Upload File

tizen/artik iot lecture chapter 16. iotivity provisioning ...16... · tizen/artik iot lecture...

  • Home
  • Documents
  • Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning ...16... · Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning Manager. ... – PM provisions and revokes credentials
16
Embedded Software Lab. @ SKKU 16 1 Sungkyunkwan University Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning Manager

Upload: dinhcong

Post on 28-Apr-2018

233 views

Category:

Documents


2 download

Report

TRANSCRIPT

Page 1: Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning ...16... · Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning Manager. ... – PM provisions and revokes credentials

Embedded Software Lab. @ SKKU

16

1

Sungkyunkwan University

Tizen/Artik IoT Lecture Chapter 16.IoTivity Provisioning Manager

Page 2: Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning ...16... · Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning Manager. ... – PM provisions and revokes credentials

Embedded Software Lab. @ SKKU

16

2

• Provisioning Manager– Roles

– Architecture

• Ownership Transfer Method– “Just Work”

– Discovery and Set Ownership Transfer Method

• Access Control List (ACL)

• Sequence Diagram of Direct Pairing

• Sample Applications

Contents

Page 3: Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning ...16... · Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning Manager. ... – PM provisions and revokes credentials

Embedded Software Lab. @ SKKU

16

3

• Acts as a security administrator of IoT devices in its IP subnet– Manages the ownership of the IoT devices and provides proper

security policy

What is Provisioning Manager?

gateway

IoT devices

- Ownership- Security policy- ACLs & Credentialsconnect

Page 4: Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning ...16... · Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning Manager. ... – PM provisions and revokes credentials

Embedded Software Lab. @ SKKU

16

4

• Ownership transferring– PM discovers new device and transfers the ownership to admin– Two methods: “Just works” and “Random PIN based”

• Security management of owned devices– PM provisions and revokes credentials and ACL to owned devices– PM keeps provisioned credential history to manage OIC network

(Provisioning Database Manager, Secure Resource Provider)

• Direct pairing– Enables a security establishment between two IoT devices without any help

of security tools and/or services• An immediate use of a new IoT device when provisioning tools/services are not

available• Access and control to user IoT devices by a guest IoT device• Access and control among user IoT devices provisioned or owned by different

provisioning tools/services

Roles of Provisioning Manager

Page 5: Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning ...16... · Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning Manager. ... – PM provisions and revokes credentials

Embedded Software Lab. @ SKKU

16

5IoTivity Overall Architecture

https://wiki.iotivity.org/architecture

Page 6: Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning ...16... · Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning Manager. ... – PM provisions and revokes credentials

Embedded Software Lab. @ SKKU

16

6

• Overall architecture of Provisioning Manager (PM)

Architecture

DB for provisioning like,- Owned device information- Credential, ACL, Key

https://wiki.iotivity.org/provisioning

Page 7: Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning ...16... · Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning Manager. ... – PM provisions and revokes credentials

Embedded Software Lab. @ SKKU

16

7

• “Just works” device owner transfer– Find new devices that are unowned and choose an owner

transfer method

– On-boarding tools (OBT) tell new device how provisioning will be achieved (register device owner information)

– The OBT decides which credential type will be used as owner credentials based on ‘sct’ of new device’s doxm• Symmetric credential type, asymmetric credential type

– Establish a secure session using owner credential

“Just Work” Ownership Transfer Method

/oic/sec/doxm (device owner transfer method)/oic/sec/pstat (provisioning status)

Page 8: Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning ...16... · Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning Manager. ... – PM provisions and revokes credentials

Embedded Software Lab. @ SKKU

16

8

• In “Just works” device owner transfer

Discovery and Set Ownership Transfer Method

/oic/sec/pstat

“Just Works”

/oic/sec/doxm

Unowned device discovery

Get Provisioning Status Resource

https://wiki.iotivity.org/provisioning

Page 9: Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning ...16... · Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning Manager. ... – PM provisions and revokes credentials

Embedded Software Lab. @ SKKU

16

9

• Resources are hosted at OIC server and are made available to OIC clients subject to access control and authorization mechanisms

• Two types of access control mechanism– Subject-based access control (SBAC)– Role-based access control (RBAC)

Access Control List (ACL)

Page 10: Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning ...16... · Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning Manager. ... – PM provisions and revokes credentials

Embedded Software Lab. @ SKKU

16

10Sequence Diagram of Direct Pairing

Direct Pairing Configuration

Device Pairing Sequence

/oic/sec/pconf

SRM

https://wiki.iotivity.org/provisioning

Page 11: Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning ...16... · Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning Manager. ... – PM provisions and revokes credentials

Embedded Software Lab. @ SKKU

16

11

• How to Build– $ cd ~/<IoTivity_DIR>

– $ scons resource SECURED=1• Give security option when build the source

– Directory• ~/<IoTivity_DIR>/resource/provisioning

• ~/<IoTivity_DIR>/csdk/security/provisioning

• Programs– sampleserver_justworks

– sampleserver_randompin

– provisioningclient

Sample Applications

Page 12: Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning ...16... · Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning Manager. ... – PM provisions and revokes credentials

Embedded Software Lab. @ SKKU

16

12

• Ownership transfer

• Provision ACL and Credentials

• Provision direct-pairing configuration

Sample Application: provisioningclient

Page 13: Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning ...16... · Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning Manager. ... – PM provisions and revokes credentials

Embedded Software Lab. @ SKKU

16

13

• Discovery of owned and unowned devices– Unowned devices should transfer ownership to provisioning

manager

Discovery of Devices

Discovery of unowned device

Discovery of owned device

Page 14: Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning ...16... · Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning Manager. ... – PM provisions and revokes credentials

Embedded Software Lab. @ SKKU

16

14

• Transfer ownership of unowned device to provisioning manager– “Just works” server is registered without key– “Random Pin” server is registered throughout the PIN code

Ownership Transferring

Transfer ownership“Just Works” server

“Random PIN” server

PIN code generated

Page 15: Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning ...16... · Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning Manager. ... – PM provisions and revokes credentials

Embedded Software Lab. @ SKKU

16

15Provisioning ACL and Credential

Provision ACL to deivce1

Set ACL policy

Page 16: Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning ...16... · Tizen/Artik IoT Lecture Chapter 16. IoTivity Provisioning Manager. ... – PM provisions and revokes credentials

Embedded Software Lab. @ SKKU

16

16Provision Direct-pairing Configuration

PIN number of device 2


Tizen/Artik IoT Lecture Chapter 1. IoT.js & JerryScript Overview · 2017-02-17 · IoT.js Source Tree 9 IoT.js CMAKE Deps jerryscript libtuv http-parser jerryscript Cmake Libtuv Cmake

Tizen/Artik IoT Lecture Chapter 1. IoT.js & JerryScript ...01-IoTjs_… · • Memory footprint on Node.js is large –V8 JavaScript Engine consumes a lot of memory at the cost of

Tizen Development Environment - Hanyangrtcc.hanyang.ac.kr/.../2015_ES_Practice_9_Tizen_Development_Environment.pdf · Tizen Development Environment Tizen Target Device •Tizen Reference

IoTivity Architecture

IoTivity for Automotive IoT Interoperability

IoTivity Big Picture - soscon.net · - IoTivity supports UDP unicast discovery also, ... - Tizen Wi-Fi, BLE and BT ... - Credential(Key)/ACL Provisioning Resource Access over DTLS

LT artik 2014

Tizen/Artik IoT Practice Part 4 Open Source …...Tizen/Artik IoT Practice Part 4 Open Source Development Embedded Software Lab. @ SKKU 14 2 • SCM Tool: Git –Version Management

Tizen/Artik IoT Practice Part 3 Building IoTivity Software Lab. @ SKKU 27 1 Sungkyunkwan University Tizen/Artik IoT Practice Part 3 Building IoTivity

Tizen/Artik IoT Lecture Chapter 15. IoTivity …...Tizen/Artik IoT Lecture Chapter 15. IoTivity Notification Service Embedded Software Lab. @ SKKU 19 2 • Notification Service –Revisit

OIC OSWG Responsibilties (towards SWG, MWG, IoTivity, etc.)openconnectivity.org/wp-content/uploads/2016/01/Ashok-Subash.pdf · • Available on TIZEN, Android, Arduino, Linux(Ubuntu)

Artik presentacion final_adso_definitiva

IoTivity 오픈소스 기술

IoTivity Connects RVI from GENIVI's Develoment Platform to Tizen devices

OIC/IoTivity Base Framework

Tizen/Artik IoT LectureChapter 6. OCF Resource Type & IoTivitySimulator · 2017-02-17 · Embedded Software Lab. @ SKKU 8 3 • A resource can be created or updated depending on the

Introduction to Tizen and Tizen Mobile Architecture...Introduction to Tizen and Tizen Mobile Architecture Seokjae Jeong, Samsung Electronics 2 Agenda Tizen Introduction Tizen Architecture

DÖN ARTIK

IoT: From Arduino Microcontrollers to Tizen Products using IoTivity

Podrška za programski okvir IoTivity na uredajima s · PDF filelee aplikacija za operacijske sustave Arduino, Linux i Tizen. 5. 3. Instalacija IoTivity biblioteke za Android ... Native

10-IoTivity Resource Encapsulation - Tizen Wiki · 2017-02-17 · Embedded Software Lab. @ SKKU 21 3 • Abstract layer on common resource functions –Library that encapsulates repeated

07-IoTivity Connectivity Abstraction - Tizen Wiki · 2017-02-17 · Embedded Software Lab. @ SKKU 22 1 ... IoTivity Connectivity Abstraction. Embedded Software Lab. @ SKKU 22 2

Samsung ARTIK 050 (ARTIK ZERO) Modules Data Sheet

IoTivity on Tizen: How to

Tizen/Artik IoT Lecture Chapter 5. OCF Standard & IoTivity ... · IoTivity Source Tree 32 build_common IoTivity example OICMiddle OICSensorBoard android: Directory: Src resource service

Tizen/Artik IoT Lecture Chapter 4. JerryScript ECMA ......JerryScript ECMA Internal and Memory Management. ... 2 • ECMAScript – ECMAScript: Script-language specification standardized

04-JerryScript ECMA Internal and Memory Management · PDF fileEmbedded Software Lab. @ SKKU 25 1 SungkyunkwanUniversity Tizen/Artik IoT Lecture Chapter 4. JerryScriptECMA Internal

Tizen Connected with IoTivity

16-IoTivity Provisioning Manager - Tizen · Tizen/Artik IoT LectureChapter 16. IoTivity Provisioning Manager. Embedded Software Lab. @ SKKU 16 2 ... – PM provisions and revokes

Samsung ARTIK Intel Comparison 102...Intel System Studio (Eclipse) Intel XDK 512KB Tizen RT ARTIK IDE (Eclipse) ARTIK SDK 320 MHZ HARDWARE OS TOOLS SDK ARTIK 530 SOFTWARE SECURITY

Tizen.IoTivity - codeground › devlabv2 › images › Tizen... · Tizen IoTivity Application start from here ! Resource Connectivity . Receives/sends data and represents circumstance

TIZEN Overview 1. Introduction to Tizen Background What is a Computing Platform? What is Tizen? Why we use Tizen? Tizen Architecture 2. How to Develop Tizen Applications Tizen Applications

Iotivity atmel-20150328rzr

IoT: From Arduino MicroControllers to Tizen Products Using IoTivity - Philippe Coval

HASTALARINIZ ARTIK İNTERNETTE