Sealsq enables trusted IoT onboarding

  • February 21, 2024
  • Steve Rogerson

Swiss firm Sealsq is enabling trusted IoT device onboarding with the US Nist National Cyber-security Center of Excellence NCCoE.

Sealsq focuses on developing and selling semiconductors, PKI and post-quantum technology hardware and software products. It is involved in a project led by Nist for the development of the first quantum-resistant USB token demonstrator by the post-quantum engineering team.

This collaboration, which is part of the firm’s Quasars project, aims to establish a foundation for post-quantum cryptography readiness, featuring hybrid options in line with the recommendations of the French Anssi national cyber-security agency (www.nccoe.nist.gov/projects/trusted-iot-device-network-layer-onboarding-and-lifecycle-management).

Sealsq’s participation in this project led by the NCCoE is set to change the way IoT devices are onboarded and managed across networks, ensuring better security and trust in the rapidly expanding IoT landscape.

As the digital world continues to evolve, the need for robust, scalable and trusted methods for IoT device management becomes ever more critical. Sealsq, in partnership with Nist, is at the forefront of defining and implementing best practices for trusted network-layer onboarding, a key component in safeguarding IoT devices from unauthorised access and manipulation.

Sealsq is contributing its expertise and innovations to this project, including its trust services for credentials and secure semiconductors. Through the Ines CMS certificate management service, Sealsq will facilitate the issuance of credentials, while its VaultIC secure semiconductors will provide tamperproof key storage and cryptographic acceleration. These contributions are essential for the trusted network-layer onboarding of IoT devices, ensuring secure lifecycle management from inception to retirement.

The collaboration aims to tackle the inherent vulnerabilities that come with provisioning network credentials to IoT devices in unsecured manners. By developing trusted, scalable and automatic mechanisms, the project seeks to enhance the management of IoT devices throughout their lifecycles, starting with the step of secure network credential provisioning.

A highlight of its involvement in the NCCoE project is the development of the first quantum-resistant USB token demonstrator by the post-quantum engineering team. This achievement is part of the Quasars project, which aims to establish a foundation for post-quantum cryptography readiness, featuring hybrid options in line with the recommendations of the Anssi.

Sealsq’s partnership with Nist and other technology providers underscores a collective commitment to enhancing IoT security. This initiative is supported by a consortium of technology partners and collaborators, including HPE subsidiary Aruba, CableLabs, Cisco, Foundries.io, Kudelski IoT, NquiringMinds, NXP Semiconductors, Open Connectivity Foundation (OCF), Sandelman Sealsq, Software Works and Silicon Labs.

Sealsq (www.sealsq.com) focuses on selling integrated products based on semiconductors, PKI and provisioning services, while developing post-quantum technology hardware and software products. Its products can be used in applications from multi-factor authentication tokens, smart energy, smart home appliances and IT network infrastructure, to automotive, industrial automation and control systems.

Post-quantum cryptography (PQC) refers to cryptographic methods that are secure against an attack by a quantum computer. As quantum computers become more powerful, they may be able to break many of the cryptographic methods that are currently used to protect sensitive information, such as RSA and elliptic curve cryptography (ECC). PQC aims to develop cryptographic methods that are secure against quantum attacks.