Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Last revision Both sides next revision
platform:security [2019/02/21 19:09]
tmuvee ↷ Links adapted because of a move operation
platform:security [2019/02/21 19:11]
tmuvee [Gateway Security]
Line 24: Line 24:
  
   * TLS encrypted communications are used with backend   * TLS encrypted communications are used with backend
-  * On first start-up, device connects to Haltian ​bootstrap server to register itself and fetch its AWS IoT client certificate+  * On first start-up, device connects to bootstrap server to register itself and fetch its AWS IoT client certificate
       * Bootstrap server uses HTTPS and a gateway checks bootstrap server authenticity with Haltian CA certificate       * Bootstrap server uses HTTPS and a gateway checks bootstrap server authenticity with Haltian CA certificate
       * to authenticate with bootstrap server, gateway uses one-time key that was written to device at production       * to authenticate with bootstrap server, gateway uses one-time key that was written to device at production
-  * AWS IoT MQTT connection is TLS secured and gateway uses client certificate fetched from Haltian ​bootstrap server+  * AWS IoT MQTT connection is TLS secured and gateway uses client certificate fetched from the bootstrap server
   * Gateway checks AWS IoT authenticity with AWS CA certificates   * Gateway checks AWS IoT authenticity with AWS CA certificates