Data privacy in IoT
Securing user data privacy is paramount, if we want to spread the use of IoT. In security,home care, insurtech, and smart metering solutions, a lot of data is sent – in a lot of different wireless protocols - between your devices and gateways. As developers, it is our highest priority to make sure that those data transmissions are safe and inaccessible to outsiders.
Our way of protecting your data
All of our products are developed to live up to a strict standard of security when communicating with each other.
When a device from Develco Products attempts to join a network, it makes use of installation codes, certificates and pre-defined keys to authenticate the connection. After the device has connected to the network, the gateway transports the information across the different wireless protocols. These protocols are secured in different ways: Zigbee and Wireless M-Bus support AES 128bit encryption, and Wi-Fi supports WPA2-PSK (AES/TKIP) encryption. Furthermore, when two Zigbee devices are connected, they use symmetric link keys when communicating – i.e. a unique key for each established link in the network. This prevents multiple breaches of security.
A different key for every gateway
Each gateway from Develco Products is assigned an individual key set, allowing for remote access using SSH/SCP, with an ECDSA key pair required for login. The gateways communicate with the back-end system using AKEP2 security key negotiation. When the key has been negotiated, data privacy is secured with AES-128bit encryption.