Proving the Business Case for the Internet of Things

Nok Nok authenticates connected and standalone IoT devices

Steve Rogerson
February 18, 2020

Californian passwordless consumer authentication company Nok Nok Lab has announced the IoT SDK to provide multi-factor, strong authentication with support for both standalone IoT devices and those connected to a cloud service using the firm’s S3 authentication suite.
International Data Corporation estimates there will be 41.6 billion connected IoT devices generating 79.4Zbyte of data by 2025. These data hold valuable information about entry and egress times of employees at work, heart rate, car location, who is at the front door, transactions made through smart home speakers and more, all of which need strong security in a connected IoT device world.
As the deployment and use of cloud-connected, data collecting IoT devices continues, the use of username-password authentication methodologies rapidly becomes obsolete, because they are neither secure, scalable nor convenient.
The IoT SDK helps organisations provide flexible, easy-to-use and secure user-to-device authentication leveraging Nok Nok's legacy in providing passwordless customer authentication across mobile applications, mobile web, desktop web and smart watches. The IoT SDK:

  • Can run on existing microcontrollers.
  • Meets security industry standards and global regulatory requirements that specify no (shared) default passwords.
  • Provides a practical way to implement multi-factor authentication for devices that is more convenient than passwords.
  • Supports standalone and cloud connected devices.
  • Provides convenient and secure authentication with two-factor authentication and supports all biometric modalities.
"As organisations work towards adopting IoT-based solutions to combat the growing wave of breaches in the space, the sheer number of devices that have been introduced to the market has prevented them from keeping up," said Thad Peterson, senior analyst at the Aite Group. "Building a standard inside the device – like the Nok Nok IoT SDK – creates potential for industries like healthcare and manufacturing to secure increasingly remote work environments."
Additionally, as new IoT devices are introduced, the Nok Nok authentication infrastructure is said to lower the cost and complexity of integrating new use cases. The S3 platform in combination with the IoT SDK lets organisations address all their authentication use cases through a single developer API, including mobile applications, mobile and desktop web applications, applications for wearables, and now IoT devices, with support for Fido and other global standards.
"Today, many devices contain default passwords that are identical across product lines, and for authenticating users to devices," said Rolf Lindemann, vice president of Nok Nok Labs. “This is neither secure nor convenient. And, we are just now witnessing the first regulations banning such shared default passwords and promoting the use of individual default passwords or multi-factor authentication. As an inventor of Fido specifications, Nok Nok addresses the need for standards-based authentication, and we can bring this expertise to a new market and avoid repeating the weak username and password authentication practices of the past."
The S3 authentication suite can integrate into existing security environments to deliver proven, future-proof and standards-based passwordless consumer authentication.
Headquartered in Silicon Valley, California, the company’s customers and partners include DDS, Ericsson, Fujitsu, Hitachi, Intuit, Lenovo, MTrix, NTT Data, NTT Docomo, OneSpan, SoftBank and T-Mobile.