SlideShare a Scribd company logo

Deploying AWS IoT-managed devices in an industrial setting - SVC302 - Atlanta AWS Summit

Amazon Web Services
Amazon Web Services

This session covers the deployment and operation of AWS IoT-managed devices in industrial settings. We provide an overview of how industrial facilities are managed via operational technology and discuss the benefits of using IoT devices to augment industrial control systems—either through overlay capabilities or through direct integration with existing control systems or historians. We discuss the different methods of secure IoT device deployments without compromising health, safety, or security. Finally, we cover integration of IoT devices from an IT perspective, how devices can operate in harsh operating environments, and considerations for open standards to help ensure compliance.

1 of 36
Download to read offline
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Deploying AWS IoT–managed devices in an industrial setting Gavin Adams Sr. IoT specialist solutions architect Amazon Web Services S V C 3 0 2
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Agenda Operational technology (OT), IT, and cloud technology Benefits of AWS Internet of Things (IoT) Key blockers for deploying IoT devices Deployment architectures
S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Operations, enterprise, cloud Operations (OT) Enterprise (IT) IT systems Customer relationship management Asset management Enterprise resource planning (ERP) Supply chain Finance Maintenance Compliance Supervisory Control and Data Acquisition (SCADA), data control system (DCS), etc. Various protocols Cloud Amazon Kinesis Amazon QuickSight AWS IoT Core Amazon SageMaker
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T ISA-95 in the context of the AWS Cloud Level 1 Line/machine control Animation direct control Level 3 Level 4 Description Manufacturing operations management Business planning and logistics MES/ historian ERP/PLP/ SCM App/systemFunction Line/cell execution Business operations DCS/PLC/ RTU Level 0 Physical values Raw data- event signals I/O sensor AWS architecture Enterprise apps in the cloud AWS IoT SiteWise Level 2 Line/machine supervision SCADA/ HMI Supervisory control AWS IoT Greengrass AWS IoT– aware device AWS IoT– aware device
S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Commonly heard use cases for IIoT • Predictive maintenance • Digital or connected factory • Improved facilities management • Plant and human-health safety • Gain new insights into existing process systems • Improve, increase, decrease, make more efficient … “stuff”
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Predictive maintenance PLC/SCADA/DCS Vibration Acoustic Amazon SageMaker AWS IoT Core Tag values Extended values Maintenance predictions Objectives How
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Workplace safety Objectives How
S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Blockers to implementation • Security/safety • Type-1 hazards • Intrinsic safety, explosion-proof • Proprietary information • Networking/security • Encryption in transit and at rest • Process network to business network to cloud • Ports, protocols, persistence • Detective security • Resilience/reliability • Singular devices • Online and offline connectivity
S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved. “It’s leaving here just fine. The problem must be on your end.” Anonymous telecommunications engineer circa 1995
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Finding IT and OT common ground • Mission and objectives • Address concerns • IT • Greater scope of impact • Physical risks and safety • Legacy plant systems (Windows NT 4.0) • OT • Physical risks and safety • Data leaks • IT and OT working together
S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T PLC/SCADA/DCS Amazon FreeRTOS Device AWS IoT Device Defender AWS IoT Greengrass Core AWS IoT Core AWS IoT SiteWise Industrial system(s) Temperature IoT camera MQTT device gateway Humidity Vibration AWS IoT SiteWise on AWS IoT Greengrass Core AWS CloudProcess network (OT) Business network (IT)
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS IoT Device Defender AWS IoT Core AWS IoT SiteWise Temperature MQTT device gateway Humidity Vibration AWS Cloud Process network (OT) Business network (IT) Using port TCP/8883 Establish TLS 1.2 connection To public FQDN MQTT connection to AWS IoT Core IT questions 1. Where is this device connecting to? 2. How does it create a connection? 3. What protocol/port is used?
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS IoT Device Defender AWS IoT Core AWS IoT SiteWise Temperature MQTT device gateway Humidity Vibration AWS Cloud Process network (OT) Business network (IT) Using port TCP/8883 Establish TLS 1.2 connection To public FQDN MQTT connection to AWS IoT Core
S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved. “Can’t get there from here” R.E.M. Fables of the Reconstruction, 1985
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Here There Just poke a hole for…
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T The details: TCP protocols and ports At launch Current AWS IoT Core MQTT – 8883 MQTT over WebSocket – 443 HTTP – 8443 or 443 MQTT* – 8883 or 443 MQTT over WebSocket – 443 HTTP* - 8443 or 443 AWS IoT Greengrass MQTT – 8883 HTTP – 8443 AWS services - 443 MQTT – 8883 or 443 HTTP – 8443 or 443 AWS services - 443 X.509 client certificate SigV4 * TLS ALPN ProtocolName
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS IoT Core MQTT device AWS Cloud The details: Public endpoint XXXX-ats.iot.REGION.amazonaws.com Server certificate: *.iot.REGION.amazonaws.com issued by Amazon Trust Services CA1 / CA3 Root CA store Resolves to: 1.1.1.1 2.2.2.2 3.3.3.3 or 2.2.2.2 4.4.4.4 9.9.9.9 IP ranges: https://docs.aws.amazon.com /general/latest/gr/aws-ip- ranges.html Methods to implement • Whitelist all public AWS IP addresses for region • AWS Direct Connect public VIF • Intelligent firewall to cache FQDN resolution • Network proxy server • Reverse proxy into Amazon Virtual Private Cloud (Amazon VPC)
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS IoT Device Defender AWS IoT Core AWS IoT SiteWise Temperature MQTT device gateway Humidity Vibration AWS Cloud Process network (OT) Business network (IT) Using port TCP/443 Establish TLS 1.2 connection to AWS Io T endpoint To public FQDN MQTT connection – Proxy Network proxy (tunnel) Inspects TLS and FQDN values
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS IoT Core AWS IoT SiteWise Temperature MQTT device gateway Humidity Vibration AWS Cloud Process network (OT) Business network (IT) Using port TCP/443 Establish TLS 1.2 connection to AWS Io T endpoint MQTT connection – Reverse proxy Network proxy (tunnel) Inspects TLS and FQDN values Amazon VPC Reverse proxyNetwork load balancer
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T MQTT connection to AWS IoT Core summary • Detailed Transport Layer Security (TLS) and protocol specifics • Select method for connecting to endpoints • Direct • Network proxy • Reverse proxy • Ensure keepalive values consistent from device to AWS IoT Core endpoint • Verify operation over time (e.g., test timeouts, endpoint IP address, etc.) • Document and use same method for other devices
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon FreeRTOS device AWS IoT Greengrass Core AWS IoT Core IoT camera AWS Cloud Process network (OT) AWS IoT Greengrass Business network (IT) AWS IoT Greengrass – Connections Amazon Simple Storage Service (Amazon S3) Amazon CloudWatch (logs)
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon FreeRTOS device AWS IoT Greengrass Core AWS IoT Core IoT camera AWS Cloud Process network (OT) AWS IoT Greengrass Business network (IT) AWS IoT Greengrass – Endpoints MQTT 443/8883 XXX-ats.iot… HTTP 443/8443 greengrass-ats.iot… HTTP 443 *.s3… HTTP 443 logs… MQTT 8883 IP address or hostname Northern Virginia example • AWS IoT Core – • AWS IoT Greengrass – • Amazon S3 – • Amazon CloudWatch logs – Other AWS service endpoints Amazon S3 Amazon CloudWatch (logs)
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon FreeRTOS device AWS IoT Greengrass Core AWS IoT Core IoT camera AWS Cloud Process network (OT) AWS IoT Greengrass Business network (IT) AWS IoT Greengrass – Network proxy Network proxy (tunnel) Amazon S3 Amazon CloudWatch (logs)
S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved. Setting AWS IoT Greengrass proxy and ports /greengrass/config/config.json: { "coreThing" : { "caPath" : "root.ca.pem", "certPath" : "hash.cert.pem", "keyPath" : "hash.private.key", "thingArn" : "arn:aws:iot:region:account-id:thing/core-thing-name", "iotHost" : "host-prefix-ats.iot.region.amazonaws.com", "iotMqttPort" : 443, "ggHost" : "greengrass-ats.iot.region.amazonaws.com", "ggHttpPort" : 443, "keepAlive" : 600, "networkProxy": { "noProxyAddresses" : "http://128.12.34.56,www.mywebsite.com", "proxy" : { "url" : "https://my-proxy-server:1100", "username" : "Mary_Major", "password" : "pass@word1357" } } }, ... }
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS IoT Greengrass connections summary • Use config.json as source of truth • Define endpoints, ports, and keepalive values • AWS software development kits honor network proxy settings • AWS IoT Greengrass–aware devices require direct Internet connectivity for discovery* • Verify operation over time (timeouts, endpoints, AWS IoT Greengrass connectors, Lambda functions, etc.)
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T PLC/SCADA/DCSIndustrial system(s) AWS IoT SiteWise on AWS IoT Greengrass Core AWS Cloud Process network (OT) Business network (IT) AWS IoT Core and credentials provider AWS IoT Analytics AWS IoT SiteWise connectivity AWS IoT SiteWise details • Common use of iot, greengrass, s3, and logs endpoints OPC-UA client/server AWS IoT Greengrass AWS IoT SiteWise
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS IoT SiteWise connectivity summary • AWS IoT Greengrass as base platform, those connection notes apply • Uses AWS IoT Analytics as ingest method, little traffic seen on MQTT port • Other AWS service endpoints used • Network proxy servers can help identify new or unknown endpoints being used
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T PLC/SCADA/DCS Amazon FreeRTOS device AWS IoT Device Defender AWS IoT Greengrass Core AWS IoT Core AWS IoT SiteWise Industrial system(s) Temperature IoT camera MQTT device gateway Humidity Vibration AWS IoT SiteWise on AWS IoT Greengrass Core AWS CloudProcess network (OT) Business network (IT) Extend security with AWS IoT Device Defender
S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T General takeaways • Establish a relationship and understanding between IT and OT • Consider safety and security as “job-zero” requirements • Provide “400-level” details on designs for implementation • Engage your AWS account team early on
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Technical takeaways • Understand security models used by AWS IoT Core and AWS IoT Greengrass • TLS 1.2 • X.509 Client Certificate Mutual Authentication • SigV4 • Network configurations • Public endpoints • Architectures to meet security policies • Use services such as AWS IoT Device Defender to address security within the TLS-secured connections
Thank you! S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved. Gavin Adams gavinaws@amazon.com

Recommended

Deep dive on AWS Cloud storage offerings - What to use, where, and why - STG3...
Deep dive on AWS Cloud storage offerings - What to use, where, and why - STG3...Deep dive on AWS Cloud storage offerings - What to use, where, and why - STG3...
Deep dive on AWS Cloud storage offerings - What to use, where, and why - STG3...
Amazon Web Services
 
The Zen of governance - Establish guardrails and empower builders - SVC201 - ...
The Zen of governance - Establish guardrails and empower builders - SVC201 - ...The Zen of governance - Establish guardrails and empower builders - SVC201 - ...
The Zen of governance - Establish guardrails and empower builders - SVC201 - ...
Amazon Web Services
 
Data modeling with Amazon DynamoDB - ADB301 - New York AWS Summit
Data modeling with Amazon DynamoDB - ADB301 - New York AWS SummitData modeling with Amazon DynamoDB - ADB301 - New York AWS Summit
Data modeling with Amazon DynamoDB - ADB301 - New York AWS Summit
Amazon Web Services
 
Building enterprise solutions with blockchain technology - SVC217 - New York ...
Building enterprise solutions with blockchain technology - SVC217 - New York ...Building enterprise solutions with blockchain technology - SVC217 - New York ...
Building enterprise solutions with blockchain technology - SVC217 - New York ...
Amazon Web Services
 
Developing Your Cloud Center of Excellence Using CloudHealth - DEM04-S - Anah...
Developing Your Cloud Center of Excellence Using CloudHealth - DEM04-S - Anah...Developing Your Cloud Center of Excellence Using CloudHealth - DEM04-S - Anah...
Developing Your Cloud Center of Excellence Using CloudHealth - DEM04-S - Anah...
Amazon Web Services
 
Ambient Intelligence: Bringing ML & AI to the Connected Home - SVC302 - Anahe...
Ambient Intelligence: Bringing ML & AI to the Connected Home - SVC302 - Anahe...Ambient Intelligence: Bringing ML & AI to the Connected Home - SVC302 - Anahe...
Ambient Intelligence: Bringing ML & AI to the Connected Home - SVC302 - Anahe...
Amazon Web Services
 
Migration to AWS: The foundation for enterprise transformation - SVC210 - New...
Migration to AWS: The foundation for enterprise transformation - SVC210 - New...Migration to AWS: The foundation for enterprise transformation - SVC210 - New...
Migration to AWS: The foundation for enterprise transformation - SVC210 - New...
Amazon Web Services
 
Build AR/VR apps with AWS - SVC202 - Atlanta AWS Summit
Build AR/VR apps with AWS - SVC202 - Atlanta AWS SummitBuild AR/VR apps with AWS - SVC202 - Atlanta AWS Summit
Build AR/VR apps with AWS - SVC202 - Atlanta AWS Summit
Amazon Web Services
 

Recommended

Deep dive on AWS Cloud storage offerings - What to use, where, and why - STG3...
Deep dive on AWS Cloud storage offerings - What to use, where, and why - STG3...Deep dive on AWS Cloud storage offerings - What to use, where, and why - STG3...
Deep dive on AWS Cloud storage offerings - What to use, where, and why - STG3...
Amazon Web Services
 
The Zen of governance - Establish guardrails and empower builders - SVC201 - ...
The Zen of governance - Establish guardrails and empower builders - SVC201 - ...The Zen of governance - Establish guardrails and empower builders - SVC201 - ...
The Zen of governance - Establish guardrails and empower builders - SVC201 - ...
Amazon Web Services
 
Data modeling with Amazon DynamoDB - ADB301 - New York AWS Summit
Data modeling with Amazon DynamoDB - ADB301 - New York AWS SummitData modeling with Amazon DynamoDB - ADB301 - New York AWS Summit
Data modeling with Amazon DynamoDB - ADB301 - New York AWS Summit
Amazon Web Services
 
Building enterprise solutions with blockchain technology - SVC217 - New York ...
Building enterprise solutions with blockchain technology - SVC217 - New York ...Building enterprise solutions with blockchain technology - SVC217 - New York ...
Building enterprise solutions with blockchain technology - SVC217 - New York ...
Amazon Web Services
 
Developing Your Cloud Center of Excellence Using CloudHealth - DEM04-S - Anah...
Developing Your Cloud Center of Excellence Using CloudHealth - DEM04-S - Anah...Developing Your Cloud Center of Excellence Using CloudHealth - DEM04-S - Anah...
Developing Your Cloud Center of Excellence Using CloudHealth - DEM04-S - Anah...
Amazon Web Services
 
Ambient Intelligence: Bringing ML & AI to the Connected Home - SVC302 - Anahe...
Ambient Intelligence: Bringing ML & AI to the Connected Home - SVC302 - Anahe...Ambient Intelligence: Bringing ML & AI to the Connected Home - SVC302 - Anahe...
Ambient Intelligence: Bringing ML & AI to the Connected Home - SVC302 - Anahe...
Amazon Web Services
 
Migration to AWS: The foundation for enterprise transformation - SVC210 - New...
Migration to AWS: The foundation for enterprise transformation - SVC210 - New...Migration to AWS: The foundation for enterprise transformation - SVC210 - New...
Migration to AWS: The foundation for enterprise transformation - SVC210 - New...
Amazon Web Services
 
Build AR/VR apps with AWS - SVC202 - Atlanta AWS Summit
Build AR/VR apps with AWS - SVC202 - Atlanta AWS SummitBuild AR/VR apps with AWS - SVC202 - Atlanta AWS Summit
Build AR/VR apps with AWS - SVC202 - Atlanta AWS Summit
Amazon Web Services
 
Introduction to the Well-Architected Framework and Tool - SVC212 - Santa Clar...
Introduction to the Well-Architected Framework and Tool - SVC212 - Santa Clar...Introduction to the Well-Architected Framework and Tool - SVC212 - Santa Clar...
Introduction to the Well-Architected Framework and Tool - SVC212 - Santa Clar...
Amazon Web Services
 
Networking and Edge Services on AWS
Networking and Edge Services on AWSNetworking and Edge Services on AWS
Networking and Edge Services on AWS
Amazon Web Services
 
Connecting low-power devices to the cloud with Amazon FreeRTOS BLE - SVC206 -...
Connecting low-power devices to the cloud with Amazon FreeRTOS BLE - SVC206 -...Connecting low-power devices to the cloud with Amazon FreeRTOS BLE - SVC206 -...
Connecting low-power devices to the cloud with Amazon FreeRTOS BLE - SVC206 -...
Amazon Web Services
 
Building AR-VR applications on AWS
Building AR-VR applications on AWSBuilding AR-VR applications on AWS
Building AR-VR applications on AWS
Amazon Web Services
 
Find All the Threats: AWS Threat Detection and Remediation - SEC303 - Anaheim...
Find All the Threats: AWS Threat Detection and Remediation - SEC303 - Anaheim...Find All the Threats: AWS Threat Detection and Remediation - SEC303 - Anaheim...
Find All the Threats: AWS Threat Detection and Remediation - SEC303 - Anaheim...
Amazon Web Services
 
Secure & Easy Mobile Access to Corporate Websites with Amazon WorkLink - SVC3...
Secure & Easy Mobile Access to Corporate Websites with Amazon WorkLink - SVC3...Secure & Easy Mobile Access to Corporate Websites with Amazon WorkLink - SVC3...
Secure & Easy Mobile Access to Corporate Websites with Amazon WorkLink - SVC3...
Amazon Web Services
 
Using AWS IoT & Amazon SageMaker to Improve Manufacturing Operations - SVC204...
Using AWS IoT & Amazon SageMaker to Improve Manufacturing Operations - SVC204...Using AWS IoT & Amazon SageMaker to Improve Manufacturing Operations - SVC204...
Using AWS IoT & Amazon SageMaker to Improve Manufacturing Operations - SVC204...
Amazon Web Services
 
What's New with Amazon S3, Amazon EFS, and Other AWS Storage Services - STG20...
What's New with Amazon S3, Amazon EFS, and Other AWS Storage Services - STG20...What's New with Amazon S3, Amazon EFS, and Other AWS Storage Services - STG20...
What's New with Amazon S3, Amazon EFS, and Other AWS Storage Services - STG20...
Amazon Web Services
 
Add Intelligence to Applications - AIM203 - Anaheim AWS Summit
Add Intelligence to Applications - AIM203 - Anaheim AWS SummitAdd Intelligence to Applications - AIM203 - Anaheim AWS Summit
Add Intelligence to Applications - AIM203 - Anaheim AWS Summit
Amazon Web Services
 
AWS identity services: Enabling and securing your cloud journey - SEC203 - Ne...
AWS identity services: Enabling and securing your cloud journey - SEC203 - Ne...AWS identity services: Enabling and securing your cloud journey - SEC203 - Ne...
AWS identity services: Enabling and securing your cloud journey - SEC203 - Ne...
Amazon Web Services
 
Driving performance & security across your industrial facility with AWS - SVC...
Driving performance & security across your industrial facility with AWS - SVC...Driving performance & security across your industrial facility with AWS - SVC...
Driving performance & security across your industrial facility with AWS - SVC...
Amazon Web Services
 
Build accurate training datasets with Amazon SageMaker Ground Truth - AIM301 ...
Build accurate training datasets with Amazon SageMaker Ground Truth - AIM301 ...Build accurate training datasets with Amazon SageMaker Ground Truth - AIM301 ...
Build accurate training datasets with Amazon SageMaker Ground Truth - AIM301 ...
Amazon Web Services
 
Alexa + IoT - SVC203 - New York AWS Summit
Alexa + IoT - SVC203 - New York AWS SummitAlexa + IoT - SVC203 - New York AWS Summit
Alexa + IoT - SVC203 - New York AWS Summit
Amazon Web Services
 
Build a Next-Gen Meeting Room Experience Using Alexa for Business - SVC203 - ...
Build a Next-Gen Meeting Room Experience Using Alexa for Business - SVC203 - ...Build a Next-Gen Meeting Room Experience Using Alexa for Business - SVC203 - ...
Build a Next-Gen Meeting Room Experience Using Alexa for Business - SVC203 - ...
Amazon Web Services
 
Build intelligent applications quickly with AWS AI services - AIM301 - New Yo...
Build intelligent applications quickly with AWS AI services - AIM301 - New Yo...Build intelligent applications quickly with AWS AI services - AIM301 - New Yo...
Build intelligent applications quickly with AWS AI services - AIM301 - New Yo...
Amazon Web Services
 
Build sophisticated forecasting & recommendation models - AIM204 - Santa Clar...
Build sophisticated forecasting & recommendation models - AIM204 - Santa Clar...Build sophisticated forecasting & recommendation models - AIM204 - Santa Clar...
Build sophisticated forecasting & recommendation models - AIM204 - Santa Clar...
Amazon Web Services
 
AWS IoT services - Extract value for industrial applications - SVC205 - Santa...
AWS IoT services - Extract value for industrial applications - SVC205 - Santa...AWS IoT services - Extract value for industrial applications - SVC205 - Santa...
AWS IoT services - Extract value for industrial applications - SVC205 - Santa...
Amazon Web Services
 
Mythical Mysfits - Monolith to microservices with Docker and Fargate - MAD305...
Mythical Mysfits - Monolith to microservices with Docker and Fargate - MAD305...Mythical Mysfits - Monolith to microservices with Docker and Fargate - MAD305...
Mythical Mysfits - Monolith to microservices with Docker and Fargate - MAD305...
Amazon Web Services
 
What's new in Amazon Aurora - ADB204 - Santa Clara AWS Summit.pdf
What's new in Amazon Aurora - ADB204 - Santa Clara AWS Summit.pdfWhat's new in Amazon Aurora - ADB204 - Santa Clara AWS Summit.pdf
What's new in Amazon Aurora - ADB204 - Santa Clara AWS Summit.pdf
Amazon Web Services
 
Improve operations with AWS Systems Manager OpsCenter - SVC310 - New York AWS...
Improve operations with AWS Systems Manager OpsCenter - SVC310 - New York AWS...Improve operations with AWS Systems Manager OpsCenter - SVC310 - New York AWS...
Improve operations with AWS Systems Manager OpsCenter - SVC310 - New York AWS...
Amazon Web Services
 
Building IoT Applications for a Smart Home, ft. Vestel (IOT306-R1) - AWS re:I...
Building IoT Applications for a Smart Home, ft. Vestel (IOT306-R1) - AWS re:I...Building IoT Applications for a Smart Home, ft. Vestel (IOT306-R1) - AWS re:I...
Building IoT Applications for a Smart Home, ft. Vestel (IOT306-R1) - AWS re:I...
Amazon Web Services
 
Enable Your Smart Factory with the AWS Industrial IoT Reference Solution (MFG...
Enable Your Smart Factory with the AWS Industrial IoT Reference Solution (MFG...Enable Your Smart Factory with the AWS Industrial IoT Reference Solution (MFG...
Enable Your Smart Factory with the AWS Industrial IoT Reference Solution (MFG...
Amazon Web Services
 

More Related Content

What's hot

Introduction to the Well-Architected Framework and Tool - SVC212 - Santa Clar...
Introduction to the Well-Architected Framework and Tool - SVC212 - Santa Clar...Introduction to the Well-Architected Framework and Tool - SVC212 - Santa Clar...
Introduction to the Well-Architected Framework and Tool - SVC212 - Santa Clar...
Amazon Web Services
 
Networking and Edge Services on AWS
Networking and Edge Services on AWSNetworking and Edge Services on AWS
Networking and Edge Services on AWS
Amazon Web Services
 
Connecting low-power devices to the cloud with Amazon FreeRTOS BLE - SVC206 -...
Connecting low-power devices to the cloud with Amazon FreeRTOS BLE - SVC206 -...Connecting low-power devices to the cloud with Amazon FreeRTOS BLE - SVC206 -...
Connecting low-power devices to the cloud with Amazon FreeRTOS BLE - SVC206 -...
Amazon Web Services
 
Building AR-VR applications on AWS
Building AR-VR applications on AWSBuilding AR-VR applications on AWS
Building AR-VR applications on AWS
Amazon Web Services
 
Find All the Threats: AWS Threat Detection and Remediation - SEC303 - Anaheim...
Find All the Threats: AWS Threat Detection and Remediation - SEC303 - Anaheim...Find All the Threats: AWS Threat Detection and Remediation - SEC303 - Anaheim...
Find All the Threats: AWS Threat Detection and Remediation - SEC303 - Anaheim...
Amazon Web Services
 
Secure & Easy Mobile Access to Corporate Websites with Amazon WorkLink - SVC3...
Secure & Easy Mobile Access to Corporate Websites with Amazon WorkLink - SVC3...Secure & Easy Mobile Access to Corporate Websites with Amazon WorkLink - SVC3...
Secure & Easy Mobile Access to Corporate Websites with Amazon WorkLink - SVC3...
Amazon Web Services
 
Using AWS IoT & Amazon SageMaker to Improve Manufacturing Operations - SVC204...
Using AWS IoT & Amazon SageMaker to Improve Manufacturing Operations - SVC204...Using AWS IoT & Amazon SageMaker to Improve Manufacturing Operations - SVC204...
Using AWS IoT & Amazon SageMaker to Improve Manufacturing Operations - SVC204...
Amazon Web Services
 
What's New with Amazon S3, Amazon EFS, and Other AWS Storage Services - STG20...
What's New with Amazon S3, Amazon EFS, and Other AWS Storage Services - STG20...What's New with Amazon S3, Amazon EFS, and Other AWS Storage Services - STG20...
What's New with Amazon S3, Amazon EFS, and Other AWS Storage Services - STG20...
Amazon Web Services
 
Add Intelligence to Applications - AIM203 - Anaheim AWS Summit
Add Intelligence to Applications - AIM203 - Anaheim AWS SummitAdd Intelligence to Applications - AIM203 - Anaheim AWS Summit
Add Intelligence to Applications - AIM203 - Anaheim AWS Summit
Amazon Web Services
 
AWS identity services: Enabling and securing your cloud journey - SEC203 - Ne...
AWS identity services: Enabling and securing your cloud journey - SEC203 - Ne...AWS identity services: Enabling and securing your cloud journey - SEC203 - Ne...
AWS identity services: Enabling and securing your cloud journey - SEC203 - Ne...
Amazon Web Services
 
Driving performance & security across your industrial facility with AWS - SVC...
Driving performance & security across your industrial facility with AWS - SVC...Driving performance & security across your industrial facility with AWS - SVC...
Driving performance & security across your industrial facility with AWS - SVC...
Amazon Web Services
 
Build accurate training datasets with Amazon SageMaker Ground Truth - AIM301 ...
Build accurate training datasets with Amazon SageMaker Ground Truth - AIM301 ...Build accurate training datasets with Amazon SageMaker Ground Truth - AIM301 ...
Build accurate training datasets with Amazon SageMaker Ground Truth - AIM301 ...
Amazon Web Services
 
Alexa + IoT - SVC203 - New York AWS Summit
Alexa + IoT - SVC203 - New York AWS SummitAlexa + IoT - SVC203 - New York AWS Summit
Alexa + IoT - SVC203 - New York AWS Summit
Amazon Web Services
 
Build a Next-Gen Meeting Room Experience Using Alexa for Business - SVC203 - ...
Build a Next-Gen Meeting Room Experience Using Alexa for Business - SVC203 - ...Build a Next-Gen Meeting Room Experience Using Alexa for Business - SVC203 - ...
Build a Next-Gen Meeting Room Experience Using Alexa for Business - SVC203 - ...
Amazon Web Services
 
Build intelligent applications quickly with AWS AI services - AIM301 - New Yo...
Build intelligent applications quickly with AWS AI services - AIM301 - New Yo...Build intelligent applications quickly with AWS AI services - AIM301 - New Yo...
Build intelligent applications quickly with AWS AI services - AIM301 - New Yo...
Amazon Web Services
 
Build sophisticated forecasting & recommendation models - AIM204 - Santa Clar...
Build sophisticated forecasting & recommendation models - AIM204 - Santa Clar...Build sophisticated forecasting & recommendation models - AIM204 - Santa Clar...
Build sophisticated forecasting & recommendation models - AIM204 - Santa Clar...
Amazon Web Services
 
AWS IoT services - Extract value for industrial applications - SVC205 - Santa...
AWS IoT services - Extract value for industrial applications - SVC205 - Santa...AWS IoT services - Extract value for industrial applications - SVC205 - Santa...
AWS IoT services - Extract value for industrial applications - SVC205 - Santa...
Amazon Web Services
 
Mythical Mysfits - Monolith to microservices with Docker and Fargate - MAD305...
Mythical Mysfits - Monolith to microservices with Docker and Fargate - MAD305...Mythical Mysfits - Monolith to microservices with Docker and Fargate - MAD305...
Mythical Mysfits - Monolith to microservices with Docker and Fargate - MAD305...
Amazon Web Services
 
What's new in Amazon Aurora - ADB204 - Santa Clara AWS Summit.pdf
What's new in Amazon Aurora - ADB204 - Santa Clara AWS Summit.pdfWhat's new in Amazon Aurora - ADB204 - Santa Clara AWS Summit.pdf
What's new in Amazon Aurora - ADB204 - Santa Clara AWS Summit.pdf
Amazon Web Services
 
Improve operations with AWS Systems Manager OpsCenter - SVC310 - New York AWS...
Improve operations with AWS Systems Manager OpsCenter - SVC310 - New York AWS...Improve operations with AWS Systems Manager OpsCenter - SVC310 - New York AWS...
Improve operations with AWS Systems Manager OpsCenter - SVC310 - New York AWS...
Amazon Web Services
 

What's hot (20)

Introduction to the Well-Architected Framework and Tool - SVC212 - Santa Clar...
Introduction to the Well-Architected Framework and Tool - SVC212 - Santa Clar...Introduction to the Well-Architected Framework and Tool - SVC212 - Santa Clar...
Introduction to the Well-Architected Framework and Tool - SVC212 - Santa Clar...
 
Networking and Edge Services on AWS
Networking and Edge Services on AWSNetworking and Edge Services on AWS
Networking and Edge Services on AWS
 
Connecting low-power devices to the cloud with Amazon FreeRTOS BLE - SVC206 -...
Connecting low-power devices to the cloud with Amazon FreeRTOS BLE - SVC206 -...Connecting low-power devices to the cloud with Amazon FreeRTOS BLE - SVC206 -...
Connecting low-power devices to the cloud with Amazon FreeRTOS BLE - SVC206 -...
 
Building AR-VR applications on AWS
Building AR-VR applications on AWSBuilding AR-VR applications on AWS
Building AR-VR applications on AWS
 
Find All the Threats: AWS Threat Detection and Remediation - SEC303 - Anaheim...
Find All the Threats: AWS Threat Detection and Remediation - SEC303 - Anaheim...Find All the Threats: AWS Threat Detection and Remediation - SEC303 - Anaheim...
Find All the Threats: AWS Threat Detection and Remediation - SEC303 - Anaheim...
 
Secure & Easy Mobile Access to Corporate Websites with Amazon WorkLink - SVC3...
Secure & Easy Mobile Access to Corporate Websites with Amazon WorkLink - SVC3...Secure & Easy Mobile Access to Corporate Websites with Amazon WorkLink - SVC3...
Secure & Easy Mobile Access to Corporate Websites with Amazon WorkLink - SVC3...
 
Using AWS IoT & Amazon SageMaker to Improve Manufacturing Operations - SVC204...
Using AWS IoT & Amazon SageMaker to Improve Manufacturing Operations - SVC204...Using AWS IoT & Amazon SageMaker to Improve Manufacturing Operations - SVC204...
Using AWS IoT & Amazon SageMaker to Improve Manufacturing Operations - SVC204...
 
What's New with Amazon S3, Amazon EFS, and Other AWS Storage Services - STG20...
What's New with Amazon S3, Amazon EFS, and Other AWS Storage Services - STG20...What's New with Amazon S3, Amazon EFS, and Other AWS Storage Services - STG20...
What's New with Amazon S3, Amazon EFS, and Other AWS Storage Services - STG20...
 
Add Intelligence to Applications - AIM203 - Anaheim AWS Summit
Add Intelligence to Applications - AIM203 - Anaheim AWS SummitAdd Intelligence to Applications - AIM203 - Anaheim AWS Summit
Add Intelligence to Applications - AIM203 - Anaheim AWS Summit
 
AWS identity services: Enabling and securing your cloud journey - SEC203 - Ne...
AWS identity services: Enabling and securing your cloud journey - SEC203 - Ne...AWS identity services: Enabling and securing your cloud journey - SEC203 - Ne...
AWS identity services: Enabling and securing your cloud journey - SEC203 - Ne...
 
Driving performance & security across your industrial facility with AWS - SVC...
Driving performance & security across your industrial facility with AWS - SVC...Driving performance & security across your industrial facility with AWS - SVC...
Driving performance & security across your industrial facility with AWS - SVC...
 
Build accurate training datasets with Amazon SageMaker Ground Truth - AIM301 ...
Build accurate training datasets with Amazon SageMaker Ground Truth - AIM301 ...Build accurate training datasets with Amazon SageMaker Ground Truth - AIM301 ...
Build accurate training datasets with Amazon SageMaker Ground Truth - AIM301 ...
 
Alexa + IoT - SVC203 - New York AWS Summit
Alexa + IoT - SVC203 - New York AWS SummitAlexa + IoT - SVC203 - New York AWS Summit
Alexa + IoT - SVC203 - New York AWS Summit
 
Build a Next-Gen Meeting Room Experience Using Alexa for Business - SVC203 - ...
Build a Next-Gen Meeting Room Experience Using Alexa for Business - SVC203 - ...Build a Next-Gen Meeting Room Experience Using Alexa for Business - SVC203 - ...
Build a Next-Gen Meeting Room Experience Using Alexa for Business - SVC203 - ...
 
Build intelligent applications quickly with AWS AI services - AIM301 - New Yo...
Build intelligent applications quickly with AWS AI services - AIM301 - New Yo...Build intelligent applications quickly with AWS AI services - AIM301 - New Yo...
Build intelligent applications quickly with AWS AI services - AIM301 - New Yo...
 
Build sophisticated forecasting & recommendation models - AIM204 - Santa Clar...
Build sophisticated forecasting & recommendation models - AIM204 - Santa Clar...Build sophisticated forecasting & recommendation models - AIM204 - Santa Clar...
Build sophisticated forecasting & recommendation models - AIM204 - Santa Clar...
 
AWS IoT services - Extract value for industrial applications - SVC205 - Santa...
AWS IoT services - Extract value for industrial applications - SVC205 - Santa...AWS IoT services - Extract value for industrial applications - SVC205 - Santa...
AWS IoT services - Extract value for industrial applications - SVC205 - Santa...
 
Mythical Mysfits - Monolith to microservices with Docker and Fargate - MAD305...
Mythical Mysfits - Monolith to microservices with Docker and Fargate - MAD305...Mythical Mysfits - Monolith to microservices with Docker and Fargate - MAD305...
Mythical Mysfits - Monolith to microservices with Docker and Fargate - MAD305...
 
What's new in Amazon Aurora - ADB204 - Santa Clara AWS Summit.pdf
What's new in Amazon Aurora - ADB204 - Santa Clara AWS Summit.pdfWhat's new in Amazon Aurora - ADB204 - Santa Clara AWS Summit.pdf
What's new in Amazon Aurora - ADB204 - Santa Clara AWS Summit.pdf
 
Improve operations with AWS Systems Manager OpsCenter - SVC310 - New York AWS...
Improve operations with AWS Systems Manager OpsCenter - SVC310 - New York AWS...Improve operations with AWS Systems Manager OpsCenter - SVC310 - New York AWS...
Improve operations with AWS Systems Manager OpsCenter - SVC310 - New York AWS...
 

Similar to Deploying AWS IoT-managed devices in an industrial setting - SVC302 - Atlanta AWS Summit

Building IoT Applications for a Smart Home, ft. Vestel (IOT306-R1) - AWS re:I...
Building IoT Applications for a Smart Home, ft. Vestel (IOT306-R1) - AWS re:I...Building IoT Applications for a Smart Home, ft. Vestel (IOT306-R1) - AWS re:I...
Building IoT Applications for a Smart Home, ft. Vestel (IOT306-R1) - AWS re:I...
Amazon Web Services
 
Enable Your Smart Factory with the AWS Industrial IoT Reference Solution (MFG...
Enable Your Smart Factory with the AWS Industrial IoT Reference Solution (MFG...Enable Your Smart Factory with the AWS Industrial IoT Reference Solution (MFG...
Enable Your Smart Factory with the AWS Industrial IoT Reference Solution (MFG...
Amazon Web Services
 
Introduction to AWS IoT Greengrass - SVC305 - Chicago AWS Summit
Introduction to AWS IoT Greengrass - SVC305 - Chicago AWS SummitIntroduction to AWS IoT Greengrass - SVC305 - Chicago AWS Summit
Introduction to AWS IoT Greengrass - SVC305 - Chicago AWS Summit
Amazon Web Services
 
Securing the edge with AWS IoT services - FND330 - AWS re:Inforce 2019
Securing the edge with AWS IoT services - FND330 - AWS re:Inforce 2019 Securing the edge with AWS IoT services - FND330 - AWS re:Inforce 2019
Securing the edge with AWS IoT services - FND330 - AWS re:Inforce 2019
Amazon Web Services
 
Getting started with AWS IoT Core - SVC306 - New York AWS Summit
Getting started with AWS IoT Core - SVC306 - New York AWS SummitGetting started with AWS IoT Core - SVC306 - New York AWS Summit
Getting started with AWS IoT Core - SVC306 - New York AWS Summit
Amazon Web Services
 
AWS IoT Greengrass Workshop - SVC303 - Anaheim AWS Summit
AWS IoT Greengrass Workshop - SVC303 - Anaheim AWS SummitAWS IoT Greengrass Workshop - SVC303 - Anaheim AWS Summit
AWS IoT Greengrass Workshop - SVC303 - Anaheim AWS Summit
Amazon Web Services
 
Introducing the New Features of AWS Greengrass (IOT365) - AWS re:Invent 2018
Introducing the New Features of AWS Greengrass (IOT365) - AWS re:Invent 2018Introducing the New Features of AWS Greengrass (IOT365) - AWS re:Invent 2018
Introducing the New Features of AWS Greengrass (IOT365) - AWS re:Invent 2018
Amazon Web Services
 
IoT and Alexa in the connected home
IoT and Alexa in the connected homeIoT and Alexa in the connected home
IoT and Alexa in the connected home
Amazon Web Services
 
AWS IoT and Alexa in the connected home
AWS IoT and Alexa in the connected homeAWS IoT and Alexa in the connected home
AWS IoT and Alexa in the connected home
Duncan Purves
 
Connecting buildings to new opportunities with AWS IoT - SVC204 - New York AW...
Connecting buildings to new opportunities with AWS IoT - SVC204 - New York AW...Connecting buildings to new opportunities with AWS IoT - SVC204 - New York AW...
Connecting buildings to new opportunities with AWS IoT - SVC204 - New York AW...
Amazon Web Services
 
Connecting your devices at scale, ft. Discovery - SVC205 - New York AWS Summit
Connecting your devices at scale, ft. Discovery - SVC205 - New York AWS SummitConnecting your devices at scale, ft. Discovery - SVC205 - New York AWS Summit
Connecting your devices at scale, ft. Discovery - SVC205 - New York AWS Summit
Amazon Web Services
 
Getting Started with IoT on AWS
Getting Started with IoT on AWSGetting Started with IoT on AWS
Getting Started with IoT on AWS
Amazon Web Services
 
Black Belt Tips for Cloud Network Operations - AWS Summit Sydney
Black Belt Tips for Cloud Network Operations - AWS Summit SydneyBlack Belt Tips for Cloud Network Operations - AWS Summit Sydney
Black Belt Tips for Cloud Network Operations - AWS Summit Sydney
Amazon Web Services
 
From Cloud to Edge & back again
From Cloud to Edge & back againFrom Cloud to Edge & back again
From Cloud to Edge & back again
Boaz Ziniman
 
Code in the Cloud- Deploy on Microcontroller and Edge Devices
Code in the Cloud- Deploy on Microcontroller and Edge DevicesCode in the Cloud- Deploy on Microcontroller and Edge Devices
Code in the Cloud- Deploy on Microcontroller and Edge Devices
Amazon Web Services
 
IoT at scale - Monitor and manage devices with AWS IoT Device Management - SV...
IoT at scale - Monitor and manage devices with AWS IoT Device Management - SV...IoT at scale - Monitor and manage devices with AWS IoT Device Management - SV...
IoT at scale - Monitor and manage devices with AWS IoT Device Management - SV...
Amazon Web Services
 
IoT Made Easy | AWS IoT
IoT Made Easy | AWS IoTIoT Made Easy | AWS IoT
IoT Made Easy | AWS IoT
Amazon Web Services
 
Computing at the Edge with AWS Greengrass and Amazon FreeRTOS, ft. General El...
Computing at the Edge with AWS Greengrass and Amazon FreeRTOS, ft. General El...Computing at the Edge with AWS Greengrass and Amazon FreeRTOS, ft. General El...
Computing at the Edge with AWS Greengrass and Amazon FreeRTOS, ft. General El...
Amazon Web Services
 
AWS IoT_Connected Home Solutions
AWS IoT_Connected Home Solutions AWS IoT_Connected Home Solutions
AWS IoT_Connected Home Solutions
Amazon Web Services
 
AWS and industrial IoT
AWS and industrial IoTAWS and industrial IoT
AWS and industrial IoT
Amazon Web Services
 

Similar to Deploying AWS IoT-managed devices in an industrial setting - SVC302 - Atlanta AWS Summit (20)

Building IoT Applications for a Smart Home, ft. Vestel (IOT306-R1) - AWS re:I...
Building IoT Applications for a Smart Home, ft. Vestel (IOT306-R1) - AWS re:I...Building IoT Applications for a Smart Home, ft. Vestel (IOT306-R1) - AWS re:I...
Building IoT Applications for a Smart Home, ft. Vestel (IOT306-R1) - AWS re:I...
 
Enable Your Smart Factory with the AWS Industrial IoT Reference Solution (MFG...
Enable Your Smart Factory with the AWS Industrial IoT Reference Solution (MFG...Enable Your Smart Factory with the AWS Industrial IoT Reference Solution (MFG...
Enable Your Smart Factory with the AWS Industrial IoT Reference Solution (MFG...
 
Introduction to AWS IoT Greengrass - SVC305 - Chicago AWS Summit
Introduction to AWS IoT Greengrass - SVC305 - Chicago AWS SummitIntroduction to AWS IoT Greengrass - SVC305 - Chicago AWS Summit
Introduction to AWS IoT Greengrass - SVC305 - Chicago AWS Summit
 
Securing the edge with AWS IoT services - FND330 - AWS re:Inforce 2019
Securing the edge with AWS IoT services - FND330 - AWS re:Inforce 2019 Securing the edge with AWS IoT services - FND330 - AWS re:Inforce 2019
Securing the edge with AWS IoT services - FND330 - AWS re:Inforce 2019
 
Getting started with AWS IoT Core - SVC306 - New York AWS Summit
Getting started with AWS IoT Core - SVC306 - New York AWS SummitGetting started with AWS IoT Core - SVC306 - New York AWS Summit
Getting started with AWS IoT Core - SVC306 - New York AWS Summit
 
AWS IoT Greengrass Workshop - SVC303 - Anaheim AWS Summit
AWS IoT Greengrass Workshop - SVC303 - Anaheim AWS SummitAWS IoT Greengrass Workshop - SVC303 - Anaheim AWS Summit
AWS IoT Greengrass Workshop - SVC303 - Anaheim AWS Summit
 
Introducing the New Features of AWS Greengrass (IOT365) - AWS re:Invent 2018
Introducing the New Features of AWS Greengrass (IOT365) - AWS re:Invent 2018Introducing the New Features of AWS Greengrass (IOT365) - AWS re:Invent 2018
Introducing the New Features of AWS Greengrass (IOT365) - AWS re:Invent 2018
 
IoT and Alexa in the connected home
IoT and Alexa in the connected homeIoT and Alexa in the connected home
IoT and Alexa in the connected home
 
AWS IoT and Alexa in the connected home
AWS IoT and Alexa in the connected homeAWS IoT and Alexa in the connected home
AWS IoT and Alexa in the connected home
 
Connecting buildings to new opportunities with AWS IoT - SVC204 - New York AW...
Connecting buildings to new opportunities with AWS IoT - SVC204 - New York AW...Connecting buildings to new opportunities with AWS IoT - SVC204 - New York AW...
Connecting buildings to new opportunities with AWS IoT - SVC204 - New York AW...
 
Connecting your devices at scale, ft. Discovery - SVC205 - New York AWS Summit
Connecting your devices at scale, ft. Discovery - SVC205 - New York AWS SummitConnecting your devices at scale, ft. Discovery - SVC205 - New York AWS Summit
Connecting your devices at scale, ft. Discovery - SVC205 - New York AWS Summit
 
Getting Started with IoT on AWS
Getting Started with IoT on AWSGetting Started with IoT on AWS
Getting Started with IoT on AWS
 
Black Belt Tips for Cloud Network Operations - AWS Summit Sydney
Black Belt Tips for Cloud Network Operations - AWS Summit SydneyBlack Belt Tips for Cloud Network Operations - AWS Summit Sydney
Black Belt Tips for Cloud Network Operations - AWS Summit Sydney
 
From Cloud to Edge & back again
From Cloud to Edge & back againFrom Cloud to Edge & back again
From Cloud to Edge & back again
 
Code in the Cloud- Deploy on Microcontroller and Edge Devices
Code in the Cloud- Deploy on Microcontroller and Edge DevicesCode in the Cloud- Deploy on Microcontroller and Edge Devices
Code in the Cloud- Deploy on Microcontroller and Edge Devices
 
IoT at scale - Monitor and manage devices with AWS IoT Device Management - SV...
IoT at scale - Monitor and manage devices with AWS IoT Device Management - SV...IoT at scale - Monitor and manage devices with AWS IoT Device Management - SV...
IoT at scale - Monitor and manage devices with AWS IoT Device Management - SV...
 
IoT Made Easy | AWS IoT
IoT Made Easy | AWS IoTIoT Made Easy | AWS IoT
IoT Made Easy | AWS IoT
 
Computing at the Edge with AWS Greengrass and Amazon FreeRTOS, ft. General El...
Computing at the Edge with AWS Greengrass and Amazon FreeRTOS, ft. General El...Computing at the Edge with AWS Greengrass and Amazon FreeRTOS, ft. General El...
Computing at the Edge with AWS Greengrass and Amazon FreeRTOS, ft. General El...
 
AWS IoT_Connected Home Solutions
AWS IoT_Connected Home Solutions AWS IoT_Connected Home Solutions
AWS IoT_Connected Home Solutions
 
AWS and industrial IoT
AWS and industrial IoTAWS and industrial IoT
AWS and industrial IoT
 

More from Amazon Web Services

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Amazon Web Services
 
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Amazon Web Services
 
Esegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateEsegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS Fargate
Amazon Web Services
 
Costruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSCostruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWS
Amazon Web Services
 
Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot
Amazon Web Services
 
Open banking as a service
Open banking as a serviceOpen banking as a service
Open banking as a service
Amazon Web Services
 
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Amazon Web Services
 
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
Amazon Web Services
 
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsMicrosoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Amazon Web Services
 
Computer Vision con AWS
Computer Vision con AWSComputer Vision con AWS
Computer Vision con AWS
Amazon Web Services
 
Database Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareDatabase Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatare
Amazon Web Services
 
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSCrea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Amazon Web Services
 
API moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAPI moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e web
Amazon Web Services
 
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareDatabase Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Amazon Web Services
 
Tools for building your MVP on AWS
Tools for building your MVP on AWSTools for building your MVP on AWS
Tools for building your MVP on AWS
Amazon Web Services
 
How to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckHow to Build a Winning Pitch Deck
How to Build a Winning Pitch Deck
Amazon Web Services
 
Building a web application without servers
Building a web application without serversBuilding a web application without servers
Building a web application without servers
Amazon Web Services
 
Fundraising Essentials
Fundraising EssentialsFundraising Essentials
Fundraising Essentials
Amazon Web Services
 
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
Amazon Web Services
 
Introduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceIntroduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container Service
Amazon Web Services
 

More from Amazon Web Services (20)

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
 
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
 
Esegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateEsegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS Fargate
 
Costruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSCostruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWS
 
Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot
 
Open banking as a service
Open banking as a serviceOpen banking as a service
Open banking as a service
 
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
 
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
 
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsMicrosoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
 
Computer Vision con AWS
Computer Vision con AWSComputer Vision con AWS
Computer Vision con AWS
 
Database Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareDatabase Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatare
 
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSCrea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
 
API moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAPI moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e web
 
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareDatabase Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
 
Tools for building your MVP on AWS
Tools for building your MVP on AWSTools for building your MVP on AWS
Tools for building your MVP on AWS
 
How to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckHow to Build a Winning Pitch Deck
How to Build a Winning Pitch Deck
 
Building a web application without servers
Building a web application without serversBuilding a web application without servers
Building a web application without servers
 
Fundraising Essentials
Fundraising EssentialsFundraising Essentials
Fundraising Essentials
 
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
 
Introduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceIntroduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container Service
 

Deploying AWS IoT-managed devices in an industrial setting - SVC302 - Atlanta AWS Summit

  • 1. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Deploying AWS IoT–managed devices in an industrial setting Gavin Adams Sr. IoT specialist solutions architect Amazon Web Services S V C 3 0 2
  • 2. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Agenda Operational technology (OT), IT, and cloud technology Benefits of AWS Internet of Things (IoT) Key blockers for deploying IoT devices Deployment architectures
  • 3. S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
  • 4. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Operations, enterprise, cloud Operations (OT) Enterprise (IT) IT systems Customer relationship management Asset management Enterprise resource planning (ERP) Supply chain Finance Maintenance Compliance Supervisory Control and Data Acquisition (SCADA), data control system (DCS), etc. Various protocols Cloud Amazon Kinesis Amazon QuickSight AWS IoT Core Amazon SageMaker
  • 5. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T ISA-95 in the context of the AWS Cloud Level 1 Line/machine control Animation direct control Level 3 Level 4 Description Manufacturing operations management Business planning and logistics MES/ historian ERP/PLP/ SCM App/systemFunction Line/cell execution Business operations DCS/PLC/ RTU Level 0 Physical values Raw data- event signals I/O sensor AWS architecture Enterprise apps in the cloud AWS IoT SiteWise Level 2 Line/machine supervision SCADA/ HMI Supervisory control AWS IoT Greengrass AWS IoT– aware device AWS IoT– aware device
  • 6. S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
  • 7. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Commonly heard use cases for IIoT • Predictive maintenance • Digital or connected factory • Improved facilities management • Plant and human-health safety • Gain new insights into existing process systems • Improve, increase, decrease, make more efficient … “stuff”
  • 8. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Predictive maintenance PLC/SCADA/DCS Vibration Acoustic Amazon SageMaker AWS IoT Core Tag values Extended values Maintenance predictions Objectives How
  • 9. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Workplace safety Objectives How
  • 10. S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
  • 11. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Blockers to implementation • Security/safety • Type-1 hazards • Intrinsic safety, explosion-proof • Proprietary information • Networking/security • Encryption in transit and at rest • Process network to business network to cloud • Ports, protocols, persistence • Detective security • Resilience/reliability • Singular devices • Online and offline connectivity
  • 12. S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved. “It’s leaving here just fine. The problem must be on your end.” Anonymous telecommunications engineer circa 1995
  • 13. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Finding IT and OT common ground • Mission and objectives • Address concerns • IT • Greater scope of impact • Physical risks and safety • Legacy plant systems (Windows NT 4.0) • OT • Physical risks and safety • Data leaks • IT and OT working together
  • 14. S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
  • 15. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T PLC/SCADA/DCS Amazon FreeRTOS Device AWS IoT Device Defender AWS IoT Greengrass Core AWS IoT Core AWS IoT SiteWise Industrial system(s) Temperature IoT camera MQTT device gateway Humidity Vibration AWS IoT SiteWise on AWS IoT Greengrass Core AWS CloudProcess network (OT) Business network (IT)
  • 16. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS IoT Device Defender AWS IoT Core AWS IoT SiteWise Temperature MQTT device gateway Humidity Vibration AWS Cloud Process network (OT) Business network (IT) Using port TCP/8883 Establish TLS 1.2 connection To public FQDN MQTT connection to AWS IoT Core IT questions 1. Where is this device connecting to? 2. How does it create a connection? 3. What protocol/port is used?
  • 17. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS IoT Device Defender AWS IoT Core AWS IoT SiteWise Temperature MQTT device gateway Humidity Vibration AWS Cloud Process network (OT) Business network (IT) Using port TCP/8883 Establish TLS 1.2 connection To public FQDN MQTT connection to AWS IoT Core
  • 18. S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved. “Can’t get there from here” R.E.M. Fables of the Reconstruction, 1985
  • 19. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Here There Just poke a hole for…
  • 20. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T The details: TCP protocols and ports At launch Current AWS IoT Core MQTT – 8883 MQTT over WebSocket – 443 HTTP – 8443 or 443 MQTT* – 8883 or 443 MQTT over WebSocket – 443 HTTP* - 8443 or 443 AWS IoT Greengrass MQTT – 8883 HTTP – 8443 AWS services - 443 MQTT – 8883 or 443 HTTP – 8443 or 443 AWS services - 443 X.509 client certificate SigV4 * TLS ALPN ProtocolName
  • 21. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS IoT Core MQTT device AWS Cloud The details: Public endpoint XXXX-ats.iot.REGION.amazonaws.com Server certificate: *.iot.REGION.amazonaws.com issued by Amazon Trust Services CA1 / CA3 Root CA store Resolves to: 1.1.1.1 2.2.2.2 3.3.3.3 or 2.2.2.2 4.4.4.4 9.9.9.9 IP ranges: https://docs.aws.amazon.com /general/latest/gr/aws-ip- ranges.html Methods to implement • Whitelist all public AWS IP addresses for region • AWS Direct Connect public VIF • Intelligent firewall to cache FQDN resolution • Network proxy server • Reverse proxy into Amazon Virtual Private Cloud (Amazon VPC)
  • 22. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS IoT Device Defender AWS IoT Core AWS IoT SiteWise Temperature MQTT device gateway Humidity Vibration AWS Cloud Process network (OT) Business network (IT) Using port TCP/443 Establish TLS 1.2 connection to AWS Io T endpoint To public FQDN MQTT connection – Proxy Network proxy (tunnel) Inspects TLS and FQDN values
  • 23. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS IoT Core AWS IoT SiteWise Temperature MQTT device gateway Humidity Vibration AWS Cloud Process network (OT) Business network (IT) Using port TCP/443 Establish TLS 1.2 connection to AWS Io T endpoint MQTT connection – Reverse proxy Network proxy (tunnel) Inspects TLS and FQDN values Amazon VPC Reverse proxyNetwork load balancer
  • 24. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T MQTT connection to AWS IoT Core summary • Detailed Transport Layer Security (TLS) and protocol specifics • Select method for connecting to endpoints • Direct • Network proxy • Reverse proxy • Ensure keepalive values consistent from device to AWS IoT Core endpoint • Verify operation over time (e.g., test timeouts, endpoint IP address, etc.) • Document and use same method for other devices
  • 25. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon FreeRTOS device AWS IoT Greengrass Core AWS IoT Core IoT camera AWS Cloud Process network (OT) AWS IoT Greengrass Business network (IT) AWS IoT Greengrass – Connections Amazon Simple Storage Service (Amazon S3) Amazon CloudWatch (logs)
  • 26. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon FreeRTOS device AWS IoT Greengrass Core AWS IoT Core IoT camera AWS Cloud Process network (OT) AWS IoT Greengrass Business network (IT) AWS IoT Greengrass – Endpoints MQTT 443/8883 XXX-ats.iot… HTTP 443/8443 greengrass-ats.iot… HTTP 443 *.s3… HTTP 443 logs… MQTT 8883 IP address or hostname Northern Virginia example • AWS IoT Core – • AWS IoT Greengrass – • Amazon S3 – • Amazon CloudWatch logs – Other AWS service endpoints Amazon S3 Amazon CloudWatch (logs)
  • 27. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon FreeRTOS device AWS IoT Greengrass Core AWS IoT Core IoT camera AWS Cloud Process network (OT) AWS IoT Greengrass Business network (IT) AWS IoT Greengrass – Network proxy Network proxy (tunnel) Amazon S3 Amazon CloudWatch (logs)
  • 28. S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved. Setting AWS IoT Greengrass proxy and ports /greengrass/config/config.json: { "coreThing" : { "caPath" : "root.ca.pem", "certPath" : "hash.cert.pem", "keyPath" : "hash.private.key", "thingArn" : "arn:aws:iot:region:account-id:thing/core-thing-name", "iotHost" : "host-prefix-ats.iot.region.amazonaws.com", "iotMqttPort" : 443, "ggHost" : "greengrass-ats.iot.region.amazonaws.com", "ggHttpPort" : 443, "keepAlive" : 600, "networkProxy": { "noProxyAddresses" : "http://128.12.34.56,www.mywebsite.com", "proxy" : { "url" : "https://my-proxy-server:1100", "username" : "Mary_Major", "password" : "pass@word1357" } } }, ... }
  • 29. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS IoT Greengrass connections summary • Use config.json as source of truth • Define endpoints, ports, and keepalive values • AWS software development kits honor network proxy settings • AWS IoT Greengrass–aware devices require direct Internet connectivity for discovery* • Verify operation over time (timeouts, endpoints, AWS IoT Greengrass connectors, Lambda functions, etc.)
  • 30. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T PLC/SCADA/DCSIndustrial system(s) AWS IoT SiteWise on AWS IoT Greengrass Core AWS Cloud Process network (OT) Business network (IT) AWS IoT Core and credentials provider AWS IoT Analytics AWS IoT SiteWise connectivity AWS IoT SiteWise details • Common use of iot, greengrass, s3, and logs endpoints OPC-UA client/server AWS IoT Greengrass AWS IoT SiteWise
  • 31. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS IoT SiteWise connectivity summary • AWS IoT Greengrass as base platform, those connection notes apply • Uses AWS IoT Analytics as ingest method, little traffic seen on MQTT port • Other AWS service endpoints used • Network proxy servers can help identify new or unknown endpoints being used
  • 32. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T PLC/SCADA/DCS Amazon FreeRTOS device AWS IoT Device Defender AWS IoT Greengrass Core AWS IoT Core AWS IoT SiteWise Industrial system(s) Temperature IoT camera MQTT device gateway Humidity Vibration AWS IoT SiteWise on AWS IoT Greengrass Core AWS CloudProcess network (OT) Business network (IT) Extend security with AWS IoT Device Defender
  • 33. S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
  • 34. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T General takeaways • Establish a relationship and understanding between IT and OT • Consider safety and security as “job-zero” requirements • Provide “400-level” details on designs for implementation • Engage your AWS account team early on
  • 35. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Technical takeaways • Understand security models used by AWS IoT Core and AWS IoT Greengrass • TLS 1.2 • X.509 Client Certificate Mutual Authentication • SigV4 • Network configurations • Public endpoints • Architectures to meet security policies • Use services such as AWS IoT Device Defender to address security within the TLS-secured connections
  • 36. Thank you! S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved. Gavin Adams gavinaws@amazon.com