As one of the main founders of the Charter of Trust initiative, cyber security is fundamental for Siemens Energy. In order to securely connect Sensformer® IoT devices to the cloud service, the devices are equipped with device specific private keys and corresponding certificates during production. These certificates are issued by Siemens Energy’s Product PKI Services, which are hosted in Siemens Energy’s highly secure Trust Center. Streamlined processes ensure that the issued certificates, which confirm that the device is a specific Siemens Energy device with a dedicated serial number, are provided to the correct devices. The device’s private key is used for client authentication when establishing a secure TLS (Transport Layer Security) connection between the Sensformer® IoT device and the cloud service. In addition, it’s possible to automatically register the devices at the cloud service.
After successful registration and client authentication with the device’s private key, communication between device and Siemens Energy cloud service is TLS protected and can therefore be neither spoofed nor modified during transmission.