Amazon Web Services (AWS) is pushing further into the game of internet of things (IoT) security with general availability of AWS IoT Device Defender service.
AWS IoT Device Defender is a fully managed service that audits IoT devices for suspicious activity. It monitors the fleets of connected devices and ensures that the devices follow necessary security policies.
In case, any abnormal behavior is detected or security policies are found incompliant, it will alert the administrators to troubleshoot the problem.
Security is one of the biggest concerns for enterprises, with a study by Gartner forecasting that global IoT security spending will reach $1.5 billion in 2018, from $1.2 billion in 2017. The analyst firm said in March that nearly 20% of the enterprises faced at least one attack on their IoT devices in last three years.
Announced at last year’s re:Invent conference, the IoT Device Defender addresses the ongoing security concerns related to connected devices.
Device Defender will allow enterprises to run audits on a schedule (from 5 minutes to 48-hour intervals) or on demand. These audits search the expiring and revoked certificates, and the ones shared by duplicate client identifiers. The Cognito Ids with overly permissive access are also checked to make sure that logging is enabled.
Following the audit run, the notifications are delivered to AWS IoT Console in the form of SNS notifications or CloudWatch metrics.
The new IoT security solution also looks at network connections, outbound packet and byte counts, destination IP addresses, inbound and outbound message rates, authentication failures, and more.
Furthermore, it allows enterprises to set up security profiles, define acceptable behavior, and configure whitelists and blacklists of IP addresses and ports.
It is now generally available in US East, US West, EU, and APAC regions, on a per-device, per-month pricings.