Smart and Smarter: Use our built-in security tools when designing connected home products

The advent of IoT devices in the connected home has provided increased convenience to consumers. However, it also leaves consumers vulnerable to cyber-attacks on account of poor or substandard security and design practices from ODMs designing IoT products for the connected home.

GainSpan takes pride in providing a comprehensive set of security tools for our customers. These include using industry standard encryption protocols such as TLS1.2 for end-to-end security of data transmission and over the air security using Wi-Fi Protected Access (WPA2). We also support a comprehensive suite of EAP/PEAP methods for Enterprise networks that provides banking level security.

We offer a number of Application Development Kits (reference designs) for easy development of certain features such as video cameras, music streaming, provisioning IoT devices on the home network, etc. All these reference designs are intended to be used by the ODMs as a starting point to minimize their development effort and provide a fast time to market. ODMs typically make changes to these reference designs to adapt to their specific use case.

Security is a major concern in applications wherein the IoT device is physically accessible to a malicious party e.g. door bells, security cameras, thermostats, etc. GainSpan recommends that while designing such applications the ODMs make use of the security measures provided by GainSpan. These include:

  • Not using open networks while provisioning. GainSpan recommends that customers use a per device unique passphrase for the Limited AP network being created for provisioning using WPA2 security
  • Not sending network credentials in the clear text. This is highly discouraged as it easily gives network access to malicious parties
  • Erasing all the customer credentials and information while resetting the IoT device to factory default settings
  • Using industry standard TLS1.2 encryption for transmission of all data from the IoT device to the cloud and/or mobile devices. This prevents malicious parties to decrypt the data even if they are able to eavesdrop on the transmission
  • Updating the encryption keys periodically so as to prevent the risk of keys being accessed by malicious parties
  • Using digital certificates for verifying the server’s authenticity before performing firmware updates. This ensures that your IoT device is being updated by the intended server

The security measures highlighted above are available to all of GainSpan’s customers. We recommend that ODMs use all or most of these security measures that are applicable for their IoT end product.

CES in Las Vegas

CES 2016 in Vegas was a remarkable opportunity to meet many customers and prospects, showcase our wireless connectivity products and experience other electronics innovations in every walk of life. For the first time we exhibited in the Smart Home section of the Sands Expo (as opposed to the Meeting Place at the back of South Hall 2 the previous years), and that proved to be an excellent decision,  as many of our volume customers develop smart home and healthcare products.

We launched our first Bluetooth Smart (BLE) module that expands wireless solutions for connected products, complementing our Wi-Fi GS2000 family of modules. Wi-Fi and BLE modules are complementary in the Smart Home, healthcare and fitness and other IOT markets, both offering also smartphone connectivity:  Wi-Fi for higher bandwidth applications, such as battery powered doorbells, and applications requiring IP connectivity;  Bluetooth Smart for very low power consumption such as a smoke alarm or a door lock.

We also introduced new reference design and development platforms for smart doorbell applications featuring HD Video streaming and Full Duplex, Hi fidelity audio.  In addition, Gainspan demonstrated an exciting new reference design for HD Music applications.  The new HD Music Development platform streams Lossless Music files over Wi-Fi networks, delivering incredible audio quality for next generations of wireless speakers, soundbars and headphones.

ces-2016-1
From left: Rohit Bhola, Bernard Aboussouan and Patty Kamysz, with an acrylic display of GainSpan’s first BLE module, the GS780MIZ