Knock, Knock…The Internet of Things wants to come in?

Knock, Knock…The Internet of Thingswants to come in?

Ralph Huenten

Security

CA Technologies

Security Presales - EMEASCT31T

@casecurity

#CAWorld

2 © 2015 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD

© 2015 CA. All rights reserved. All trademarks referenced herein belong to their respective companies.

The content provided in this CA World 2015 presentation is intended for informational purposes only and does not form any type of

warranty. The information provided by a CA partner and/or CA customer has not been reviewed for accuracy by CA.

For Informational Purposes Only

Terms of this Presentation


Abstract

The Internet of Things (IoT) will connect users to the enterprise or just connect to the enterprise independently — but what will be used to secure this access? Come see how CA Security can secure access to and from the IoT.

Ralph Huenten

CA Technologies

Advisor


Digital transformation is underway

Half of enterprises today say the application economy is significantly disrupting their industry—while 44% say it is doing the same to their own organization 1

-- CA Technologies with Vanson Bourne

1.75Bsmartphone users in 2014 1

25Business apps per device2

50BConnected devices (IoT) by 2020 3

>$100Bin cloud spending this year 4

Sources: 1. CA Vanson Bourne Study2. eMarketer study3. McKinsey Global Institute, Disruptive Technologies, advances that will transform life, business and the global economy, May 20134. GMSA Intelligence, From Concept to Delivery, the M2M Market Today, Feb. 17, 2014


This drives the need for increased Security

Security concerns - the top obstacle in app economy#1

$12.7MAverage cost to the

company for a breach

Overall IT spend devoted to Security

over next 3 years

>25%2

78%Increase in # of breached

records from 2013 to 20143

16,856Number of attacks the average company had

in 2013

1All data on this slide from CA Application Economy Market Study commissioned by CA, conducted by Vanson Bourne, 20142. The 2014 Cost of Cyber Crime Study Reveals Increased Risks, Oct, 20143. http://breachlevelindex.com/pdf/Breach-Level-Index-Annual-Report-2014.pdf

http://breachlevelindex.com/pdf/Breach-Level-Index-Annual-Report-2014.pdf


IoT Represents the Next Wave of Risk

The Internet of Things (IoT) will connect users to the enterprise or just connect to the enterprise independently — but what will be used to secure this access?

• How will users authenticate to the IoT devices?

• How will IoT devices authenticate to the enterprise?

50BConnected devices

(IoT) by 2020 3

IoT Devices The EnterpriseUsers

• What types of data can the IoTdevices access?

• What types of transactions can the IoT devices perform?

What happens to the IoT device if it is hacked?


CA Security Solution

Components:– CA API Gateway

used to secure communications between users and IoT devices and between IoT devices and the enterprise.

– CA Advanced Authentication

used to authenticate users to IoT devices and IoT devices to the enterprise.


CA Security Solution Conceptual Architecture

CA API GatewayCA Advanced

Authentication

IoT Devices The EnterpriseUsers

Secures CommunicationsBetween users, IoT, and Enterprise

Provides MFA and risk analysis for authentication


CA World User Multiple Devices

CA APIGateway

CA AdvancedAuthentication

Social Media CloudMQTT Raspberry Pi

Slot Car Race Track

CA Security Innovation Demo



Users Enroll using Demo iPad/laptop or

their own device


CA APIGateway



Slot Car Race Track



Demo supports direct enrollment or social media registration


CA APIGateway



Slot Car Race Track



During direct enrollment, user is prompted to enter First Name, Last Name, ID and password. This data is used to create an account in CA Advanced Authentication.


CA APIGateway



Slot Car Race Track



Users can then click to Start Test Drive


CA APIGateway



Slot Car Race Track



User is prompted to login using User ID / Password, which is then validated by CA Advanced Authentication.

The demo can support • Basic with/without risk authentication• CA Auth ID with/without risk authentication• CA Mobile OTP with/without risk authentication


CA APIGateway



Slot Car Race Track



Once authenticated, the gateway will release the request to start slot car engine to CloudMQTT, which will determine which slot car is currently available and place the request in that queue.


CA APIGateway



Slot Car Race Track




CA APIGateway



Slot Car Race Track

Raspberry periodically checks with CloudMQTTfor new requests, and will turn on power to the correct car when a new request is retrieved.




CA APIGateway



Slot Car Race TrackAt end of Test Drive, users can select to Stop Engine, which

will also disable their account


Summary

Authentication– User access to IoT devices can be protected by CA Adv. Authentication

using MFA credentials and/or Risk-Based Authentication

Orchestration– Communications between users, web/mobile apps, IoT devices, and CA

Adv. Auth servers can be orchestrated by CA API Gateway

– The gateway also provides protocol translation where necessary

CA SECURITY FOR THE INTERNET OF THINGS


Recommended Sessions

SESSION # TITLE DATE/TIME

SCT05S Roadmap: CA Advanced Authentication and CA SSO Wed. Nov 18 at 4:30 pm

SCT24TMobile Risk Analysis: Take Your Mobile App Security to

the Next Level Thurs. Nov 19 at 1:00 pm

SCT21T Enable Omnichannel with Security and API Management Thurs. Nov 19 at 2:00 pm

SCT17T Strong Auth in IdM Thurs. Nov 19 at 3:45 pm


Must See Demos

Protect Against Fraud & Breaches

CA Advanced Auth

Security Theater

Engage Customers

CA SSO

Security Theater

Innovation – IoTSlot Car

CA AA, APIM

Security Theater

Secure Omni-Channel Access

CA AA, APIM, SSO

Security Theater


Q & A


For More Information

To learn more, please visit:

http://cainc.to/Nv2VOe

CA World ’15

http://cainc.to/Nv2VOe

http://bit.ly/1wbjjqX

Technology

Knock, Knock…The Internet of Things wants to come in?