ARM plans to mbed itself into the IoT, for better or worse

Subject: General Tech | October 26, 2016 - 01:08 PM |
Tagged: arm, Mbed OS, iot, security

Is a single point of failure more or less secure than multiple points?  That is the question IoT designers should make when considering ARM's new mbed OS, designed to rein in the fiasco which is the current state of security in the IoT market.  On the one hand this OS will run on just about any device you could want, even if you prefer your device remain on MIPS, Linux or another OS and regardless of your back end provider.  It will allow encrypted updates to be pushed out to devices software or firmware from a single source and the companies which use it will be charge on a pay per use scheme as opposed to a fixed cost.

On the sinister hand, this means that when someone manages to exploit an unforeseen vulnerability in mbed, the communications between ARM and the devices or the factory set private keys, they will be able to own every single mbed device out there.  That is unfortunately merely a matter of time and so we wait to hear from ARM as to how they plan to partition the devices which use mbed and other measures they will develop to prevent a worse DDoS than the Dyn DNS attack last week.  You can take a deeper look at mbed's structure as well as ARM's new Cortex-M33 and Cortex-M23 microcontrollers over at The Register.

index.png

"So ARM has come up with mbed Cloud, a software-as-a-service platform that securely communicates with firmware in devices to install fixes and feature updates. Product makers pay to remotely manage all their sold kit. Crucially, they pay for what they use – whether it's pushing updates, or connecting millions of units, and so on."

Here is some more Tech News from around the web:

Tech Talk

Source: The Register

ARM's Mbed OS and Device Server

Subject: General Tech | October 2, 2014 - 12:37 PM |
Tagged: Mbed OS, arm, iot, cortex-m, Mbed Device Server

ARM is serious about staking their turf in the Internet of Things, there will soon be an Mbed OS custom built for their Cortex-M lineup of processors which will pair with an Mbed Device Server to manage clients and process data.  The main focus is on low power communications technology as one would expect, with support for Bluetooth Smart, 2G, 3G, LTE and CDMA cellular technologies, Thread, WiFi, and 802.15.4/6LoWPAN along with TLS/DTLS, CoAP, HTTP, MQTT and Lightweight M2M.  The project is not new either, according to what ARM told The Inquirer the Mbed community already has over 70,000 developers actively participating or designing products on this platform and there is a long list of partners for Mbed listed in that article.  The real focus in many minds is not so much on the current adoption of the Mbed OS, but in how much time will be spent on their second claim, security.  There is a lot of doomsday scenarios being tossed around as the IoT starts to come of age, many are farcically incorrect but there are very real concerns as well.

mbed-os-v2.png

"Called the Mbed IoT Device Platform, the software is primarily an operating system (OS) built around open standards that claims to "bring Internet protocols, security and standards-based manageability into one integrated tool" in order to save money and energy in making IoT devices."

Here is some more Tech News from around the web:

Tech Talk

Source: The Inquirer