We are pleased to announce the latest version of Intertrust XPN (Explicit Private Networking). This release introduces support for AWS IoT Core MQTT broker as well as gateway and virtual gateway capabilities.
AWS IoT Core MQTT broker support
Due to its scalability, security, and reliability, AWS IoT Core is one of the most popular IoT cloud platforms and is widely adopted across many industries, including energy. MQTT is a lightweight, machine-to-machine network messaging protocol broadly used in both the industrial IoT and consumer IoT. By introducing support for AWS IoT Core with the MQTT protocol, XPN now allows developers to leverage the MQTT support provided by AWS IoT Core to seamlessly connect IoT devices and applications and benefit from the increased security that XPN brings.
XPN also can use AWS IoT fleet provisioning to create the IoT Core Things set by AWS and needed by the XPN client and services for integration. It also supports credentialing of XPN clients with iPKI certificates using the MQTT protocol, making it possible for XPN clients to not require HTTP access.
One feature of XPN that developers can also leverage is enhancing AWS IoT Core’s MQTT message delivery quality of service (QoS). As of the time of writing, AWS IoT Core does not support MQTT’s QoS Level 2 which specifies that messages will be delivered exactly once. XPN does include a replay protection function which discards any duplicate messages, if configured to do so. When the XPN replay counter is combined with AWS IoT Core’s MQTT QoS Level 1 support (specifies delivery of a message at least once) it essentially provides the same functionality as MQTT QoS Level 2.
By enhancing the security and efficiency of device management, the update to AWS IoT fleet provisioning and iPKI credentialing over MQTT simplifies the device onboarding process for XPN developers who work with large numbers of devices. This is particularly useful for managing energy applications such as smart grids and virtual power plants (VPPs) that work with large-scale fleets of devices.
These new MQTT-related features not only expand the connectivity options for XPN customers but also support more efficient fleet management and credentialing, all of which are critical for large-scale IoT deployments in energy and other sectors.
Gateway functionality support
Through an application included with the XPN Client SDK, XPN now supports gateway functionality, both as a dedicated device or a virtual gateway. To create a dedicated gateway, the XPN Client SDK can now be installed on a dedicated gateway device and used as a part of the XPN communications service. The XPN Server can also be configured to allow an IoT device with the XPN client software to act as a virtual gateway.
The gateway functionality allows XPN to securely pass data, commands, and other information across most networks, both to and from edge devices that don’t support the XPN communication protocol. These can include legacy devices used in SCADA systems or home IoT devices that don’t have the XPN client installed. Note: these devices do not need to be physically connected to the device acting as a gateway. The devices could potentially be spread across a geographical area and grouped together logically.
This release benefits XPN developers by allowing them to create XPN-compatible dedicated gateway devices as well as virtual gateways. Either option expands XPN’s ability to increase security over network links and act as a secure and interoperable service to a larger number of devices spread across complex network architectures. It also gives developers more flexibility to provide persistent data protection across domains composed of multiple types of devices, such as devices enrolled in a virtual power plant (VPP) application.
For gateway device manufacturers or others who are interested in adding XPN gateway functionality to their products, please go to the Intertrust Partner page to get started https://www.intertrust.com/partners/.
With this update, Intertrust continues its mission to increase the functionality of XPN to help developers leverage its capabilities for protecting data and devices in energy-related applications. For more information on XPN, please visit https://www.intertrust.com/xpn/.
