White Paper Introduction

Title: "Essential Attributes of Securely Connected Devices: 10 Security Goals of PSA Certified and 7 Attributes of Microsoft's High-Security Devices

Author: Rob Smart, Senior Principal Security Architect at Arm (co-founder of PSA Certified) and Microsoft

This document was written by PSA Certified and Microsoft to illustrate the common goals of PSA Certified's 10 Security Goals and Microsoft's Seven Attributes of High-Security Appliances. It is ideal for those who want a high-level understanding of what is necessary to secure connected devices based on the expertise of two key industry players.

English original article: PSA Certified Microsoft Whitepaper Essential Properties Secure Connected Devices

Whitepaper main content

Microsoft's and PSA Certified's perspective and motivation for identifying essential security requirements. An overview of the seven attributes of Microsoft's high-security devices and the 10 security objectives of PSA Certified. Seemingly different attributes and objectives that actually have a lot in common.

Background Notes

We have entered an era of digital transformation where virtually every industry is adopting technology to enable new efficiencies, products, and services at an unprecedented scale. At the heart of this digital transformation is the ability to connect devices, collect and interpret data, and provide intelligent business or service insights. However, underinvestment in protecting the devices that underpin the fundamental value of the enterprise exposes both consumers and businesses to serious security risks.

Ultimately, digital transformation will be driven by data: real, trusted data is more important than ever. The small amount of data collected from each sensor and actuator must be trusted as it accumulates into the big data that drives massive new transformational digital services. Trusted data and trusted services can only truly become possible and scale if they are generated by devices with sound security principles.

As the IoT begins to evolve, Arm and leading security assessment labs are spearheading PSA Certified, a partnership designed to establish baseline security requirements with the ecosystem. This is based on PSA Certified's 10 security objectives that every connected device should meet before it can interact with the Internet. These can be achieved by incorporating the Root of Trust (RoT), and they drive the definition of PSA-RoT. The goals are high-level abstractions from Arm's long experience in protecting devices, as well as specific threat modeling and security analysis for common connected device use cases.

At the same time, Microsoft noted that high development costs and maintenance often limit the adoption of strong security in the connected device ecosystem. Every device, whether it is a connected thermostat or a device connected on the factory floor, is a potential target for attack and therefore requires high integrity security. Through extensive research and testing, Microsoft identified at least seven attributes that should be present in all devices considered to be high security. The results of this research are documented in the "Seven Attributes of High-Security Devices" article.

Both the PSA-certified 10 security objectives and Microsoft's seven attributes are designed to drive the adoption of foundational security in the IoT device ecosystem. In this white paper, we describe both PSA certification and the Seven Attributes of Highly Secure Devices paper using material from both to provide a high-level comparison and our perspective on their similarities and differences.

Ultimately, the call to action is simple: security is everyone's responsibility, and we need to unite to advance the security of the Internet of Things.

Related News

1、Chip Packaging Lead Time Has Grown to 50 Weeks

2、Eight Internet of Things (IoT) Trends for 2022

3、Demand for Automotive Chips Will Surge 300%

4、Volkswagen CFO: Chip Supply Shortage Will Continue Until 2024

5、BMW CEO: The Car Chip Problem Will Not Be Solved Until 2023

6、Shenzhen: This Year Will Focus on Promoting SMIC and CR Micro 12-inch Project