June 27, 2017 | Written by: James Murphy
Share this post:
Security enhancement for IoT Platform
We will be increasing the security of the Watson IoT Platform by enabling Transport Level Security (TLS) by default for Watson IoT Platform Organizations. Please note this update affects the following regions: US South, United Kingdom, and Frankfurt.
This enhancement means the TLS will be the default connection security setting for devices and gateways connecting via MQTT to new Watson IoT Platform organizations.
Why add TLS as default? Why change now?
We are continually reviewing and enhancing the security around the Watson IoT Platform. We considered that the Organizations should be configured to be as secure as possible when they are instantiated, but also providing the flexibility for our customers to modify the levels of security to align to a level of risk that is acceptable to them.
Before this enhancement, devices could connect to a Watson IoT Platform Organization unencrypted. This was to cater to low-powered IoT devices, which might not be able to spare the processing power to encrypt or decrypt transmissions. We accept that there might still be customers who face this challenge. Customers have options to address the scenario where they have devices that cannot support TLS.
Check out the Watson IoT Platform blog post to find out more about these changes, why we have made them and how you can configure your Watson IoT Platform Organization according to your needs. You can also refer to the Watson IoT Platform blog for notifications of when these enhancements are live.