DeviceOn
  • Get Started
    • ⬇️Resources Download
    • 💡About DeviceOn
      • Feature Highlight
      • Cloud Versions
      • Agent Versions
      • Security Architecture
    • 🛠️Installation and Deployment
      • Server (Standard)
        • Windows
        • Ubuntu
        • Azure Marketplace
        • AWS Marketplace
      • Server (Enterprise)
        • Azure Kubernetes
      • Agent
        • Windows
        • Ubuntu
    • ⏲️Version History
      • Version 5.3.12
      • Version 5.2.4
      • Version 5.1.2
      • Version 5.0.3
      • Version 4.7.2
      • Version 4.6.3
      • Version 4.5.5
      • Version 4.4.2
      • Version 4.3.10
      • Version 4.3.3
      • Version 4.2.3
    • ❓FAQ
      • General
      • Technical
  • SECURITY STANDARD
    • ISA/IEC 62443
    • Compliance
  • User Interface & Functions
    • 💻Server (Standalone)
      • Server Management Tools
      • Background Service
  • 🖥️Agent
    • User Interface
    • Background Services
  • 🏠Web User Interface
    • Overview
    • Device Management
      • Device List
      • Real-time Monitoring & Rule Engine
      • Remote Control & Diagnostic
      • Device Data
      • Device Group
      • Task Management (Batch Control)
      • Provision & Configuration
      • Anomaly Detection
    • App Management (OTA)
    • Container Management
    • System Setting
    • Dashboard
    • Event Logs
    • Account Management
  • LAB
    • 📦Application (OTA)
      • Package and Deploy your Application
      • Security Update for Windows
      • Upgrade DeviceOn Agent in On-premises DeviceOn Server
  • 🔧Out-of-Band
    • Intel AMT
      • Local Management (iAMT)
      • Cross-Network Integration (Open AMT)
    • IPMI
    • AMD DASH
    • Advantech iBMC
    • Advantech EdgeBMC
  • 🌐System
    • Update DeviceOn Server to the Latest Version
    • Enabling Automated Backups and Restores from Backup Archives
    • Enable Passive Mode on FTP Server
    • Enable HTTPs for DeviceOn Web Service
    • License Management
  • ⚒️Managed Devices
    • Set up Device Thresholds and Enable Trigger Notifications
    • Set up the Application Watchdog and Enable Trigger Notifications
    • Visualize Device Data through Grafana Dashboards
    • Onboard Multiple Devices at Once
    • Securely Connect to DeviceOn using x.509 Certificates
    • Enable Windows Lockdown Features
Powered by GitBook
On this page
  • Security Feature
  • Topics Isolation & Unique Device IoT Key
  • Use x.509 Certificates to Authenticate Edge Device
  • Use TPM + x.509 Certificates to Provide Higher Security
  • Securing Your Account with Two-Factor Authentication (2FA)
  • Enhancement
  • Application Update History
  • IAMT Library Update
  • Remote Desktop & Screenshot for Kiosk mode
  • Third-Party Updates

Was this helpful?

  1. Get Started
  2. Version History

Version 4.4.2

PreviousVersion 4.5.5NextVersion 4.3.10

Last updated 1 year ago

Was this helpful?

Security Feature

Topics Isolation & Unique Device IoT Key

Topics are specially handled in RabbitMQ. Topics are not public. Access control isolates an activated device to publishing/subscribing only to that device’s topics even though multiple devices will have subscriptions to identically named topics. A device is not allowed to subscribe/publish to another device’s topics.

Second, in IoT applications, command topics are used to control a device remotely and to acknowledge successful command executions. Unlike telemetry, command topics are not read-only. Commands are a back and forth workflow that can occur between the cloud and devices. Because commands are actionable messages, isolate the MQTT topic for command messages from telemetry topics.

Use x.509 Certificates to Authenticate Edge Device

DeviceOn supports x.509 certificate authentication for use with a secure TLS/SSL connection. The x.509 edge device authentication allows device to authenticate to servers with certificates rather than with a username and password.

Use TPM + x.509 Certificates to Provide Higher Security

The solution that we integrate on DeviceOn for Azure (Enterprise Edition), leverage Azure IoT Edge and TPM 2.0 to offer secure authentication and private key protected.

TPM, also known as , is a standard for securely generating and storing cryptographic keys. TPM also refers to a virtual or physical I/O device that interacts with modules that implement the standard. A TPM device can exist as discrete hardware, integrated hardware, a firmware-based module, or a software-based module.

Securing Your Account with Two-Factor Authentication (2FA)

Two-factor authentication (2FA) is an extra layer of security used when logging into websites or apps. With 2FA, you have to log in with your username and password and provide another form of authentication that only you know or have access to.

If you prefer to use an authenticator app for two-step verification, here are a few common authenticator apps that can be found in your mobile device app store:

  • Google Authenticator

  • Microsoft Authenticator

  • Authy

  • LastPass Authenticator

Enhancement

Application Update History

Provide app deployment records to view which device groups, devices the app is deployed to, success and failure history records, including execution time and detailed logs.

IAMT Library Update

Remote Desktop & Screenshot for Kiosk mode

For retail or digital signage scenarios, the current system users or devices are running in Kiosk mode. In order to allow administrators to operate remotely in this mode, we have improved Remote Desktop and Screenshot as well.

Third-Party Updates

  • OpenJRE (v1.8.0_292-1)

  • Tomcat (v9.0.50)

  • RabbitMQ (v3.8.19), Erlang 24

  • PostgreSQL (v10.17)

  • MongoDB (v4.2.15)

  • Grafana (v7.3.10)

Update to 15.0.2.1 to support new hardware platforms and chipsets.

⏲️
Intel® AMT High-Level API Module
ISO/IEC 11889