manage your mesh

27
Manage Your Mesh Securing Public Cloud IoT APIs, and Building Private Mesh Trust Domains and Enclaves of Privacy to Integrate a Mesh of “Things” with Integrity & Availability [email protected] Twitter: @iryanb

Upload: akana

Post on 19-Jun-2015

128 views

Category:

Internet


0 download

DESCRIPTION

Securing Public Cloud IoT APIs, and Building Private Mesh Trust Domains and Enclaves of Privacy to Integrate a Mesh of “Things” with Integrity & Availability

TRANSCRIPT

Page 1: Manage Your Mesh

Manage Your MeshSecuring Public Cloud IoT APIs, and Building Private Mesh Trust Domains and Enclaves of Privacy to Integrate a Mesh of “Things” with Integrity & Availability

[email protected]: @iryanb

Page 2: Manage Your Mesh

APIs are for any “Thing”and they don’t always belong on the Internet

IoT Mesh

Page 3: Manage Your Mesh

Wiring Things to Arduinos

D1: 2.6 Volt RED LED & 330 Ohm Resistor

A0: 3V Volt Motor & 330 Ohm Resistor

Page 4: Manage Your Mesh

Tinkering With Things

Turn on BuzzerTurn on Motor

Page 5: Manage Your Mesh

Programming Things – Protect the Flash API

Page 6: Manage Your Mesh

The First Step to Managing your Mesh is with an API Gateway

Gateway

Security

Authentication

Protection

IAM Integration

Encryption

Mediation

Quality of

Service

Paging/Caching

Orchestration

Scripting

Public IoT Mesh

Private Mesh

ProTip:Customer Premise Equipment such as a WiFi Router or Cablebox should filter API traffic with an embedded gateway

Page 7: Manage Your Mesh

Logical Mesh Management Architecture

Private Mesh

https://iot.mymesh.net/mynet/status

or

https://skynet.im/status

https://p0st3r.broker.soa.com/v1/skynet/status

Public IoT Mesh

Page 8: Manage Your Mesh

Use Gateways in the Cloud & Privately

Private Mesh“Badge Readers”

Private Mesh“Department X”

Public Mesh

Page 9: Manage Your Mesh

Public, Private, Hybrid

Page 10: Manage Your Mesh

API Policy Configuration Templates

Operational Policies o API Consumer Application Security Policyo API DDoS & Malicious Code Protection o Aggregate Policyo Authentication Policyo Authorization Policyo ICAP Antivirus Integration Policyo Cache Policyo HTTP Security Policyo OAuth Security Policyo Paging Policyo Pipeline Policyo WS-Security Asymmetric Binding Policy o WS-Security Message Policyo WS-Security Supporting Tokens Policyo WS-Security Symmetric Binding Policyo WS-Security Transport Binding Policyo WS-Addressing Policyo WS-Auditing SOAP Message Policyo WS-Auditing SOAP Service Policyo WS-Auditing Service Policyo WS-Auditing Transaction Tracking Policyo XML Policy

Quality Of Service Policieso Bandwidth Quota Policyo Concurrency Quota Policyo Script Policyo Service Level Enforcement Policyo Service Level Policyo Throughput Quota Policyo Timeout Policy

Compliance Policies o Aggregateo Scripto WSI BPo XQuery

Page 11: Manage Your Mesh

Design Complex Process Orchestrations

Execute JavaScript on the API Gateway to Modify Request and Response Data and to invoke APIs with Branching conditions for Content Based Routing and API Response Aggregation

Page 12: Manage Your Mesh

Monitor the Mesh

Page 13: Manage Your Mesh

Manage Mobile App Access To Your Mesh with a Developer Portal

• A social developer engagement platform

• Integrated API documentation• App access provisioning and

monitoring• Integrated discussion and newsfeeds• Trouble ticket management• Search with full content indexing• API and App privacy and group

management – essential for B2B and partner APIs

• Federation to enable new business models

Page 14: Manage Your Mesh

Multisite MeshesInternet Zero Trust (I0T) Architecture

IoT Mesh

IoT MeshIoT Mesh

Page 15: Manage Your Mesh

Demo / Q&A

Page 16: Manage Your Mesh

Restrict IoT API Operations with Scope Mappings

Page 17: Manage Your Mesh

Manage Acceptance of API Legal Agreements

Page 18: Manage Your Mesh

Quickly Test API OAuth Client App Integration

Page 19: Manage Your Mesh

Verify Public Scope Tokens Cannot Access Private Scoped Operations

Page 20: Manage Your Mesh

Enforce SLAs to Throttle Requests Per Minute

Page 21: Manage Your Mesh

Manage IoT API Documentation with Swagger

Page 22: Manage Your Mesh

Generate Self-Service IoT API Usage Reports

Page 23: Manage Your Mesh

Generate Self-Service IoT API Usage Reports

Page 24: Manage Your Mesh

Generate Self-Service IoT API Usage Reports

Page 25: Manage Your Mesh

Generate Self-Service IoT API Usage Reports

Page 26: Manage Your Mesh

Generate Self-Service IoT API Usage Reports

Page 27: Manage Your Mesh

View Alerts and Participate in Discussion Boards