SecureSoftwareUpdate

BootstrapExternal CA

Commissioning


© 2

01

8A

rm L

imit

ed.

Removing friction to Device Management

On-boarding

• Connect to bootstrap service,get registration credentials

Regular use – update the device

• Securely remote updates of device

Retire/decommission

• Remove from the service (end of life) • Securely wipe sensitive key material

Commissioning

• Securely configure network credentials and operational parameters

1 Manufacturing – factory provisioning

• Configure devices with trusted unique identity• Device receives bootstrap credentials

2

3

5 6


Regular use – sense/ send data

• Normal life device operation• Controlled access to devices in the field

4

©2017 Arm Limited

IoT Cloud Applications

App Management, Monitoring, Logging

Web Servers,Load Balancing

Analytics and Rules Engines

VMs, Compute, Auto-scaling

Databases, Caching, Storage, Archiving

Events, Streaming, Message Busses

Device Services 3rd Party Cloud Platforms & Services

Device Silicon and Hardware

IoT Device Application

Device Software

Device Provisioning, Identity, Onboarding

Device Connectivity, Events, Monitoring

Device Update, Firmware Installation

Mbed Clients –Mbed OS, ToolsPelion Client,

Confidential © Arm 2018 Limited 20

Pelion Device Management ClientThe client profile for robust management of constrained IoT devices

Easy to use, out of the box solution pre-integrated with Mbed OS and with Linux

Support for protocol stacks specifically designed for constrained nodes

Supports certificate based channel security with forward secrecy

Supports remote secure firmware update

Low footprint fitting into mainstream device leaving sufficient resourcesfor your application

Confidential © Arm 2018 Limited 21

Pelion Device Management Client LiteThe client profile for robust management of constrained IoT devices

Easy to use, out of the box solution pre-integrated with Mbed OS

Support for protocol stacks specifically designed for constrained nodes

Supports channel security

Supports remote secure firmware update

Low footprint fitting into constrained device leaving sufficient resourcesfor your application


Enterprise-class resiliency at the edge

©2017 Arm Limited

Connected to devices via gateway

Manage devices and gateway

Ready for compute at the edge

PELION DEVICE MANAGEMENT EDGE


Key components of Pelion Device Management Edge


IoT security challenges

Many IoT devices do not have proper security capabilities

• Due to cost

• Due to time to market

• Due to feature prioritization

• Due to lack of expertise

Extremely fragmented market - no trust between stakeholders

Security need is realized in hindsight


trusted

Building on proven security practices

Defense in depth strategy that uses layers of hardware security in the system

IoT architecture should re-use proven security practices:

• Uses principles of hardware “Compartmentalization” and “Least privilege”

• Use a hardware root of trust & trusted boot

• Ensure system is updatable

Security is at the system design level, not an add-on component

Lifecycle securityCommunication securityPlatform security


Mbed OS


© 2

01

8A

rm L

imit

ed.

Removing friction to Developing Devices

Drivers

RTOS

Security

Middleware

Communication

Update Manage

Provision Connect

Application

Device Stacks 50%

30%Device Management

Device Application 20%

Mbed OS

MCU MCU

Application


What is Mbed OS?

An open source Platform OS built to address the complexity of IoT at scale running on Arm hardware

Built-in security (PSA)

Supports multi-protocol connectivity

>120 development platforms supported

>320K developers

Open source project in collaboration with ecosystem to accelerates IoT system development

MbedOS

Based on trusted CMSIS

RTOSkernel

Portabledrivers

Integratedsecurity

IoTconnectivity

Managementservices

Development

tools

Developer community

Partner ecosystem


Connected spaces need multi-protocol connectivity

IoT systems need secure, cost effective connectivity for a diversity of device applications

Mbed OS


© 2

01

8A

rm L

imit

ed.

Example: Asset tracking device

Blocks available with traditional RTOS Blocks available with Mbed OS


© 2

01

8A

rm L

imit

ed.

Expanding support for mass production modules

Providing product developers a simple entry point to the module marketplace where they can find mass production-quality modules running Mbed OS

© 2

01

8A

rm L

imit

ed.


Example Mbed OS products

Smart CityParking sensor

Smart AgricultureSoil monitoring

Smart RetailBLE Beacon

Smart TransportationEV Charger Station

Smart BuildingHVAC sensor

Smart HomeAI devices

http://www.waterbit.net/


Mbed Linux


Extending Mbed to Cortex-A

In the past many OEMs have built and maintained their own operating system

Device and data management shouldn’t be an afterthought

• Expensive in time and cost

• Shortage of embedded developers

• Has lead to some shocking security failures

Price-performance ratio of Cortex-A based devices continues to improve, making them ideal for

• Quicker product development

• Reduced cost of ownership

• Enable large scale deployment

• Complex IoT workloads

• Rapid product development


Mbed Linux OS VisionAn IoT Operating System based on the proven Linux kernel but reimagined for IoT

Centrally ManagedDeployment and lifelong device

management made

easy with Pelion

SecureIntegrated chip to cloud

security. E.g. secure boot.

TrustZone, app isolation

Designed for IoTThe Performance and flexibility

of Cortex-A with

the experience of Mbed

Quick & EasyFaster to market & efficient to

maintain with support and

community of Arm Mbed

Delivering the freedom and power to deliver durable innovation at pace


What do you get with Mbed Linux OS?

Grows with your products Integrated connectivity and management

• Support for development & evaluation boards

• Support for modules

• Help with custom PCBs

• Public test suites

A lightweight, secure and managed Linux distribution built from the Yocto Project

• Wired, wireless, mesh, cellular

• Deeply integrated with Pelion

Choose between

• Taking a binary

• Adapt and rebuild if necessary


Mbed Linux OS vs Mbed OS20,000’ View

What’s the same?

Integrated with Pelion

OSS model

Commercial support

What’s different?

Mbed OS

• Cortex-M

• Nearly instant start from cold boot

• Hard real-time OS

Mbed Linux OS

• Cortex-A

• Separate user space

• Multiple processes

• Ability to use interpreted languages


Flexible Deployment and Management

©2017 Arm Limited

▪ Agreement with KEPCO to transform smart utilities for largest energy company in South Korea

▪ Arm uniquely positioned in IoT to deliver secure development, connectivity, provisioning and management from chip to cloud

▪ Arm IoT solutions will enable new use cases for KEPCO including connecting and analyzing data from 20 million smart utility devices

“We chose Arm to lead our smart utilities efforts as they provide a comprehensive IoT solution for securely developing, managing, provisioning and connecting IoT devices from the chip to the cloud.” Dong-Sub Kim, EVP & CTO for KEPCO

Dong-Sub Kim, EVP & CTO for KEPCO

©2017 Arm Limited

https://cloud.mbed.com/docs/current/connecting/device-management-client-tutorials.html

https://cloud.mbed.com/guides/connect-device-to-pelion

Get free tier account and learn how to connect your device to Pelion Device Management.

https://cloud.mbed.com/docs/current/connecting/device-management-client-tutorials.html

https://cloud.mbed.com/guides/connect-device-to-pelion

Seize the Trillion Device Opportunities with Arm the... · Pelion IoT device management...

Documents

Transcript of Seize the Trillion Device Opportunities with Arm the... · Pelion IoT device management...