IoTConnect provides three types of Device Authentication options.
Token-based device authentication
It is one of the simple ways to authenticate any IoT device. Here, IoTConnects generates SAS token using symmetric keys provided during device enrollment; SAS token that have a hashed signature which will be used while connecting to the IoT Hub. You can use this authentication type while doing poc, for production its not advisable to use this authentication method
Symmetric key-based device authentication
Unlike Token base authenticate in which IoTConnect issue SAS token, in Symmetric based authentication Device is responsible to generate SAS token using symmetric keys provided during device enrollment; SAS token have a hashed signature which will be used while connecting to the IoT Hub. You can use this authentication type while doing poc, for production its not advisable to use this authentication method
X.509 Certificates
X.509 certificate PKI is used to authenticate devices to IoT Hub and secure the IoT Hub endpoints. The process begins with registering and uploading X.509 certificates to an IoT Hub which will be used for authentication of IoT devices to the IoT Hub whenever they connect. This authentication process saves you from generating private secure keys for every IoT device. With X.509 CA feature, you need to register the certificate just once, and then use it to connect and authenticate as many devices as you want.
Learn more about how to onboarded your X.509 CA certificate device on IoTConnect.
Trusted Platform Module (TPM)
Trusted Platform Module or TPM is another popular way to authenticate devices. It is a type of hardware security module (HSM) where a chip is injected into the motherboard of a device that stores cryptographic keys for authentication purposes. The public portion of the endorsement key contained in the TPM is used to recognize the genuine nature of a TPM and authenticate the device using device provisioning (DPS) service.
Learn more about how to onboarded your device with the TPM Authentication method.
IotConnect Platform recommended to use X.509 certificate and TPM based authentication for production use.
Next step
Data Flow & Public Method Learn how Data Flow & Public Method are on Device SDK.