Soracom IoT SIM Card - Connectivity designed for IoT
It's simple, secure, affordable and scalable
Our features:
GLOBAL SCALABILITY: Our secure IoT SIM Card can connect to 2G/3G/LTE/Cat1 data in over 120 countries. LoraWan and Sigfox are available as well.
DEVICE CLOUD ACCESS: Perform encryption over the cloud, reduce device power consumption, and lower data transfer amount to lower your costs. Less power and data on your IoT/M2M devices.
FULL CONTROL VIA CONSOLE/API: Even a single active IoT SIM Card can get you immediate access to our full suite of IoT cellular connectivity services with a full-featured user console and API and data pool for complete control of every connection. Monitor and manage the state of every connection, view active/inactive status, check data usage, adjust speed or even pause/restart or terminate any connection at any time.
IDEAL FOR: Fast prototyping and full-scale deployment. Optimized for IoT/M2M data. Voice & SMS not supported.
PAY AS YOU GO: Only pay for the data and services you use. No minimum commitments.
Let Soracom help your IoT devices connect to the cloud!
You can get a free Soracom IoT SIM Card to test your IoT/M2M devices: https://www.soracom.io/free-sim/
AXIS F Series offers flexible, high-performance cameras that support HDTV 1080p and Wide Dynamic Range -- Forensic Capture for superb image detail in extremely discreet indoor, outdoor and mobile surveillance applications. They are ideal for ATMs (automated teller machines), banks, stores, hotels, as well as rugged environments such as emergency vehicles. AXIS F Series comprises AXIS F41 Main Unit and AXIS F Sensor Units with fixed, varifocal, pinhole or fisheye lens.
VoIP Business Telephony Solutions Supporting 30-1500 UsersXorcom
Seven product lines in the Xorcom IP-PBX family support from 30-1500 extensions, addressing the needs of SMB as well as enterprise. The flagship product, CompletePBX, is a fully integrated business telephony solution that provides excellent user experience, a robust feature set, unparalleled security via a built-in session border controller and the cost-effectiveness of VoIP, with no per user license fees!
The Handlink WG-500P is a Wi-Fi hotspot gateway in a printer. The WG-500P which is the world first and patented wi-fi hotspot gateway built into a printer. This small but powerful device is designed for small venues such as Cafe, bistro, bar, restaurant, hotel, airport lounge, gas station, beauty salon and clinic, store or shop etc.
With the population of mobile devices like smart phones and pads, more and more mini-sized venues need to provide Internet access for their customers.
Traditionally, the venues who provide a public internet access with the same username and password to guests which are insecure and easy to get identity
hijacked. Or they have to take lots of effort to provide secure Internet access for guests such as pre-built user’s accounts with passwords and print them out.
The coin operated Handlink "Wi-Fi KIOSK" is an ideal solution for any venue owner. Hotels, coffee shops, restaurants, cafe, convention centers, airports and public places can all provide fee-based Wi-Fi access.
All the venue owner needs to do, is apply for a Broadband Internet connection from their local ISP and connect it to their "Wi-Fi KIOSK". A Wi-Fi Internet service is then immediately available to any venue visitor.
Just pop some coins in the slot and your ready to surf the web on any Wi-Fi enabled gadget, whether it be a Laptop, iPhone or any other web enabled gadget.
The combination of cool retro design with the latest technology means it will look good in any venue.
Handlink Wireless Hotspot Solution.
AXIS F Series offers flexible, high-performance cameras that support HDTV 1080p and Wide Dynamic Range -- Forensic Capture for superb image detail in extremely discreet indoor, outdoor and mobile surveillance applications. They are ideal for ATMs (automated teller machines), banks, stores, hotels, as well as rugged environments such as emergency vehicles. AXIS F Series comprises AXIS F41 Main Unit and AXIS F Sensor Units with fixed, varifocal, pinhole or fisheye lens.
VoIP Business Telephony Solutions Supporting 30-1500 UsersXorcom
Seven product lines in the Xorcom IP-PBX family support from 30-1500 extensions, addressing the needs of SMB as well as enterprise. The flagship product, CompletePBX, is a fully integrated business telephony solution that provides excellent user experience, a robust feature set, unparalleled security via a built-in session border controller and the cost-effectiveness of VoIP, with no per user license fees!
The Handlink WG-500P is a Wi-Fi hotspot gateway in a printer. The WG-500P which is the world first and patented wi-fi hotspot gateway built into a printer. This small but powerful device is designed for small venues such as Cafe, bistro, bar, restaurant, hotel, airport lounge, gas station, beauty salon and clinic, store or shop etc.
With the population of mobile devices like smart phones and pads, more and more mini-sized venues need to provide Internet access for their customers.
Traditionally, the venues who provide a public internet access with the same username and password to guests which are insecure and easy to get identity
hijacked. Or they have to take lots of effort to provide secure Internet access for guests such as pre-built user’s accounts with passwords and print them out.
The coin operated Handlink "Wi-Fi KIOSK" is an ideal solution for any venue owner. Hotels, coffee shops, restaurants, cafe, convention centers, airports and public places can all provide fee-based Wi-Fi access.
All the venue owner needs to do, is apply for a Broadband Internet connection from their local ISP and connect it to their "Wi-Fi KIOSK". A Wi-Fi Internet service is then immediately available to any venue visitor.
Just pop some coins in the slot and your ready to surf the web on any Wi-Fi enabled gadget, whether it be a Laptop, iPhone or any other web enabled gadget.
The combination of cool retro design with the latest technology means it will look good in any venue.
Handlink Wireless Hotspot Solution.
From Prototype to Production: How to take the leap in IoT... and stick the landing
A field-tested, production-ready IoT prototype is both an enormous milestone and the beginning of a brand new challenge, one that requires new skills, new tools, new partners, and a keen eye for both danger and opportunity. As CTO of cloud-connectivity pioneer Soracom, Kenta Yasukawa has helped customers around the world manage the tricky transition from prototype to production. This session will examine real-world use cases across industries to to show how to achieve success at scale. From managing certificates in Shenzhen to capping connectivity cost in California, today's cloud offers more opportunities than ever to break through the hardware, software and connectivity dependencies unique to IoT.
Cloud connectivity as a service platform, SORACOM, helps various smart city projects around the world. Here is how we make cities smart by connecting things up to the cloud.
This presentation shows you what exactly is an eSIM, what are the eSIM connectivity implementation barriers and how it can change our understanding of IoT. And what can you expect from IoT eSIM providers.
Iot Conference Berlin M2M,IoT, device management: one protocol to rule them all?Julien Vermillard
M2M/IoT is rapidly growing and since its early days different “standard” protocols have emerged (e.g. OMA-DM, TR-069, MQTT, …) or are emerging (e.g. CoAP or Lightweight M2M). Understanding which protocol to use for which application can be intimidating, therefore we propose to give an overview of these protocols to help you understand their goals and characteristics. We’ll present common M2M use cases and why they usually require more than just one protocol ; we will also see whether CoAP associated with Lightweight M2M allows to forge “one protocol to rule them all”.
The Wireless industry has adopted eSIM to make it easier for companies to kit their devices and send them around the world. Now we are at the point where rather than embedding the SIM, the manufacturers are putting it into their processes. How does this change the process of deployment? What does it mean for the industry overall? How is security improved?
Managing smart micro grids via TR-069 and beyond. How to leverage the given and established standards in telecommunications to drive smart micro grids.
Presenting on the Pro track at API World 2017, Soracom CTO and co-founder Kenta Yasukawa explains how the constrained devices of the Internet of Things can use APIs to access the power of the cloud.
FiSH 2017 (Fukuoka International Startup Hub)| SORACOM The secure, scalable, ...SORACOM,INC
20170131
FiSH 2017 (Fukuoka International Startup Hub)
http://www.f2ff.jp/fish/
「SORACOM The secure, scalable, simple platform for your internet of things」
Yuta Imai
Solution Architect, SORACOM,INC
One of the initial (March 2011) slide-decks we created at Telefonica describing our progress in the Open Web Device, which was later (much later, when Mozilla came up with a similar idea called Boot2Gecko) renamed as Firefox OS.
It's about time to start telling the real story behind FirefoxOS
Removing Uninteresting Bytes in Software FuzzingAftab Hussain
Imagine a world where software fuzzing, the process of mutating bytes in test seeds to uncover hidden and erroneous program behaviors, becomes faster and more effective. A lot depends on the initial seeds, which can significantly dictate the trajectory of a fuzzing campaign, particularly in terms of how long it takes to uncover interesting behaviour in your code. We introduce DIAR, a technique designed to speedup fuzzing campaigns by pinpointing and eliminating those uninteresting bytes in the seeds. Picture this: instead of wasting valuable resources on meaningless mutations in large, bloated seeds, DIAR removes the unnecessary bytes, streamlining the entire process.
In this work, we equipped AFL, a popular fuzzer, with DIAR and examined two critical Linux libraries -- Libxml's xmllint, a tool for parsing xml documents, and Binutil's readelf, an essential debugging and security analysis command-line tool used to display detailed information about ELF (Executable and Linkable Format). Our preliminary results show that AFL+DIAR does not only discover new paths more quickly but also achieves higher coverage overall. This work thus showcases how starting with lean and optimized seeds can lead to faster, more comprehensive fuzzing campaigns -- and DIAR helps you find such seeds.
- These are slides of the talk given at IEEE International Conference on Software Testing Verification and Validation Workshop, ICSTW 2022.
More Related Content
Similar to Let soracom help your IoT devices connect to the cloud!
From Prototype to Production: How to take the leap in IoT... and stick the landing
A field-tested, production-ready IoT prototype is both an enormous milestone and the beginning of a brand new challenge, one that requires new skills, new tools, new partners, and a keen eye for both danger and opportunity. As CTO of cloud-connectivity pioneer Soracom, Kenta Yasukawa has helped customers around the world manage the tricky transition from prototype to production. This session will examine real-world use cases across industries to to show how to achieve success at scale. From managing certificates in Shenzhen to capping connectivity cost in California, today's cloud offers more opportunities than ever to break through the hardware, software and connectivity dependencies unique to IoT.
Cloud connectivity as a service platform, SORACOM, helps various smart city projects around the world. Here is how we make cities smart by connecting things up to the cloud.
This presentation shows you what exactly is an eSIM, what are the eSIM connectivity implementation barriers and how it can change our understanding of IoT. And what can you expect from IoT eSIM providers.
Iot Conference Berlin M2M,IoT, device management: one protocol to rule them all?Julien Vermillard
M2M/IoT is rapidly growing and since its early days different “standard” protocols have emerged (e.g. OMA-DM, TR-069, MQTT, …) or are emerging (e.g. CoAP or Lightweight M2M). Understanding which protocol to use for which application can be intimidating, therefore we propose to give an overview of these protocols to help you understand their goals and characteristics. We’ll present common M2M use cases and why they usually require more than just one protocol ; we will also see whether CoAP associated with Lightweight M2M allows to forge “one protocol to rule them all”.
The Wireless industry has adopted eSIM to make it easier for companies to kit their devices and send them around the world. Now we are at the point where rather than embedding the SIM, the manufacturers are putting it into their processes. How does this change the process of deployment? What does it mean for the industry overall? How is security improved?
Managing smart micro grids via TR-069 and beyond. How to leverage the given and established standards in telecommunications to drive smart micro grids.
Presenting on the Pro track at API World 2017, Soracom CTO and co-founder Kenta Yasukawa explains how the constrained devices of the Internet of Things can use APIs to access the power of the cloud.
FiSH 2017 (Fukuoka International Startup Hub)| SORACOM The secure, scalable, ...SORACOM,INC
20170131
FiSH 2017 (Fukuoka International Startup Hub)
http://www.f2ff.jp/fish/
「SORACOM The secure, scalable, simple platform for your internet of things」
Yuta Imai
Solution Architect, SORACOM,INC
One of the initial (March 2011) slide-decks we created at Telefonica describing our progress in the Open Web Device, which was later (much later, when Mozilla came up with a similar idea called Boot2Gecko) renamed as Firefox OS.
It's about time to start telling the real story behind FirefoxOS
Removing Uninteresting Bytes in Software FuzzingAftab Hussain
Imagine a world where software fuzzing, the process of mutating bytes in test seeds to uncover hidden and erroneous program behaviors, becomes faster and more effective. A lot depends on the initial seeds, which can significantly dictate the trajectory of a fuzzing campaign, particularly in terms of how long it takes to uncover interesting behaviour in your code. We introduce DIAR, a technique designed to speedup fuzzing campaigns by pinpointing and eliminating those uninteresting bytes in the seeds. Picture this: instead of wasting valuable resources on meaningless mutations in large, bloated seeds, DIAR removes the unnecessary bytes, streamlining the entire process.
In this work, we equipped AFL, a popular fuzzer, with DIAR and examined two critical Linux libraries -- Libxml's xmllint, a tool for parsing xml documents, and Binutil's readelf, an essential debugging and security analysis command-line tool used to display detailed information about ELF (Executable and Linkable Format). Our preliminary results show that AFL+DIAR does not only discover new paths more quickly but also achieves higher coverage overall. This work thus showcases how starting with lean and optimized seeds can lead to faster, more comprehensive fuzzing campaigns -- and DIAR helps you find such seeds.
- These are slides of the talk given at IEEE International Conference on Software Testing Verification and Validation Workshop, ICSTW 2022.
UiPath Test Automation using UiPath Test Suite series, part 5DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 5. In this session, we will cover CI/CD with devops.
Topics covered:
CI/CD with in UiPath
End-to-end overview of CI/CD pipeline with Azure devops
Speaker:
Lyndsey Byblow, Test Suite Sales Engineer @ UiPath, Inc.
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
A tale of scale & speed: How the US Navy is enabling software delivery from l...sonjaschweigert1
Rapid and secure feature delivery is a goal across every application team and every branch of the DoD. The Navy’s DevSecOps platform, Party Barge, has achieved:
- Reduction in onboarding time from 5 weeks to 1 day
- Improved developer experience and productivity through actionable findings and reduction of false positives
- Maintenance of superior security standards and inherent policy enforcement with Authorization to Operate (ATO)
Development teams can ship efficiently and ensure applications are cyber ready for Navy Authorizing Officials (AOs). In this webinar, Sigma Defense and Anchore will give attendees a look behind the scenes and demo secure pipeline automation and security artifacts that speed up application ATO and time to production.
We will cover:
- How to remove silos in DevSecOps
- How to build efficient development pipeline roles and component templates
- How to deliver security artifacts that matter for ATO’s (SBOMs, vulnerability reports, and policy evidence)
- How to streamline operations with automated policy checks on container images
Threats to mobile devices are more prevalent and increasing in scope and complexity. Users of mobile devices desire to take full advantage of the features
available on those devices, but many of the features provide convenience and capability but sacrifice security. This best practices guide outlines steps the users can take to better protect personal devices and information.
Essentials of Automations: The Art of Triggers and Actions in FMESafe Software
In this second installment of our Essentials of Automations webinar series, we’ll explore the landscape of triggers and actions, guiding you through the nuances of authoring and adapting workspaces for seamless automations. Gain an understanding of the full spectrum of triggers and actions available in FME, empowering you to enhance your workspaces for efficient automation.
We’ll kick things off by showcasing the most commonly used event-based triggers, introducing you to various automation workflows like manual triggers, schedules, directory watchers, and more. Plus, see how these elements play out in real scenarios.
Whether you’re tweaking your current setup or building from the ground up, this session will arm you with the tools and insights needed to transform your FME usage into a powerhouse of productivity. Join us to discover effective strategies that simplify complex processes, enhancing your productivity and transforming your data management practices with FME. Let’s turn complexity into clarity and make your workspaces work wonders!
In his public lecture, Christian Timmerer provides insights into the fascinating history of video streaming, starting from its humble beginnings before YouTube to the groundbreaking technologies that now dominate platforms like Netflix and ORF ON. Timmerer also presents provocative contributions of his own that have significantly influenced the industry. He concludes by looking at future challenges and invites the audience to join in a discussion.
GridMate - End to end testing is a critical piece to ensure quality and avoid...ThomasParaiso2
End to end testing is a critical piece to ensure quality and avoid regressions. In this session, we share our journey building an E2E testing pipeline for GridMate components (LWC and Aura) using Cypress, JSForce, FakerJS…
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Albert Hoitingh
In this session I delve into the encryption technology used in Microsoft 365 and Microsoft Purview. Including the concepts of Customer Key and Double Key Encryption.
Pushing the limits of ePRTC: 100ns holdover for 100 daysAdtran
At WSTS 2024, Alon Stern explored the topic of parametric holdover and explained how recent research findings can be implemented in real-world PNT networks to achieve 100 nanoseconds of accuracy for up to 100 days.
Enchancing adoption of Open Source Libraries. A case study on Albumentations.AIVladimir Iglovikov, Ph.D.
Presented by Vladimir Iglovikov:
- https://www.linkedin.com/in/iglovikov/
- https://x.com/viglovikov
- https://www.instagram.com/ternaus/
This presentation delves into the journey of Albumentations.ai, a highly successful open-source library for data augmentation.
Created out of a necessity for superior performance in Kaggle competitions, Albumentations has grown to become a widely used tool among data scientists and machine learning practitioners.
This case study covers various aspects, including:
People: The contributors and community that have supported Albumentations.
Metrics: The success indicators such as downloads, daily active users, GitHub stars, and financial contributions.
Challenges: The hurdles in monetizing open-source projects and measuring user engagement.
Development Practices: Best practices for creating, maintaining, and scaling open-source libraries, including code hygiene, CI/CD, and fast iteration.
Community Building: Strategies for making adoption easy, iterating quickly, and fostering a vibrant, engaged community.
Marketing: Both online and offline marketing tactics, focusing on real, impactful interactions and collaborations.
Mental Health: Maintaining balance and not feeling pressured by user demands.
Key insights include the importance of automation, making the adoption process seamless, and leveraging offline interactions for marketing. The presentation also emphasizes the need for continuous small improvements and building a friendly, inclusive community that contributes to the project's growth.
Vladimir Iglovikov brings his extensive experience as a Kaggle Grandmaster, ex-Staff ML Engineer at Lyft, sharing valuable lessons and practical advice for anyone looking to enhance the adoption of their open-source projects.
Explore more about Albumentations and join the community at:
GitHub: https://github.com/albumentations-team/albumentations
Website: https://albumentations.ai/
LinkedIn: https://www.linkedin.com/company/100504475
Twitter: https://x.com/albumentations
UiPath Test Automation using UiPath Test Suite series, part 6DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 6. In this session, we will cover Test Automation with generative AI and Open AI.
UiPath Test Automation with generative AI and Open AI webinar offers an in-depth exploration of leveraging cutting-edge technologies for test automation within the UiPath platform. Attendees will delve into the integration of generative AI, a test automation solution, with Open AI advanced natural language processing capabilities.
Throughout the session, participants will discover how this synergy empowers testers to automate repetitive tasks, enhance testing accuracy, and expedite the software testing life cycle. Topics covered include the seamless integration process, practical use cases, and the benefits of harnessing AI-driven automation for UiPath testing initiatives. By attending this webinar, testers, and automation professionals can gain valuable insights into harnessing the power of AI to optimize their test automation workflows within the UiPath ecosystem, ultimately driving efficiency and quality in software development processes.
What will you get from this session?
1. Insights into integrating generative AI.
2. Understanding how this integration enhances test automation within the UiPath platform
3. Practical demonstrations
4. Exploration of real-world use cases illustrating the benefits of AI-driven test automation for UiPath
Topics covered:
What is generative AI
Test Automation with generative AI and Open AI.
UiPath integration with generative AI
Speaker:
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Securing your Kubernetes cluster_ a step-by-step guide to success !KatiaHIMEUR1
Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster.
However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks.
In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdfPaige Cruz
Monitoring and observability aren’t traditionally found in software curriculums and many of us cobble this knowledge together from whatever vendor or ecosystem we were first introduced to and whatever is a part of your current company’s observability stack.
While the dev and ops silo continues to crumble….many organizations still relegate monitoring & observability as the purview of ops, infra and SRE teams. This is a mistake - achieving a highly observable system requires collaboration up and down the stack.
I, a former op, would like to extend an invitation to all application developers to join the observability party will share these foundational concepts to build on:
2. Public
Endpoints
SORACOM Beam
SORACOM bridges gap b/w constraint
devices and cloud
SORACOM Funnel
Amazon Kinesis
Family
Microsoft Azure
EventHubs
AWS IoT
Google Cloud
Pub/Sub
• Securely connect to public endpoints → SORACOM Beam
• Send data to cloud services → SORACOM Funnel
• Collect and visualize data on SORACOM → SORACOM Harvest
SORACOM
Harvest
Simple, Low overhead protocols
- TCP / UDP raw socket
- HTTP, MQTT
- LoRaWAN, Sigfox
Secure, Full fledged protocols
- TCP over TLS
- HTTPS, MQTTS
Secure link
SORACOM Air enables
10. Case Study: DyDo
SORACOM Funnel to securely
and easily collect data to
Amazon S3
SORACOM Air connected
Vending Machines
11. SORACOM Harvest: Data Collection & Visualization
Indexes and stores data from your devices
Data can be retrieved through API and Web console
Adds metadata
- SIM ID (IMSI)
- Device ID (IMEI)
- Timestamp
Simple
Protocol
Indexed time series
data via API / web
console
12. SORACOM Inventory: Device Management
Devices with Non-Standard
Object Model
User
Device Object
Model Definition
(XML/JSON)< />
HTTP REST
OMA DM
LwM2m
13. SORACOM Inventory integrates with Beam,
Funnel, Harvest
LwM2M Observe
LwM2M Notify
Public
Endpoints
SORACOM Beam
SORACOM Funnel
Amazon Kinesis
Family
Microsoft Azure
EventHubs
AWS IoT
Google Cloud
Pub/Sub
SORACOM
Harvest
14. • Remote Measurement Service “GENNECT Remote”
On-demand SSH Tunnel by Inventory command
Customer reference:
SSH
1. HTTP POST
/v1/devices/<deviceId>/14/0/3/execute
2. CoAP
POST /14/0/3
3. Establish SSH tunnel
Admin
16. Steps to connect devices to cloud in general
1. Register device/user
2. Credentials and
configuration
3. Securely copy
credentials and
configuration
4. Authenticate & Connect
Cloud Service
User
Device
17. Steps to connect devices to cloud
-- For Production --
1. Register device/user
3. Securely copy credentials
and configuration
2. Credentials
and configuration
4. Embed during
manufacturing
process
Batch operations way
before using service
Risk on credentials
breach
Increased cost and
lead time
5. Authenticate and
Connect
18. SORACOM Krypton
Secure Provisioning for SIM authenticated clients
SORACOM
Krypton
1. SIM authentication
2. Register device on behalf
Two authentication options based on SORACOM Endorse
- Option 1: Connect to endpoint accessible only with SORACOM Air for cellular
- Option 2: Run SIM AKA authentication over any access link incl. WiFi and Ethernet
Cloud ServiceDevice 4. Establish secure link
3. Credentials and
configuration
19. SORACOM Krypton removes all concerns
-- Zero touch provisioning for Production --
1. Register device/user
3. Securely copy credentials
and configuration
2. Credentials
and configuration
4. Embed during
manufacturing
process
Batch operations way
before using service
Risk on credentials
breach
Increased cost and
lead time
SIM Authentication&
Secure Zero Touch
20. SORACOM Krypton example scenario
SORACOM
Krypton
1. SIM authentication
2. Automatically register a “Thing”
3. Private Key,
Certificate
Automatic “Thing” registration and bootstrapping for AWS IoT
AWS
IoT
4. Connect with MQTTS by using AWS Device SDK
21. SORACOM Krypton example scenario
SORACOM
Krypton
SIM authentication Login
AWS Temporary
Credentials
Amazon
Cognito
Kinesis
Video
Stream
Use most reasonable access link for streaming video
Cellular
WiFi
22. SORACOM Krypton Pricing
• Secure Provisioning request fee
• 1.8 USD / SIM (w/o tax)
• No additional recurring charge if it is only for one time
provisioning
• No additional cost for requests within the same month
as initial provisioning
• Reduced fee for continuous use after the first month
• 0.4 USD / Month / SIM (w/o tax)
23. Additional cloud integration options enabled by
SORACOM Krypton
Public
Endpoints
Cloud
Services
SORACOM
Air
SORACOM Beam
SORACOM Funnel
Microcontroller
s and Cellular
only devices
Edge gateways
and rich devices
w/ multiple
connectivity
options
SORACOM
Krypton
Zero touch provisioning and
Establish secure link
Light Edge
Architecture
Edge heavy
Architecture
26. SORACOM Lagoon
Managed Dashboard backed by
SORACOM Harvest
Adds metadata
- SIM ID (IMSI)
- Device ID (IMEI)
- Timestamp
Simple
Protocol
IoT
Consumers
SORACOM
Lagoon
Dashboard
IoT Service
Providers
Configure
27. Steps to create Dashboard(s)
1. Select data source
1. Choose visualization type
that fits data
1. Repeat as many times as
you want!
28. •Any data sources supported by SORACOM
Harvest can be visualized
Integrated with SORACOM Harvest
3G
LTE
LTE-M
LoRa
Sigfox
Inventory
Data Source SORACOM Harvest SORACOM Lagoon
29. Alerting
• Sends notification when a threshold is crossed
• Email
• Webhook, etc
• GUI for configuring alert thresholds
Alert
34. • SIMs that SORACOM issues and authenticates
SORACOM SIM plan01s
Existing SORACOM Air SIM case
1. Authentication
Partner
MNO’s HLR
2. Data
session
SORACOM Air SIM plan01s case
SORACOM owned
HLR
1. Authentication
2. Data
Session
SORACOM issues and authenticates
SORACOM SIM plan01s
35. Customer benefits – More flexible pricing
Ready
Active /
Inactive
Terminated
SIM
Lifecycle
• Reduced cost while SIM is not used
• Added new state `standby` for SIMs not used after activation
Basic fee
0.0 USD
Basic fee
0.0 USD
Basic fee
0.06 USD
Suspended
Rejects connection requests
Basic fee
0.0 USD
Standby
Automatically activated
upon connection request
Basic fee
0.0 USD
Activation fee: 1.8 USD
36. Test before shipping
When to benefit from Standby state
Automatic activation when
turning them on
SIM status:
Active
SIM status:Standby ->
Active
SIM status:
Standby
Shipment
Maker End users
SORACOM Air Event handler
notifies SIM status updates
37. Customer benefit – Support for embedded SIMs
MFF2
Smaller
6mm×5mm
Higher resistance to
Severe temperature
Vibration
Humidity
38. SORACOM delivers SMS to devices upon API call
New feature: Secure SMS API
(Supported only on plan01s as of writing)
Low cost: SORACOM directly delivers SMS. Users do not have to pay MO SMS fee
Secure: Only an authorized API caller can send SMS to devices
(An attacker cannot send SMS to a device even if they got the number)
SORACOM
SMSC
1. POST
/v1/subscribers/<imsi>/send_sms
2. Accepted
3. Delivers SMS
39. • Put devices into sleep mode and wakes up on demand
• Push configuration information
• Command execution
Use cases for SMS API
Wakeup
!
APN = soracom.io
Connect to
server.example.co
m
ssh
server.example.com
40. Public
Endpoints
SORACOM Beam
SORACOM Beam, Funnel, Harvest USSD Endpoint
SORACOM Funnel
Amazon Kinesis
Family
Microsoft Azure
EventHubs
AWS IoT
Google Cloud
Pub/Sub
• Bridge to Public HTTPS endpoints → SORACOM Beam
• Send out to cloud services → SORACOM Funnel
• Collect and visualize on SORACOM → SORACOM Harvest
SORACOM
Harvest (Available only
on plan01s)
*{Service Code}*{data string}#
<Service Code>
`901011` ... SORACOM Beam
`901021` ... SORACOM Funnel
`901031` ... SORACOM Harvest
SORACOM
Lagoon
41. •Example: On-demand, low power telemetry
SMS API & USSD Endpoint
SORACOM
SMSC
1. POST
/v1/subscribers/<imsi>/send_sms
2. SMS
SORACOM
USSD GW
3. USSD
(Location, Sensor data
)