News

Microsoft Introduces Azure Sphere 'Guardian Modules' for Older IoT Devices

Microsoft described a new mechanism this week called "Guardian Modules" that enables the use of microcontroller units to secure connections for older Internet of Things (IoT) devices.

Guardian Modules are part of Microsoft's Azure Sphere technology, which is currently in preview. Azure Sphere consists of a chip with processing, memory and security capabilities, plus a Linux-based operating system that Microsoft introduced last year to support IoT devices.

In a typical scenario, an Azure Sphere microcontroller unit connects with the Azure Sphere Security Service. The service adds benefits such as device health-check capabilities and the delivery of automated updates.

It might be thought Azure Sphere microcontroller units would just be used in new or "greenfield" rollouts of IoT devices. However, Microsoft is contending that Azure Sphere can support older "brownfield" IoT deployments, too. It can be done when Azure Sphere microcontroller units serve as Guardian Modules for existing IoT devices. The Guardian Modules can permit older IoT equipment that was disconnected or "air-gapped," possibly for security reasons, to become connected units, adding new value, according to Microsoft's view.

When used as Guardian Modules, Azure Sphere microcontroller units will connect with the Azure Sphere Security Service on behalf of the brownfield IoT device. This arrangement "can protect the equipment from attack, ensure data is only transmitted between trusted cloud and device communications partners, and ensure the software of the module and the equipment remains intact and secured," Microsoft's announcement contended. The brownfield IoT device also can benefit by getting software updates from the Azure Sphere Security Service.

Microsoft's announcement didn't describe when Guardian Modules might be seen, nor when Azure Sphere will be ready for production environments. Guardian Modules, though, seem like a possible solution for a disconnected IoT world of devices.

In other IoT security news, Microsoft this week described co-authoring an "IoT Security Model Practitioner's Guide" (PDF) in conjunction with the Industrial Internet Consortium. The 129-page guide aims "to allow organizations to meet their scenario needs without over-investing in security mechanisms," Microsoft's announcement explained.

The guide isn't prescriptive on the specific security measures to adopt. Instead, organizations go through a process of first identifying an industry profile target they want to reach. Next, they assess their current security maturity state. By comparing between the target state with the current security state, areas where IoT security could be improved get highlighted.

The guide also includes three case studies as examples for improving IoT security. More information about the Security Maturity Model is described in an Industrial Internet Consortium Web presentation, which can be accessed here (requires sign-up).

About the Author

Kurt Mackie is senior news producer for 1105 Media's Converge360 group.

Featured

  • Microsoft Appoints Althoff as New CEO for Commercial Business

    Microsoft CEO and chairman Satya Nadella on Wednesday announced the promotion of Judson Althoff to CEO of the company's commercial business, presenting the move as a response to the dramatic industrywide shifts caused by AI.

  • Broadcom Revamps VMware Partner Program Again

    Broadcom recently announced a significant update regarding its VMware Cloud Service Provider (VCSP) program, coinciding with the release of VMware Cloud Foundation (VCF) 9.0, a key component in Broadcom’s private cloud strategy.

  • Closeup of the new Copilot keyboard key

    Microsoft Updates Copilot To Add Context-Sensitive Agents to Teams, SharePoint

    Microsoft has rolled out a new public preview for collaborative "always on" agents in Microsoft 365 Copilot, bringing enhanced, context-aware tools into Teams channels, meetings, SharePoint sites, Planner workstreams and Viva Engage communities.

  • Windows 365 Cloud Apps Now Available for Public Preview

    Microsoft announced this week that Windows 365 Cloud Apps are now available for public preview. This aims to allow IT administrators to stream individual Windows applications from the cloud, removing the need to assign Cloud PCs to every user.