Helping Samsung ARTIK Strengthen the Security of its End-to-end Internet of Things (IoT) Platform

When Samsung launched its ARTIK IoT platform and SmartThings Cloud, one of the key things to consider was security. Security at the device level, safe data exchange, secure access to IoT platform services, and security of data storage.

Security in the age of IoT means new levels of complexity and risk. Unfortunately, most companies are not prepared to address the challenges of security every link of the chain, from device to IoT cloud.”

James Stansberry Vice President and General Manager, Samsung

The Solution

At the request of Samsung, Praetorian executed an end-to-end product security evaluation for the ARTIK IoT platform. The solution provided coverage across the entire Samsung ARTIK platform, including the hardware modules, embedded software, cloud APIs, web services, SDKs, and applications. Through the evaluation process, the platform was benchmarked against the latest version of OWASP’s Application Security Verification Standard (ASVS), which Praetorian extended to include hardware-related security control categories and verification test cases that are required for a holistic IoT product evaluation. Once the evaluation was completed and through the process of remediation, Samsung was able to strengthen the security across every aspect of its IoT platform, earning an “A” grade from Praetorian.

Why Praetorian?

We chose Praetorian primarily because of the domain expertise … IoT in our case and the security expertise in general. Praetorian had one of the best IoT domain expertise and the security expertise for various areas. What we liked was the fact that the team was very responsive, it had the relevant expertise, and more importantly, the collaborative nature of a resolving issue or improving the overall architecture. The back and forth discussions were very good.”

Vish Pai Senior Manager of Product Managment, Samsung

The Results

Working with Praetorian, Samsung ARTIK and its customers gained valuable security assurance from a trusted 3rd-party expert operating at the intersection of IoT and security. The security certification Samsung earned from Praetorian will help support its business growth across sales and marketing, while serving as a proof point for customers by showing that Samsung sees security as a key driver for accelerating innovation and moving to scale with confidence. Praetorian’s deep security expertise is supporting Samsung’s vision to accelerate the delivery of secure, interoperable and intelligent IoT products and services using data from billions of connected devices.

Security for the Next Wave of Innovation

What are the advantages to having an IoT platform evaluated for security risks? Consider that more and more companies are seeing security as an enabler of next wave innovation and a requisite for new technologies to meet full market potential. More customers are understanding security as a desirable feature when making purchasing decisions, and an effective secure development process also ultimately protects from brand and reputational damage. Praetorian acts as an extension of its customer’s teams, offering deep security expertise and enabling the creation of more secure products.

Ensuring a Superior Customer Experience

Praetorian helps to reduce or remove the variable of security risks and thereby the time it takes to resolve different types of security issues. Consequently, clients are able to deliver product to market faster and safer. Praetorian’s security expertise has helped Samsung build confidence across its ARTIK IoT customers. Samsung’s sales and marketing teams can now promote the ARTIK IoT platform with certainty because they know it’s among the most secure platforms out there for their users.