eWBM: Navigating IoT into the Futuren

he concept of security remains paramount as the Internet of things (IoT) enters a new era with cloud giants such as Microsoft, Amazon, and Google releasing cloud offerings for IoT applications. With talks regarding federal laws for IoT security making its rounds, the state of California recently passed a law, SB327, to fortify security for IoT devices. Despite the rapid advancements in security measures, it is mandatory for cloud companies to certify secure connections between an IoT device and the cloud using Secure Socket Layer (SSL) or Transfer Layer Security (TLS) protocols. However, implanting TLS protocols in small IoT devices can be rather tedious and time-consuming, which calls for strenuous efforts to induce “lightweight” crypto algorithms to reduce the burdens of IoT devices’ computational complexity. Addressing the growing need of reducing this complexity, eWBM, a Seoul-based IoT company offers a perfect-fit solution that leverages standard cryptography algorithms such as AES, RSA, or ECC to propel IoT trends into a secure future.

eWBM’s IoT security solution comprises FIDO2 Authenticator, LoRaWan modules, IP camera solutions, and serial-to-Ethernet modules based on a secure, self-designed microcontroller unit (MCU)—the MS500. “It is crucial for an IoT product or application to be ‘secure by design’, and with our self-designed MCU, we fully deliver that,” states Stephen Oh, CEO of eWBM.

The features implanted in MS500 are capable of effectively fending off potential security threats during the booting process by restricting hackers from altering the program for their own benefit. Equipped with a device unique key (DUK) that is programmed, altered with combinatory logic, and written into an IoT device’s e-fuse, the MS500 incorporates reliable storage security. All the security protocol keys are then encrypted and stored securely using the DUK, empowering the clients with robust mechanism against potential threats. Taking things one step further, the MS500 coupled with eWBM’s futuristic MS1200 utilizes standard non-lightweight cryptography engines that offload CPUs from heavy computations without compromising on memory and performance. Recently, one of eWBM’s European clients was faced with the challenge of reducing the initial set-up time for the TLS protocol and eliminating vulnerabilities during that period. “If the clients consumed more time just to set-up a device with TLS capability, then that device would not have met their customers’ requirements,” adds Oh. The client implemented a self-developed TLS algorithm using a 200MHz Cortex-M4 processor to meet the requirements, which proved too expensive for their application. What the European client needed was to deploy an appropriate solution for their IoT applications utilizing TLS protocol. Upon evaluating and implementing eWBM’s MS500 cryptography hardware, the client was able to reduce the device set-up time by 500 milliseconds, which was beyond their expectations.

With similar stories showcasing the company’s success, eWBM strives to leverage the MS500 and aims to become an integrated IoT device manufacturer for delivering maximum security at low cost. eWBM is currently developing FIDO2 authenticators— USB-based security devices, and working collaboratively with multiple IoT companies to seamlessly transition the PC world into being password-less. Looking ahead, the company will be unveiling its second generation secure MCU later this year, and a third-generation model in the year 2020. “We serve reputed companies such as Samsung, SK Telecom, Hynix, Microsoft, and Amazon, and many companies in Japan and Vietnam. With our R&D based in Seoul, we are looking forward to further extending our outreach into the European continent,” Oh concludes.