AWS IoT

Security and Identity

• Uses TLS 1.2
• Mutual authentication
• Each device has unique client certificate 
• Each device has a policy (what it is allowed to do)

Thing

• Representation of a device
• Attributes
• Certificate

Device Gateway

• Handles all the long-lived connections
• • Front-end for all AWS services
• Protocols
• • MQTT
  • • Lightweight TCP protocol (port 1883)
    • Designed by IBM
  • HTTP
• Brokering layer
• • Used to pass messages 
• Topic based architecture (publish/subscribe)
• • e.g. "building3/chillers/unit5"

Device Registry

• Tag devices with metadata
• • thingname
  • attributes (MD, SN, install_date)

Device Shadow

• Persistent device state
• You can program against this state
• • desired state
  • reported state
  • delta: difference between reported and desired states
  • • IoT sends the delta to the device
• It may be outdated

Rules Engine

• Transform messages based on rules
• Rule Structure
• • Attribute
  • Topic Filter
  • Condition
  • Action
• Examples
• • Insert into DynamoDB
  • Alert when coolant level on AC goes below 20%

Device SDKs

• C-SDK
• RTOS
• JS-SDK
• RaspberryPi
• Arduino SDK
• Mobile SDK (Android, iOS)