Microsoft Security Product Hub

Internet of Things (IoT) Security

Overview

Internet of Things (IoT) and operational technology (OT) run some of the most important infrastructure and the number of devices is expanding rapidly with tens of billions of devices estimated in 2021. This also increases the attack surface and risk as these devices are connected to the network. Microsoft's Zero Trust for IoT requirements are strong identity, least privileged access, device health security checks, continual updates and security monitoring. Microsoft's IoT security capabilities are made of Azure Defender for IoT, Azure Sphere, IoT Hub and IoT Edge.

Azure Sphere is made up of three parts. 1 Azure Sphere microcontroller unit (MCU) is a secured MCU. 2 secured Linux based operating system. 3 Azure Sphere Security Service is a cloud based security service. Together Azure Sphere is a a secured internet connected device that can be updated, deployed and monitored. Azure Sphere development kits are hardware devices for prototyping Azure Sphere applications.

Azure IoT Hub is a cloud service for secure and reliable two way communication between IoT devices and applications. IoT Hub provides per-device authentication, device management, updates and provisioning.

Azure IoT Edge allows deployment of cloud workloads on IoT edge devices in containers. Primary use cases are artificial intelligence and business applications on IoT devices in the local network, where reacting to events can be done locally rather than going up to the cloud for processing or depending on internet access.

Azure Defender for IoT identifies devices, vulnerabilities and threats via agent or agentless solution.

Outcomes

  • Secure, protect and manage IoT and OT devices
  • Reduce attack surface and risk of compromise
  • Remotely deploy, manage and update devices
  • Run time critical applications on the edge of the network instead of the cloud
All
Secure Remote Work
Zero Trust