Skip links
DEMO
Login
  • Overview
    Overview

    KEYNOA uses unique identities to make the oboarding of devices secure and efficient. Get to know our concept.

    Test now
    Eval kit

    Test the benefits of digital identities for your value chain for four weeks free of charge and optimize your processes.

    KEYNOA Engine

    Get to know KEYNOA Engine and produce devices with unique identities to ensure IT security.

    KEYNOA Features

    KEYNOA supports you in integrating and managing devices with the latest IT security standards in various infrastructures.

    Knowledge

    Gain knowledge on various topics such as security by design, PKI and digital identities.

  • Manufacturer
    Overview

    KEYNOA uses unique identities to make the onboarding of devices secure and efficient. Get to know our concept.

    Test now
    Eval kit

    Test the benefits of digital identities for your value chain for four weeks free of charge and optimize your processes.

    Deployment for device manufacturers

    With a focus on state-of-the-art technology, we support device manufacturers in meeting the necessary safety standards.

    Consulting for device manufacturers

    Consulting expertise for comprehensive device security and smooth onboarding.

    Article: SPS Magazine

    Find out in our article in SPS magazine how components can be prepared for the digital age with KEYNOA.

    Podcast: IPH

    In the podcast "Praxisnah" from the Institut für Integrierte Produktion Hannover we talk about how companies can use the "Internet of Things" securely.

  • Users
    Overview

    KEYNOA uses unique identities to make the onboarding of devices secure and efficient. Get to know our concept.

    Compatible devices

    Order devices that are compatible with KEYNOA and start scaling your projects today.

    Users

    Automate repetitive tasks when configuring devices and deliver confidence across the entire value chain.

    Consulting & deployment Integrators

    Consulting & deployment Operator

    Article: IT&Production

    Find out in IT&Production magazine how KEYNOA can be used to integrate many IoT devices quickly and securely.

    Article: Industrial automation

    In the "5 questions for..." section, Sven Uthe (CTO DEVITY) explains why digital identities are the driver for hyper-automated infrastructures.

  • Services
    Demo

    Practical insights: Discover our demo for an immediate impression of KEYNOA.

    Test now
    Eval kit

    Test the benefits of digital identities for your value chain for four weeks free of charge and optimize your processes.

    Services

    With a team of experts, DEVITY supports and advises you in the scaling of large-scale projects.

    Consulting

    We are experts in IT security in the IoT. You too can benefit from our many years of experience in research and industry.

    CyberRiskCheck

    Not sure whether your IT infrastructure is adequately protected? Do the cyber risk check with DEVITY now.

    Knowledge

    Gain knowledge on various topics such as security by design, PKI and digital identities.

    Article: MaschinenMarkt

    Find out why digital identities are a key element of IT security and help protect against cyber attacks.

  • About Us
    References & Partners

    Partnerships and success stories: Our daily collaboration for a secure networked world.

    Demo

    Practical insights: Discover our demo for an immediate impression of KEYNOA.

    About us

    Find out more about what drives DEVITY and what our vision and mission are.

    Career

    You share our passion for IT security and the latest technologies. Get started with us now!

    Contact

    Would you like to find out more? Contact us for inquiries and further information.

    Blog

    Get a comprehensive insight into the latest trends in digital identities for the IoT.

    Knowledge

    Gain knowledge on various topics such as security by design, PKI and digital identities.

    Technical article

    Click here for the publications and scientific articles from DEVITY's research area.

Published in: IT security

The invisible threat: Why industrial IoT security needs a PKI

The invisible threat: Why industrial IoT security needs a PKI

The invisible threat: Why industrial IoT security needs a PKI

What risks arise from inadequate IoT security?

In industrial applications such as factories and production facilities, IoT devices play a central role in monitoring, controlling and optimizing processes. The impact of critical infrastructures and cyberattacks on IoT devices is particularly serious. Unauthorized intrusion or manipulation of IoT devices can not only lead to data loss and financial damage, but also endanger the safety of employees.

In a typical attack, hackers also gain access to the OT via IT. The consequence of this is that the malware paralyzes production. Databases are often encrypted in order to earn the attackers a ransom. After the attack, the systems have to be examined in detail by forensic experts. The costs of production downtime and system restoration are high, as is the loss of trust and reputational damage.
The industry standard IEC 62443, which prescribes the use of digital certificates, is intended to provide a remedy. A public key infrastructure offers a secure solution for creating and managing the required certificates.

What is a Public Key Infrastructure (PKI) in detail?

A Public Key Infrastructure (PKI) is a system that consists of both software and hardware and offers the possibility of generating, distributing and verifying digital certificates. In other words, a PKI describes the organizational and technical infrastructure for managing digital certificates over their entire lifespan in order to ensure their security and trustworthiness. A PKI is of enormous importance for a modern information and knowledge society and supports the establishment of centralized trust services and modern key management.

What are the most important components and elements of a PKI?

A Public Key Infrastructure (PKI) is a complex system that requires various components to function effectively. These include digital certificates, certification authorities (CAs), subordinate registration authorities, directory services for certificates, certificate revocation lists, validation services and many more.

A certification authority (CA) is a trustworthy institution or organization in a public key infrastructure (PKI) that is responsible for issuing and managing digital certificates. It verifies the identity of the certificate holder and binds the public key to the identity.
A digital certificate is an electronic file that is used in a Public Key Infrastructure (PKI) to confirm the identity of a person, device or organization and to link their public key. It serves as a digital attestation or electronic ID for the holder of the certificate.

How does a PKI work?

Each IoT device generates a key pair consisting of a public and a private key. The private key remains secret and is kept safe by the participant, while the public key is accessible to others.

To establish the connection between the public key and the identity of a subscriber, the subscriber applies for a digital certificate from a certification authority (CA). The application contains information on the identity of the subscriber and their public key.

The certification authority (CA) then verifies the identity of the applicant using secure authentication methods before issuing the certificate. Once the identity has been successfully verified, the certification authority signs the certificate with its private key. This confirms the authenticity of the certificate and enables other participants to verify the certificate using the certification authority's public key.

The signed certificate is sent to the subscriber and can be used by them in their area of application. The certificate contains the subscriber's public key and information about the certification authority that issued the certificate.
If a subscriber wishes to establish communication with another subscriber, they check the certificate of the communication partner. To do this, they use the public key of the issuing certification authority to verify the signature of the certificate and confirm the identity of the communication partner. Once the identities have been confirmed, the participants can exchange encrypted messages using the public keys to ensure confidentiality. In addition, digital signatures can be used to ensure the integrity of the transmitted data and confirm the authenticity of the sender.

What advantages and added value does a PKI offer?

A PKI is an indispensable system in industrial automation and offers a range of benefits that help to ensure digital security:

Authentication

A PKI enables secure authentication of users, devices and organizations. By using digital certificates, identities can be verified and the authenticity of a device can be ensured.

Confidentiality

Data is securely encrypted using a PKI. Data can be encrypted by exchanging public keys. Only authorized devices and persons have access to decrypt and view the data. In this way, data and information remain confidential.

Integrity

With the help of digital signatures, the PKI ensures that data cannot be changed unnoticed during transmission or storage. A digital signature created with a private key can be verified with the corresponding public key to ensure data integrity.

Scalability

A PKI can be easily scaled to support a large number of users, devices and organizations. It enables the efficient management and provision of certificates in complex networks and environments.

WordPress Cookie Notice by Real Cookie Banner