ClearBlade IoT Security

Security Is Critical, so our Standards Are Second to None

ClearBlade was built with security in mind. Learn how protecting your solution is our mission.

Product Development Principles
The Core to Protecting
Your IoT

Secure software starts with the prevailing principles that inform its development. For ClearBlade, those are the following:

  • Embrace open community accepted standards.
  • Utilize approved practices and libraries with openness and public validation.
  • Continual updates ensure the strongest and most current defense. We develop to update, resolve, and protect against future vulnerability discoveries.
  • Default permissions are always set to none; no lazy development permitted.
  • No back doors! Build a security model that doesn’t require secret master permission.

Covering Every
Vulnerability

Judicious Privileges

Never over-empower a user or device beyond its necessity.

API Layer Extraction

Leverage API layers to protect and guard systems of record and their system credentials.

Specific Auth Model

Create and implement the auth model that matches the solution's needs.

 

Compliant + Flexible Architecture

Enterprises need solutions that are flexible beyond clouds and across their internal infrastructure. ClearBlade recognized this and built a flexible deployment architecture from the ground up. The flexibility of the architecture unique to ClearBlade is best summarized by:

Platform performs optimally on any infrastructure.
There is no dependency on cloud-specific APIs or definitions. The ClearBlade Platform will run on any Linux OS, leveraging containers to fit within the boundaries of your secure network. Whether virtualized or bare metal, ClearBlade can install and run securely next to your core systems and behind your firewall.

Local Edges: Even when using a cloud-based platform, building IoT systems with secure access behind your firewall is still possible. The ClearBlade edge devices can provide critical enterprise integration, run within the enterprise security requirement, and manage entire remote IoT applications. The edges provide ways to leverage cloud value while protecting your enterprise security.

Core Technical Implementation

The ClearBlade Platform provides IoT system security incorporating the elements as detailed below.

Security Authentication

model for authenticated and anonymous interactions. Every system interaction requires a device and user to gain a valid token.

This token model enables:

  • Comprehensive auditing of every session.
  • Simple customization to allow for system-specific duration.
  • Extensibility for third-party user registries to grant permission.
  • Override capability to build 2FA. Flexibility to leverage user credentials/device keys/trusted certificates.

The Ultimate Authority

ClearBlade provides a role-based authority model for granting privileges, allowing only specific actors, such as devices or users, to access a system’s granular elements.

This means you can design specific control limits or expand who can perform actions such as:

 

Which devices can send messages.

 

What users can read a data collection.

 

Which administrators can update user information.

IoT Security Awareness


Recognizing the potential for emerging threats, ClearBlade has made IoT system awareness the core of its offering. Security is always evolving, and while building the best solution upfront is desired, there are often attempts at intrusion and abuse of your IoT system. With ClearBlade, you can:

  • Audit every transaction, including API calls, messages, user actions, and data CRUD ever performed.
  • Get real-time system usage to identify abnormal behavior, like if a single credential is accessing large amounts of data.
  • Rapidly see if enterprise applications behave with unidentified network traffic.
  • Monitor device activity to ensure you receive expected heartbeats and payloads from your connected devices.

 
 
 

IoT Security
Encryption

By encrypting your data, you can ensure that the secured data cannot be read by prying eyes, no matter what server it resides on or network infrastructure it travels over.
ClearBlade leverages the community best practices to ensure that data is encrypted during:

Transit
  • Engrained for all users communicating to the Platform
  • Integrated for enterprise applications sharing information. Additional 3rd party encryption may be leveraged
  • Embedded into devices, adding an additional protection layer, even when their source protocol offers limited security
  • Inherit in every transaction between the ClearBlade Edge and IoT Platform
Internal Transit
  • Communicate securely between ClearBlade instances
  • Communicate securely between cloud providers
  • Extensible to 3rd party trust authorities
  • All messages, systems, API calls, and data transfers are fully logged and auditable
  • Maintain encryption keys to protect secure IoT data from cloud vendors, hosting providers, and other internal teams
At Rest
  • Encrypt cached and stored data within the ClearBlade Platform
  • Protect low-level file systems
  • Secure your data across all elements of your IoT ecosystem
Ready for a More Secure IoT?

Speak with a ClearBlade specialist and see how our IoT security can help digitally transform your business.

Schedule A 30 Minute Demo

Unlock Machine Data & Unleash Business Value

X