Securely Connecting to AWS IoT Core With The ATECC608B

Securely Connecting to AWS IoT Core With The ATECC608B

This course demonstrates the basics for connecting and authenticating with AWS IoT Core. (Nov 2021)

Cancel Apply

rate limit

Code not recognized.

About this course

This course demonstrates the basics for connecting and authenticating with AWS IoT Core.  The course starts with a basic introduction to the Microchip hardware security chips and also AWS authentication using TLS.  We next provide instructions on setting up an AWS account, creating and setting up an Ubuntu VM.

After the introduction and setup are complete the modules step you through connecting to AWS IoT Core.  We start by using the Ubuntu VM to create and send keys and certificates to AWS.  This allows you to see all the details of what is happening without anything being hidden in a security chip.  Also, we manually configure AWS IoT Core using the web GUI.  There are ways to automate adding devices/certificates to AWS which are not covered, but it is important to see first how it can be done by hand which makes learning the automate methods later much easier.

Once you have experienced connecting to AWS we start adding in additional complexity.  Next, in the Ubuntu VM we add usage of the ATECC608B Trust and Go chip which protects the secret key being used to authenticate with AWS.  Then we test an alternative authentication method with AWS called Just In Time Registration (JITR) which uses a certificate chain and your ATECC608 Trust Flex chip to authenticate rather than individual certificate method.

Finally, we move from the Ubuntu VM to a completely embedded example using a Cortex M0+ development board and our WiFi module to connect to AWS.

After seeing all these varying methods of connecting securely to AWS you should have all the knowledge you need to get your production embedded system to authenticate with your AWS IoT Core service.

Curriculum126 min

  • Syllabus
  • Class Introduction
  • What will be covered in this class
  • Introduction 1 min
  • Prerequisites 1 min
  • Agenda 2 min
  • Hardware 1 min
  • Introduction to the ATECCx08 Trust&Go and TrustFlex
  • What will be covered in this chapter
  • ATECCx08 Trust&Go 3 min
  • AWS Connection Security
  • What will be covered in this chapter
  • Why is it Secure? 4 min
  • Authenticate User vs Authenticate Device 2 min
  • Authentication Vizualized 6 min
  • Using a Certificate Authority 2 min
  • Virtual Machine Setup and Ubuntu Download
  • What will be covered in this chapter
  • Download Virtual Box 2 min
  • Attaching Ubuntu Image to VM, Startup and Install 3 min
  • Configuring Ubuntu to Communicate With An ATECCx08
  • What will be covered in this chapter
  • Overview 3 min
  • Ubuntu Configurations 6 min
  • AWS Account Setup
  • What will be covered in this chapter
  • AWS Account Creation 4 min
  • Install AWS CLI in Ubuntu 3 min
  • Sending your First Message - Overview 2 min
  • Sending Your First Message To AWS Core 7 min
  • Chapter Review 1 min
  • TrustPlatform Development Kit (TPDK)
  • What will be covered in this chapter
  • Programming the Development Kit for Communication 3 min
  • Using TPDS To Read TnG Device Certificate 3 min
  • Upload Device Cert To AWS Amount With CLI 2 min
  • AWS IoT Core Just-In-Time Registration using Ubuntu
  • What will be covered in this chapter
  • Overview 1 min
  • Create Certificates 5 min
  • Register a Certificate Authority (CA) 5 min
  • Attach Device Certificate 5 min
  • Creating and Programming TrustFlex Certificate onto a Trust Platform Development Kit (TPDK)
  • What will be covered in this chapter
  • Overview 1 min
  • Prepare Ressources 4 min
  • Move Configuration Files into Trust Flex Device 3 min
  • Program Trust Flex Certificate to Trust Flex Platform 5 min
  • Use TrustFlex Certificates to Connect to AWS for Just-In-Time-Registration
  • What will be covered in this chapter
  • Overview 1 min
  • Execute 6 min
  • Connecting TrustPlatform Dev Kit + WINC1500 to AWS IoT Core
  • What will be covered in this chapter
  • Overview 1 min
  • Setup 9 min
  • Configure Project 6 min
  • WINC Update 5 min
  • Load Device Certificate 6 min
  • Connect 2 min
  • Your Feedback
  • We need Your Feedback

About this course

This course demonstrates the basics for connecting and authenticating with AWS IoT Core.  The course starts with a basic introduction to the Microchip hardware security chips and also AWS authentication using TLS.  We next provide instructions on setting up an AWS account, creating and setting up an Ubuntu VM.

After the introduction and setup are complete the modules step you through connecting to AWS IoT Core.  We start by using the Ubuntu VM to create and send keys and certificates to AWS.  This allows you to see all the details of what is happening without anything being hidden in a security chip.  Also, we manually configure AWS IoT Core using the web GUI.  There are ways to automate adding devices/certificates to AWS which are not covered, but it is important to see first how it can be done by hand which makes learning the automate methods later much easier.

Once you have experienced connecting to AWS we start adding in additional complexity.  Next, in the Ubuntu VM we add usage of the ATECC608B Trust and Go chip which protects the secret key being used to authenticate with AWS.  Then we test an alternative authentication method with AWS called Just In Time Registration (JITR) which uses a certificate chain and your ATECC608 Trust Flex chip to authenticate rather than individual certificate method.

Finally, we move from the Ubuntu VM to a completely embedded example using a Cortex M0+ development board and our WiFi module to connect to AWS.

After seeing all these varying methods of connecting securely to AWS you should have all the knowledge you need to get your production embedded system to authenticate with your AWS IoT Core service.

Curriculum126 min

  • Syllabus
  • Class Introduction
  • What will be covered in this class
  • Introduction 1 min
  • Prerequisites 1 min
  • Agenda 2 min
  • Hardware 1 min
  • Introduction to the ATECCx08 Trust&Go and TrustFlex
  • What will be covered in this chapter
  • ATECCx08 Trust&Go 3 min
  • AWS Connection Security
  • What will be covered in this chapter
  • Why is it Secure? 4 min
  • Authenticate User vs Authenticate Device 2 min
  • Authentication Vizualized 6 min
  • Using a Certificate Authority 2 min
  • Virtual Machine Setup and Ubuntu Download
  • What will be covered in this chapter
  • Download Virtual Box 2 min
  • Attaching Ubuntu Image to VM, Startup and Install 3 min
  • Configuring Ubuntu to Communicate With An ATECCx08
  • What will be covered in this chapter
  • Overview 3 min
  • Ubuntu Configurations 6 min
  • AWS Account Setup
  • What will be covered in this chapter
  • AWS Account Creation 4 min
  • Install AWS CLI in Ubuntu 3 min
  • Sending your First Message - Overview 2 min
  • Sending Your First Message To AWS Core 7 min
  • Chapter Review 1 min
  • TrustPlatform Development Kit (TPDK)
  • What will be covered in this chapter
  • Programming the Development Kit for Communication 3 min
  • Using TPDS To Read TnG Device Certificate 3 min
  • Upload Device Cert To AWS Amount With CLI 2 min
  • AWS IoT Core Just-In-Time Registration using Ubuntu
  • What will be covered in this chapter
  • Overview 1 min
  • Create Certificates 5 min
  • Register a Certificate Authority (CA) 5 min
  • Attach Device Certificate 5 min
  • Creating and Programming TrustFlex Certificate onto a Trust Platform Development Kit (TPDK)
  • What will be covered in this chapter
  • Overview 1 min
  • Prepare Ressources 4 min
  • Move Configuration Files into Trust Flex Device 3 min
  • Program Trust Flex Certificate to Trust Flex Platform 5 min
  • Use TrustFlex Certificates to Connect to AWS for Just-In-Time-Registration
  • What will be covered in this chapter
  • Overview 1 min
  • Execute 6 min
  • Connecting TrustPlatform Dev Kit + WINC1500 to AWS IoT Core
  • What will be covered in this chapter
  • Overview 1 min
  • Setup 9 min
  • Configure Project 6 min
  • WINC Update 5 min
  • Load Device Certificate 6 min
  • Connect 2 min
  • Your Feedback
  • We need Your Feedback