What is the Internet of Things?
The Internet of Things (IoT) is an emerging market trend impacting semiconductor devices, system OEMs, cloud service providers, and internet infrastructure companies. The trade press, accompanied by the types of companies mentioned above, has spilled a lot of ink on the subject, but this is typical in an emerging market with evolving requirements. For the purpose of this white paper, an IoT device or related service applies to the following characteristics.
• The device is connected via LAN, WLAN or WPAN.
• The device communicates certain localized information or requests for service to a network hub or through the network hub to a cloud-based service.
• The cloud accumulates data from the networked device or provides a service or capability to the networked device.
An IoT device can cover a great deal of capabilities and be part of a wide range of vertical markets. To break down the market segments of the Internet of Things, one can look at the requirements of the device in terms of:
• Sustained transmit and receive data rate required for the IoT device
• Type of data the IoT device is handling; for example, the IoT device can be generating or receiving video, audio or other content/data
• The level of processing at the edge of the network; for example, an accelerometer can measure acceleration and velocity, but local sensor data processing may convert that data into distance or energy
• The type of transactions between the device and the cloud; for example, whether the device provides any type of proprietary or sensitive data such as medical information which needs to be protected by HIPAA (Health Insurance Portability and Accountability Act of 1996) laws in the United States
Most IoT applications will be supported by wireless LANs – Wi-Fi (802.11n or 802.11ac) by 802.15.4 (Zigbee) and by Bluetooth.
Classes of IoT devices
IoT devices can be classified based on the type of data handled. It is useful to view the requirements for IoT devices in this way as a way of determining the device requirements from a power, connectivity and security perspective. We can classify the devices as follows based on the types of data handled:
• Machine to machine data
• Audio
• Audio/video
Table 1 shows the requirements of the IoT device based on the type of data handled. This table is for illustrative purposes and specific IoT device requirements may vary.
A continuum of capabilities
An IoT device connects a physical device to the cloud for services or further data processing. The device requires certain functional capabilities, and these capabilities will vary based on the application. There are a set of requirements that are needed by IoT devices, but the scope and the performance of those features will vary based on the application requirements. These feature set requirements are shown in Figure 1.
Power management
Power management is most important for mobile and other battery backed up devices. In a battery powered device, optimizing dynamic as well as static power is imperative. Power optimization is addressed in three different ways:
• Power management control
• IP implemented for low power
• Power aware software
• Power requirements and power management
• Processing power – both CPU and GPU
• Connectivity requirements
• Security requirements
• Cloud interface
Power management control should address the inclusion of voltage and frequency scaling. In order to integrate power management control into an IoT device, the system designer needs to identify the known power states for each of the major functional blocks within the device. Table 2 provides an example of power states that the blocks within an SoC that are valid.
IP blocks for IoT should be designed to include power control wrappers for power and frequency scaling as shown in Figure 2. IP providers, such as Imagination Technologies, can provide power control wrappers that will enable a functional IP block to be set to a valid power state within the device.
To implement IP for low power, the system designer must first identify the power management objectives. In the case of an IoT device, where the device is turned off for significantly longer time periods than it is turned on, leakage power will dominate the power consumption of the device. In the example of leakage power domination process selection, ie., where choosing a process technology with low leakage is an imperative, leaking can be further reduced by implementing the chip with high Vt devices and using power gating where ever possible.
If the device is turned on for the majority of time, as in IoT devices such as sensor hubs, dynamic power will dominate. To reduce the dynamic power, voltage and frequency scaling should be implemented as a part of the power management function. In addition, choosing processes and memory IP that can operate over low voltages, such as operating in the 0.7 V to 0.8 V regime in a 40nm process is highly desirable. A useful scheme to reduce power for a CPU is to close timing based on reduced values of supply voltage. This is commonly referred to as voltage scaling. For example, by operating a MIPS M-Class processor such as the M5150 CPU through voltage scaling at 0.95 V as opposed to the minimum voltage of 1.08 V results in a power reduction of 23%.
However, a lot of the dynamic power savings would be lost if the wireless communications systems operate inefficiently. Bluetooth Smart (also known as Bluetooth Low Energy or BTLE) is positioned for very low power wireless communications, but the power reduction comes at the cost of reduced range point-to-point communications, and low data rates. For applications requiring higher data rates (see Figure 1), Wi-Fi would be a suitable solution.
Imagination has developed a low power Wi-Fi offering including baseband called Ensigma ‘Whisper’. Low-power Wi-Fi is possible in Whisper by exploiting the low-power aspects within the 802.11 specification. Whisper can operate 802.11n over a single 2.4GHz band radio.
Security
A key requirement for IoT applications is security. IoT opens up networks to a variety of threats as more and more devices are connected to a network and eventually to the cloud. Figure 3 shows an example of an IoT device being used for home automation that is connected to a home network with possible threats to the network security.
1) For more information, see the article on www.forbes.com/sites/leoking/2014/07/09/smart-home-these-connected-led-light-bulbs-could-leak-your-wi-fi-password/
2) For more information, see http://www.cryptography.com/public/pdf/DPA.pdf
At the edge of the network, as multiple IoT devices are added, the potential threats are greatly increased. The threats to networks with connected devices are documented and are newsworthy. The LifX brand of connected LED bulbs have been reported as being able to leak wireless security information.1)
IoT devices must be capable of providing a robustly secure environment. Security is achieved in the following ways:
• Secure boot
• Secure code update
• Key protection
• Tamper resistance
• Access control of secure resources
• Secure DMA (Direct Memory Access) with data encryption for critical functions
• Session authentication
Secure boot
When the IoT device is powered up and begins execution, the system must start execution with trusted code at boot time. In an IoT system, the trusted execution can be accomplished by having a secure CPU run trusted code on-chip. This trusted code must have its credentials secured from the time the credentials leave the secured credentialled vault to the time the code is implemented on the IoT device. The secure boot code must not be capable of being tampered. Imagination has developed and licenses IP that provides the secure boot feature required in IoT systems.
Secure code update
An IoT device can be hacked by corrupting the embedded software with malware. To protect against this type of attack requires the firmware to be properly credentialled and downloaded to the IoT device in a secure manner. The secure update, which is available as an intellectual property block from Imagination, is accomplished by means of including the hardware required on the IoT device to be encapsulated within a cryptographic boundary. The updated firmware is encrypted and downloaded to the IoT device where it is decrypted and the credentials are checked. This is an important use case in consumer devices where software updates are provided for bug fixes (including security improvements) as well as adding additional functional capabilities to the IoT device.
Key protection
Private keys consist of a set of addresses of OTP (One Time Programmable) memory which can be programmed with keys for encryption, authentication and device identifier. The memory needs to be configured on-chip so that:
• OTP is not accessible via external pins of the IoT SoC device
• OTP memory contents may be encrypted
• OTP memory contents are accessible only by ‘trusted processes’ running on the application processor
Tamper resistance
Simple Power Analysis (SPA), Differential Power Analysis 2) (DPA), and High Order Differential Power Analysis are techniques whereby analysis of the power and other electrical emissions from a semiconductor device can provide information about the encryption techniques and codes used. These emitted signals are a point of attack that require countermeasures. These attacks are addressed to the CPU and associated hardware that runs encryption and decryption. MIPS M-Class CPUs are tamper resistant by implementing the following countermeasures including user-defined scrambling of the cache memory address and data and injection of random pipeline stalls.
Access control of secure resources
In an IoT system where a device is sending proprietary data or is engaged in commerce, the software processes running on the device are required to have secure access to peripherals and memory. This is needed to maintain security and to ensure malware cannot access the same information in memory or on peripherals as may be required by the secure processes. Consider the following example where a medical device may measure certain data on an individual, where such data is controlled by the HIPAA laws in the United States.
Also this example assumes that a second process is running that is communicating with a medical insurance company to validate insurance. In this case there may be multiple processes running on the CPU, but there are two processes running that are required to be secure and isolated. In this type of situation, virtualization is required in order to isolate the hardware resources committed to each of the secured processes running on the CPU, as illustrated in Figure 4. MIPS processors support hardware virtualization.
Secure DMA
DMA transfers to memory in a secure IoT device must be encrypted. The DMA engine and associated peripherals and memory should be encapsulated with in an encryption boundary so that any transfers into or out of the memory boundary will be encrypted or decrypted respectively.
CPU processing performance requirements
Architectural considerations for the CPU performance for an IoT device will depend on the scope of what the CPU needs to do, as well as hardware security provisions contained within the hardware of the CPU. For example, for an embedded controller IoT sensor hub system, the following performance requirements would be required.
In Table 3, a MIPS M5150 CPU, which includes hardware virtualization, is capable and provides 70 DMIPS/MHz to run the sensor interpretation code, the Wi-Fi stack, and internet communications with a clock speed of about 100 MHz. Most IoT devices will be designed with additional CPU capability to support additional features to be added via software upgrades. As a result, the performance of the CPU will need to be scalable, and may also include special pipeline stages to include special purpose processing that is deemed necessary in order to be done locally. The CPU chosen for a specific IoT application must not only support the security features as explained earlier, but must also be implemented in a way so that it is scalable in performance to support higher clock frequencies. For certain applications, it is also beneficial for the CPU to support hardware multi-threading, as in CPUs such as the MIPS I-Class processors.
Wireless communication
Typical wireless IoT devices will be enabled by specific standards. The standards deployed will depend on (1) the security requirements needed, (2) the type of network topology to be supported (eg., IP, mesh), and (3) the data rates to be supported. The diagram below provides a classification of IoT network requirements based on sustained data rates. Since Wi-Fi is pervasively deployed today, most IoT applications will support Wi-Fi.
Also, for LED lighting and applications that may span large geographic areas, ZigBee networks are used and may be present in IoT systems alongside Wi-Fi. Aside from HD video streaming applications such as those used in home entertainment or security video monitoring, 802.11n and 1×1 would provide sufficient bandwidth. The 802.11 networks will use dual band 2.4 GHz and 5.5 GHz frequencies.
For lower power and lower cost implementations, 802.11n can be supported by a single band 2.4 GHz radio. The lower frequency bands are more desirable since the RF transmission provides a greater range for a given power level output. By 2016, 802.11ah will become available for low data rate/low power IoT systems with Wi-Fi. This standard will be based on the 930 MHz frequency band.
Cloud interface
In an IoT system, the provision of services by the cloud will depend on several conditions. Security is a concern for device-to-cloud data transactions. An IoT device will need to support data encryption to the cloud via TLS or HTTPS. The software stack in the IoT device will need to support these security components.
In addition, cloud based communication can use more lightweight signalling such as COAP 3) (RFC-7252) and MQTT 4).
Compared to HTTP, these lightweight signalling standards are desirable since they will (1) provide a reduced overhead for communicating to the cloud and (2) as the data communicated is reduced, data traffic on the internet will be reduced compared to using HTTP.
In addition, the different standards bodies have emerged to support IoT are aiming to develop software stacks that can be used across platforms.
Thread
The Thread Group (www.threadgroup.org) has emerged in the development of a software stack that focuses on networks that are using 802.15.4 wireless mesh networks.
A key benefit of a mesh network is that if any device on the network fails, the network can continue to connect and communicate to other devices on the network.
Alljoyn
The Allseen Alliance (www.allseenalliance.org) is a nonprofit consortium that is dedicated to driving the widespread adoption of products, systems and services that support the IoT with an open, universal development framework, initially based on the AllJoyn open source project.
Software requirements for IoT
Standards bodies, communications standards and security requirements all impact the elements that are needed for an IoT software stack contained in an IoT device SoC.
Cloud client software elements such as those supporting Imagination’s FlowCloud device-to-cloud technology, are added to the IoT device software stack. These elements support specific cloud communications requirements as may be required by the cloud service provider.
Figure 6 is an example of a software stack required to support an IoT device.
3) For more information, see http://coap.technology/
4) For more information, see http://mqtt.org/
Summary
As IoT devices become ubiquitous in networked systems, the SoC providers for these systems will differentiate their products based on security, power management, scalable computational performance and compliance to industry driven standards.
Wireless communications will become integrated into the main SoC not only to reduce cost, but also to reduce power consumption and improve system performance. The inclusion of wireless connectivity and its associated software stacks, integrated capabilities to do some local analytics, and security will increase the demand for computational power within the SoC device.
Security at the device and cloud level is required for IoT devices, especially those that are handling sensitive data such as medical data as these devices are communicating sensitive data to the cloud.
Power management is a significant issue for IoT devices that are mobile or are required to be powered by small batteries for an extended period of time. The IP used in such devices must be designed for low power and be easily integrated into SoC level power management schemes.
Imagination’s CPU, GPU, communications, video and imaging IPs are designed to meet the most aggressive requirements and opportunities for device differentiation in IoT applications ■
Imagination Technologies Limited
enquiries@imgtec.com
www.imgtec.com
UK t: +44 1923 260511
US t: +1 408 530 5000