Need and benefits of an IoT KMS
Industry standards increasingly demand the use of KMS (e.g. OMS). The European Data Protection Regulation (GDPR) will also have an enormous impact on suppliers of IoT devices. In this context the GDPR asks for a pseudonymization and encryption of personal data. Violations are subject to high penalties. Affected are, among others, manufacturers of smart meters, heating cost meters, water meters and all other “smart devices” that process personal or sensitive data.
In the future each "smart device", handling with sensitive personal data, will have to receive one or more individual keys (e.g. AES keys), in order to meet the growing security and data protection requirements. Instead of distributing a few keys across large production series, a large number of individual keys must now be generated, assigned to the individual devices and managed. This faces IoT manufacturers and their customers to new challenges. Without a central KMS, the level of complexity for key management increases with the growing number of individual keys to be managed at different touchpoints from production to operation and delivery to the customer.
IoT device manufacturers who process personal or sensitive data will need effective key management in the future.
MTG IoT KMS
MTG´s IoT Key Management System (MTG IoT KMS) was specially developed for manufacturers of IoT devices, making the management of a large number of individual cryptographic keys in production and at the customer’s site considerably easier.
For this purpose, the MTG Enterprise KMS was extended by additional modules that support the special requirements of the manufacturers in all processes relating to the management of key material. It enables manufacturer to generate high quality keys and to apply them during the production process. The ERP-systems will use the MTG IoT KMS to import keys from different devices. During the entire production, order and shipment process an effective identification and authentication of millions of devices is possible. A secure handover of the key material when sending the devices to the customer is ensured thanks to an electronic shipment file (eLS).
Electronic Shipment Files
For the en- and decryption of an electronic shipment file we offer all necessary "crypto key functionalities". The application for the electronic shipment file can be connected quickly and easily to fulfill all encryption tasks. For the electronic shipment file, we rely on common standards such as OMS-XKE (OMS XML Key-Exchange of the Open Metering System Group) and FNN eLS 2.1 (Germany). Thanks to the key transfer via standardized interfaces, it is always possible to work with a non-MTG KMS on the side of the manufacturer or its customer.