developing solutions for iot

8/9/2019 Developing Solutions for Iot

1/12

IntroductionThe world is undergoing a dramatic transformation, rapidly transitioning from isolated systemsto ubiquitous Internet-enabled things capable of generating data that can be analyzed toextract valuable information. Commonly referred to as the Internet of Things (IoT), this newreality will enrich everyday life, increase business productivity, improve government e ciency,and the list goes on.

Intel is working with a large community of solution providers to develop IoT solutions for awide range of organizations and businesses, including industrial, retail, automotive, energy,and healthcare industries. The solutions generate actionable information by running analyticsoftware and services on data that moves between devices and the cloud in a manner that isalways secure, manageable, and user-friendly.

Whether connecting a consumer wearable device, vehicle, or factory controller to the Internet,everyone wants it to be quick and seamless. This paper describes how Intel products andtechnologies are helping make this a reality by providing fundamental building blocks for arobust ecosystem that is developing end-to-end IoT solutions.

Building Blocks for Thing to Cloud InnovationThe IoT vision is to create opportunities to transform businesses, peoples lives, and the world in

countless ways by enabling billions of systems across the globe to share and analyze data overthe cloud. With these capabilities, IoT solutions can improve medical outcomes, create betterproducts faster, lower development cost, make shopping more enjoyable, or optimize energygeneration and consumption. Moving forward, nearly every device will need built-in, secure,interconnected intelligence. Similarly, the supporting network and cloud infrastructure must beenhanced to better protect data, manage devices, and perform data analytics.

WHITE PAPERInternet of Things

PoweringBusiness

Transformation

The Internet of Things Will Transform Many Industries

Retail Transportation CommunicationsMedicalIndustrial Energy

Developing Solutions for theInternet of ThingsIntel products, solutions, and services are enabling secure and seamlesssolutions for the Internet of Things (IoT).

Cloud

Things

Gatewaysatalytics


2/12

Table of ContentsIntroduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1Building Blocks for Thing to Cloud Innovation . . . . . . . . . .1IoT Value Chain . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .3Intel Building Blocks for Things . . . . . . . . . . . . . . . . . . . . . . . . .3

Processors and Chipsets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .3 Operating Systems . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .4 Data and Things Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .4 Network Connectivity . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5

Intel Solutions for Gateways . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6Intel Solutions for Network and Cloud . . . . . . . . . . . . . . . . . .7

Computing Platforms and Operating Systems . . . . . . . . . . . .7 Development Platforms . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .8 Network Element Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9 Data Center Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9 Network Connectivity . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9

Services-Creation and Solutions Layers . . . . . . . . . . . . . . . 10 Exposing and Managing Data to Enable New Services . . . 10 API Management Holds the Key for IoT . . . . . . . . . . . . . . . . . 10 A Platform Approach to IoT Management and Control . . 10 API Management Solutions for IoT . . . . . . . . . . . . . . . . . . . . . 11

The Internet of Things Starts with Intelligence Inside 12

gure 1. IoT Solutions Join Together a Wide Variety of Systems

IoT architecture can be simplistically represented by fourcategories of interconnected systems: things, gateways,network and cloud, and services-creation and solutionslayers, as depicted in Figure 1. With extensive expertisespanning all these areas, Intel has a unique perspective onwhat is required to ensure reliable and secure bi-directionalcommunication amongst these systems:

Things

Today there are billions of things found in commercialand industrial settings, in the home, and in the hands ofmobile users. Already, cars, device sensors, wearables, andmobile phones are connecting directly through broadband

wireless networks and accessing the Internet. An IoT solutionrequires things to either be intelligent so they can lter andmanage data locally, or connect to gateways that provide thisfunctionality.

Examples:

o Mobile: smart phones, tablets, GPS systems, wearables

o Home: security alarms, energy consumption monitors,lighting switches, thermostats

o Industrial: smart buildings, factory automation, energygrids, eets

Gateways

A major barrier to realizing the full promise of IoT is that

around 85 percent 1 of existing things were not designedto connect to the Internet and cannot share data with thecloud. Addressing this issue, gateways for mobile, home, andindustrial act as intermediaries between legacy things andthe cloud, providing the needed connectivity, security, andmanageability .

Network and CloudNetwork Infrastructure: The Internet is a global systemof interconnected IP networks that link computersystems together. This network infrastructure,comprising routers, aggregators, gateways, repeaters,

and other devices that control data tra c ow, alsoconnects to telecom and cable networks (e.g., 3G, 4G/LTE) operated by service providers.

Data Center / Cloud Infrastructure: Data centers andcloud infrastructure contain large pools of virtualizedservers and storage that are networked together.Supporting IoT, this infrastructure runs applicationsthat analyze data from devices and sensors in order togenerate actionable information used for services anddecision making.

Services-Creation and Solutions Layers

Getting to market faster and realizing the full value of IoThinges on orchestrating the assembly and analysis of datafrom legacy systems and existing business assets. Helpingprovide this capability, Intel brought together industry-recognized leaders in application programming interface(API) management software, including:

o Mashery*: Pioneer of API management with amassive API developer community and marketplace

o Aepona*: Leading provider of API and monetizationsolutions for service providers

Developing Solutions for the Internet of Things White Paper

NETWORK AND CLOUD

Cloud

Infrastructure

HINGS GATEWAY

Network

Infrastructure

SERVICES-CREATION AND SOLUTIONS LAYER

2


3/12

Figure 2. The IoT Value Chain Contains Many Types of Solution Providers

IoT Value ChainAs explained in the previous section, IoT touches a widevariety of systems, requiring the IoT ecosystem to delivera broad assortment of capabilities, shown by the valuechain in Figure 2. The circles contain relatively standardcomponents, starting with ingredients , such as processors,modules, operating systems, and security software. Originaldesign manufacturers (ODMs) use these components tobuild boards that end up in devices delivered by originalequipment manufacturers (OEMs).

Figure 3. Intel Provides Unique Performance Scalabilit y with FourProcessor Families

B o a r

d s

Ingredients(Processors/OSes)

Boards

Devices

Cloud Services

Network Services

Industry-Specific Solutions

SYSTEMS

INTEGRATORS

APPLICATIONS

DATA

ANALYTICS

Intel QuarkProcessor

TM Intel AtomProcessor

TM Intel CoreProcessor

TM Intel XeonProcessor

Performance

Next, these rather generic products are turned into industry-speci c solutions when systems integrators incorporateapplication and data analytics software , among otherspecialty elements. Network services , like mobile broadband,provide the connectivity between devices and cloud services ,which use analytics and application software to turn rawdata into useful information.

The Intel product and technology portfolio provides ODMs,OEMs, systems integrators, application developers, andnetwork and cloud service providers with fundamentalcapabilities for an end-to-end IoT solution, as described inthe next four sections.

Explore the Intel ecosystem at every level of the IoT valuechain.


Intel Building Blocks for Things

This section describes Intel solutions spanning processors,chipsets, operating systems, security solutions and networkconnectivity.

Processors and Chipsets

An end-to-end strategy requires making things moreintelligent and secure so they can reliably lter and managedata locally. Analytics, encryption, and new applicationrequirements drive the need for high levels of power-optimized performance.

Engineers designing things can choose from four families

of Intel processors based on backwards-compatiblearchitecture that deliver scalable performance (Figure 3),ranging from the energy-e cient Intel Quark SoC X1000to high-performance Intel Xeon processors. Intel computingplatforms span a broad range of price-performance pointswith a common set of code that works across processors.

Intel Quark SoC X1000 is a family of low-power, system-on-chips (SoCs) that is ideal when lower power and size

take priority over higher performance. These 32-bit,single-core Intel architecture-compatible CPUs operateat speeds up to 400 MHz.

Intel Atom processor E3800 product family provideslow power and thermally-e cient applicationperformance in small form factor devices. The processorsfeature enhanced media and graphics performance, errorcorrecting code, industrial temperature range, built-insecurity, and integrated image signal processing.

33
http://www.intel.com/content/www/us/en/internet-of-things/ecosystem.htmlhttp://www.intel.com/content/www/us/en/processors/quark/intel-quark-technologies.htmlhttp://www.intel.com/content/www/us/en/intelligent-systems/bay-trail/atom-processor-e3800-family-overview.htmlhttp://www.intel.com/content/www/us/en/intelligent-systems/bay-trail/atom-processor-e3800-family-overview.htmlhttp://www.intel.com/content/www/us/en/intelligent-systems/bay-trail/atom-processor-e3800-family-overview.htmlhttp://www.intel.com/content/www/us/en/processors/quark/intel-quark-technologies.htmlhttp://www.intel.com/content/www/us/en/internet-of-things/ecosystem.html


4/12

Figure 4. The Small Form Factor 4th GenerationIntel Core Processor Integrates CPUand Chipset in One Package

Figure 5. The Amount of Malware Increased More Than Three-Fold inThree Years

Source: McAfee* Labs Threats Report, Fourth Quar ter 2013

Intel Core processor product family delivers

exceptional compute, graphics, and media performance,along with enhanced security and I/O exibility. Designedfor small form-factor applications, the 4th generationIntel Core processor (U-processor line), shown in Figure4, uses a multi-chip package (MCP) that integrates alow-power CPU and platform controller hub (PCH) onto acommon package substrate.

2011 2012 2013

Q1 Q2 3Q1 Q4 Q1 Q2 3Q1 Q4 Q1 Q2 3Q1 Q4

50 million

100 million

150 million

200 million

0 million

Total Malware

Intel Xeon processors are designed for compute-intensive applications that demand the highest availableperformance, combining multi-core performance andexceptional compute density with hardware-basedmanageability, security, virtualization, and powermanagement.

Operating Systems

Intel processors run a variety of operating systems from theLinux* community, Microsoft*, Google*, and the followingo erings from Wind River*:

Wind River VxWorks* is the world's leading commercialreal-time operating system (RTOS) and has been servingthe needs of embedded systems of all shapes and sizesfor more than 30 years.

Wind River Linux is the leading commercial embeddedLinux platform and the rst to bring the advantages

of open source without the risks to companies in allindustries.

Wind River for Android * o ers a portfolio of software

and testing products to support rapid and high-qualityplatform and application development for devicesrunning the Android operating system.

Learn more about Wind River operating systems .

Data and Things Security

Organizations are under increasing pressure to protectsensitive data, and prevent device theft and malwareattacks. Global regulations protecting personally identi ableinformation (PII) are becoming more stringent and breachesmore costly to organizations that fail to comply. In addition,valuable intellectual property (IP) that creates a competitive

advantage is also at risk when data records or devices arestolen or accessed by unauthorized individuals.

The cybercrime community has never been busier, as seen inFigure 5 showing the McAfee* Labs zoo grew by 15 percentfrom the third to fourth quarter of 2014 and now containsmore than 196 million unique malware samples.

The potentially large footprint of an end-to-end solutionfor IoT can increase an organizations exposure to securitybreaches. Helping to mitigate risk, Intel and its subsidiary,McAfee, o er a wide range of security products that canbe deployed on devices, gateways, and network and cloud

infrastructure, such as: McAfee Embedded Control maintains the integrity

of devices, gateways, and servers by allowing onlyauthorized code to run and authorized changes to bemade. It automatically creates a dynamic whitelist of theauthorized code on the system. Once the whitelist iscreated and enabled, the system is locked down to the


4
http://www.mcafee.com/us/resources/reports/rp-quarterly-threat-q4-2013.pdfhttp://www.intel.com/content/www/us/en/intelligent-systems/shark-bay/4th-gen-core-processor-based-platforms-brief.htmlhttp://www.intel.com/content/www/us/en/intelligent-systems/previous-generation/intel-xeon-embedded-processors-broad-product-line-for-embedded.htmlhttp://www.windriver.com/productshttp://www.windriver.com/productshttp://www.intel.com/content/www/us/en/intelligent-systems/previous-generation/intel-xeon-embedded-processors-broad-product-line-for-embedded.htmlhttp://www.intel.com/content/www/us/en/intelligent-systems/previous-generation/intel-xeon-embedded-processors-broad-product-line-for-embedded.htmlhttp://www.intel.com/content/www/us/en/intelligent-systems/shark-bay/4th-gen-core-processor-based-platforms-brief.htmlhttp://www.mcafee.com/us/resources/reports/rp-quarterly-threat-q4-2013.pdf


5/12

Figure 6. New Intel Instructions Dramatically Speed Up Encryption Rates


known good baseline, no program or code outside the

authorized set can run. Whitelisting helps to preventviruses, spyware, worms (like the Stuxnet worm), andother malware from executing illegitimately on IoTsystems.

McAfee ePolicy Orchestrator* (McAfee ePO*) is one ofthe most advanced, extensible, and scalable centralizedsecurity management software in the industry. Thisopen platform uni es security management, which maydramatically reduce the cost and complexity of securityand compliance administration.

McAfee Integrity Control combines McAfee Embedded

Control and the McAfee ePolicy Orchestrator (McAfeeePO) console, enabling the product to provide integratedaudit and compliance reports to help satisfy multiplecompliance regulations.

McAfee Endpoint Encryption is the cornerstone of dataprotection since it encrypts data throughout the IoTenvironment, including devices, gateways, network

les and folders, removable media, and USB portablestorage devices. The software employs Intel AdvancedEncryption Standard New Instructions (Intel AES-NI) 2 implemented on Intel Core processors, allowing dataencryption functions to run up to ten times (parallel

mode)3,4

without slowing down the system (Figure 6).Learn more about McAfee security products and solutions .

Intel Identity Protection Technology (Intel IPT)5 helpsprevent unauthorized access to data stored in the cloudusing strong, hardware-based authentication. Thistamper-proof solution operates in isolation from theoperating system. It also provides a simple way for websites and organizations to validate that a user is logging infrom a trusted device.

Network Connectivity

The fundamental concept behind IoT is connecting thevast majority of systems in the world to a common networkand infrastructure. Intel computing platforms and networkinterface cards support a wide range of networkinginterfaces and protocols to provide the necessaryconnectivity:

Intel Ethernet Controller I210 is a low-power, small-footprint, single-port gigabit LAN on motherboard (LOM)network controller with integrated MAC and PHY, makingit perfect for small devices.

Intel XMM platforms are slim modems for 2G/3G/

LTE support, enabling high-speed data and voice. Theycombine cost-optimized ICs, reference designs, andfeature-rich software stacks with professional customersupport throughout the value chain. Their small sizebased on a exible, modular concept allows one designto satisfy various elds of applications, such as mobilephones, mobile computing, or telematics.

For example, the Intel XMM 7160 cellular platform is aslim modem for LTE smart phones, tablets, and machine-to-machine (M2M) applications. It is an extremelycompact solution for LTE/DC-HSPA-connected devicesdestined for global markets, enabling high-speed

data-only solutions as well as voice-capable 4G cellularphones.

Intel chipsets support a wide range of I/O interfaces,including Ethernet, USB, RS-232, RS-485, CAN, line out,PCI Express*, and SPI. These interfaces can also connectto modules supporting cellular, Bluetooth*, ZigBee*, Wi-Fi, and other wireless technologies.

Encryption RateImprovement with Intel Advanced Encryption Standard New Instructions (Intel AES-NI)

With Intel AES-NIPrevious GenerationPlatform

Serial Mode 3,4

B o a r

d s

4xIncrease

With Intel AES-NIPrevious GenerationPlatform

Parallel Mode 3,4

10xIncrease

55
http://www.mcafee.com/us/products-solutions.aspxhttp://www.intel.com/content/www/us/en/architecture-and-technology/identity-protection/identity-protection-technology-general.htmlhttp://www.intel.com/content/www/us/en/architecture-and-technology/identity-protection/identity-protection-technology-general.htmlhttp://www.intel.com/content/www/us/en/ethernet-controllers/ethernet-controller-i210-i211-family.htmlhttp://www.intel.com/content/www/us/en/wireless-products/mobile-communications/mobile-xmm-7160-1-brief.htmlhttp://www.intel.com/content/www/us/en/chipsets/performance-chipsets/chipsets.htmlhttp://www.intel.com/content/www/us/en/chipsets/performance-chipsets/chipsets.htmlhttp://www.intel.com/content/www/us/en/wireless-products/mobile-communications/mobile-xmm-7160-1-brief.htmlhttp://www.intel.com/content/www/us/en/ethernet-controllers/ethernet-controller-i210-i211-family.htmlhttp://www.intel.com/content/www/us/en/architecture-and-technology/identity-protection/identity-protection-technology-general.htmlhttp://www.mcafee.com/us/products-solutions.aspx


6/12

Figure 7. Gateway Software Stack

Intel Solutions for GatewaysSpeeding up time to market, Intel Gateway Solutions forthe Internet of Things (Intel Gateway Solutions for theIoT) helps equipment manufacturers develop, prototype,and deploy application services faster so companies canfocus on adding new value-added services. These solutionsprovide equipment manufacturers with various platformsfor developing gateways that securely aggregate, share, and

lter data for analysis.

Intel Gateway Solutions for the IoT is built on openarchitecture to ensure interoperability between systems,facilitate wide application development, and simplifyservices deployment. Integrated and validated components(Figure 7) allow maximum exibility, and fast applicationdevelopment and eld deployment. The solutions o ercomplete, validated platforms consisting of hardware andsoftware building blocks, including:

Choice of Intel processors: Intel Quark SoC X1000, IntelQuark SoC X1020, and Intel Atom processor E3826

Wind River Intelligent Device Platform developmentenvironment

McAfee Embedded Control security technologies

Wind River Intelligent Device Platform is a scalable,sustainable, and secure development environmentthat simpli es the development, integration, anddeployment of gateways for IoT. Shown in Figure 8 onthe next page, it provides networking stacks that supportthe protocols used by most IoT systems and enablesequipment providers to build high-performance, high-value products that accelerate, analyze, and securenetwork tra c and applications. The platform is basedon Wind River industry-leading operating systems, whichare standards-compliant and fully tested, and includesWind River development tools. The platform provides

device security, smart connectivity, rich network options,and device management. Intelligent Device Platformincludes ready-to-use components built exclusively fordeveloping machine-to-machine (M2M) applications.


Security

OpenSSL* TPM EngineSRM Signing ToolCertificate ManagementSecure BootApplication IntegrityMonitorApplication ResourceControlRemote AttestationSecure PackageManagementEncrypted StorageFIPS 140-2 OpenSSL Lib

Communications

2G/3G/4G Bluetooth* Ethernet Zigbee* Stack Serial / USB VPN Wi-Fi Access Point MQTT

Manageability

OMA DM TR-069 Web Config OnlineUpdate

Runtime Environment

Prosys OSGi OpenJdk Sqlite3 LUA Scripting

Cloud Connector

EcosystemApplicationsand Services

System Integrators,IT Outsourcers (ITOs),Customers

Wind River* Linux* 5.0.1

Intel Processor-Bsed Platform: Boards and Modules(Intel Quark SOC, Intel Atom Processor)TMTM

McAfee* EmbeddedControl*

Wind River Development Environment

6
http://www.intel.com/content/www/us/en/internet-of-things/gateway-solutions.htmlhttp://www.windriver.com/products/platforms/intelligent-devicehttp://www.windriver.com/products/platforms/intelligent-devicehttp://www.windriver.com/products/platforms/intelligent-devicehttp://www.intel.com/content/www/us/en/internet-of-things/gateway-solutions.html


7/12

Figure 8. Wind River* Intelligent Device Platform Components

Connectivity

ZigBee* Bluetooth WWAN VPN MQTTCloud

Connector

Management

Secure Updates VPN MQTTCloud

ConnectorOMA, DM, TR-069

Device Authentication VPN MQTTCloud

ConnectorWeb Interface

Security

TCG Standards MQTTRole-based Access Control

Integrity Monitoring MQTTSigned Software

API

OpenJDK Lua VM OSGiSQLite

Wind River* Operating Environments

Trusted Secure Boot

Tools

Application Signing Tool

Wind River Integrated Development Environment Tools

Wind River OperatingEnvironment Base

Intelligent DevicePlatform Features

Application Signing Tool


Key Features:

Gateway security: Delivers built-in security featuresdesigned to secure the communication channel, thedata, and the end device.

Application enablement: Provides Lua, Java, andOSGi application environments to enable portable,scalable, and reusable application development on bothresource-constrained and full-featured devices.

Device connectivity: Embraces IoT protocol MQTTfor data transportation and native support for Wi-Fi,Bluetooth*, ZigBee, and short-range wireless protocolswidely used in IoT devices.

Remote device management: Supports well-establishedmanagement protocols such as TR-069 and OMA DM.

Intel Solutions for Network and CloudWith the telecommunications industry transitioning to all-IP networks, equipment manufacturers started to blendthe best of communications and computing technologies.Accelerating this trend, software-de ned networking (SDN)and network functions virtualization (NFV) are makingit easier to consolidate network, cloud, and data centerfunctions onto standard, high-volume servers, switches, andstorage.

Intel server technology is extensively used in network andcloud infrastructure to run a wide range of application andanalytics workloads on virtualized servers. Connectivity thattakes advantage of Intel-based servers, storage, and NICsis becoming increasingly more cost e ective and pervasiveacross both wired and wireless networks. As the telecomindustry joins enterprise and cloud industries in deployingall-IP networks, Intel solutions are used in the control anddata plane to facilitate localization, security, APIs, andprotocols in support of software-de ned infrastructure.

At the forefront of developing, securing, and managingnetwork and cloud infrastructure, Intel o ers processors,operating systems, development platforms, securitysolutions, data center management tools, and high-throughput network connectivity.

Computing Platforms and Operating Systems

Computing platforms in the network and cloud are expectedto deliver the highest level of performance and availability,and Intel provides technologies and products to make thispossible, including:

Intel Platform for Communications Infrastructure isdesigned to simultaneously run diverse workloads(e.g., packet processing, control plane, and applicationsoftware) to o er an exceptional level of workloadconsolidation. This software-focused platform featuresbuilt-in security and compression engines, and

accelerated packet processing. Carrier Grade Pro le for Wind River Linux is the rst

product to meet the registration requirements of theLinux Foundations Carrier Grade Linux 5.0 speci cationbuilt for a Yocto Project* compatible product. Thisturnkey solution provides essential capabilities for allindustries, enabling the next generation of embeddedLinux designs that require secure, standards-based,reliable solutions.

77
http://www.intel.com/content/www/us/en/communications/global-communications-network.htmlhttp://www.windriver.com/products/linux-cgphttp://www.windriver.com/products/linux-cgphttp://www.intel.com/content/www/us/en/communications/global-communications-network.html


8/12

Figure 10. Key Components of Wind River* I ntelligent Network Platform

Development PlatformsO ering easy access to recommended open source andIntel components, the following development platformsassist developers in prototyping designs, conductingperformance evaluations, porting application software, andultimately delivering production-ready solutions.

The Intel Open Network Platform (Intel ONP) issupported by both Server and Switch Reference Designs,and gives equipment manufacturers a quick developmentpath to high-performance, low-latency switching in eithervirtualized or hardware-based network appliances. TheseSDN-compliant designs are exible and powerful, andsupport enhanced features critical for todays networkingand data center switching environments.

Intel Open Network Platform Server Reference Design(Intel ONP Server Reference Design), diagramed in Figure9, runs on nearly any Intel Xeon or Intel Core processor-based hardware platform. The KVM hypervisor 6 andIntel Virtualization Technology (Intel VT) 7 provide ahigh-performance and robust virtualization environment.

A version of Open vSwitch, accelerated by the IntelData Plane Development Kit (Intel DPDK), runs in oneor more virtual machines. In addition, optimizations

will be provided to facilitate remote management andintegration into the orchestration infrastructure. Forsome workloads, the use of PCI-SIG Single Root I/OVirtualization (SR-IOV) could be used to provide forvirtual appliances.

Wind River Intelligent Network Platform is an integratedand optimized software system that consists of thecritical run-time components and life cycle developmenttools needed to build high-performance, next-generationintelligent network elements. Figure 10 shows the pre-integration of two essential deep packet inspectiontechnologies: IP ow analysis to provide applicationand content awareness, and regular expression patternmatching to detect malware.


Figure 9. Reference Design

PatternMatching

(Intel)

FlowAnalysis

(Qosmos*)

Individual or combined components

Linux withIntel Data PlaneDevelopment Kit

(Intel DPDK)

ManagementPlane

Native Linux*Apps

Data PlaneApps

ApplicationAcceleration

Engine(Wind River*)

Migrationand Design

Services

Wind RiverWorkbench

Wind RiverPacket

Generators

Data PlaneApps

Data PlaneApps

Linux User SpaceLinux Kernel Space

GlobalSupport

Intel Processor and Network Adapter

Wind River* Open Network Software

VPNMQTTCloud

ConnectorThird-party Hypervisor

VPNMQTTVirtual Switch

Intel Data Plane Development Kit(Intel DPDK)

VM VM VM

Open vSwitch*

SDN APIs

OpenStack*

VPNMQTTOpen vSwitch*

VPNMQTTOpenFlow*

8
http://www.intel.com/content/www/us/en/switch-silicon/open-network-platform-onp-infographic.htmlhttp://www.intel.com/content/www/us/en/switch-silicon/open-network-platform-onp-infographic.htmlhttp://www.windriver.com/announces/intelligent-network-platformhttp://www.windriver.com/announces/intelligent-network-platformhttp://www.intel.com/content/www/us/en/switch-silicon/open-network-platform-onp-infographic.html


9/12


Qosmos* ixEngine: Performing IP ow classi cation,

this set of software libraries and tools enables deepvisibility into Layers 47 tra c ows, facilitating real-time packet classi cation, tra c categorization, andcommunication protocol identi cation, among othernetwork applications. This information, the product ofgranular application and data visibility, greatly increasesnetwork operators context awareness, allowing themto better execute security rules and manage tra c. Thesolution performs pattern matching, ow correlation, andbehavior analysis on tra c ows using an application/protocol signature database containing thousands ofdynamic protocols, which are regularly updated from live

network analysis. HyperScan from Intel: Executing regular expression

pattern matching, this engine scans large amounts ofdata at high speed searching for malware. The engineaccesses a database with hundreds of thousands of staticsignatures used to detect viruses inside documents,making it ideal for systems requiring intrusion prevention(IPS), antivirus (AV), and uni ed threat management(UTM). While Hyperscan is a plug-in for ixEngine and forINP, it is also a standalone, high-performance matchingengine that supports most industry pattern databases.

Key Features:

Consolidated management and data plane: Can lowerBOM cost and energy consumption by integrating twoworkloads that typically require separate computingsystems.

Packet acceleration and throughput: Achieves signi cantperformance gains in IP forwarding, and UDP and TCPtermination. 8

Application acceleration engine: Provides acomprehensive, optimized network stack designed forthe acceleration of Layer 3 and 4 network protocols.

Deep packet inspection: Identi es tra c ows,communication protocols, and applications.

Network Element Security

McAfee Network Security Platform uses advanced threatdetection techniques to discover and block sophisticatedthreats in the network, making it ideal for next-generation intrusion prevention, with key features shownin Figure 11. This uniquely intelligent security solutionmoves beyond mere pattern matching to defend againststealthy attacks with extreme accuracy, while its next-generation hardware platform scales to speeds of over80 Gbps 9 to meet the needs of demanding networks.

Data Center Management

Intel Datacenter Manager (Intel DCM) Portfolio providescritical management capabilities for todays data centers.With the Intel DCM Portfolio, IT and facility managershave the tools to improve manageability, increaseavailability, and reduce costs across key parameters,such as energy usage, monitoring, security, automation,and cloud. This multifunction solution provides key datacenter capabilities, including:

Energy director

Virtual keyboard-video-mouse (KVM) Device management API

Service-level agreement enforcement

Plug-in for the OpenStack*

Network Connectivity

Intel 82599 10 Gigabit Ethernet Controller Family is Intels third-generation 10 GbE controller, whichcontinues to build on the innovative trends setby its predecessor. The Intel 82599 10 GigabitEthernet controller is a single-chip, dual-port 10 GbE

implementation. It can reduce bill of materials (BOM) costand design complexity by integrating serial 10 GbE PHYsand provides both simple rmware interface (SFI) and KRinterface. The device is designed for high performanceand lower memory latency.

Services-Creation and Solutions LayersIn order to ful ll the promise of IoT, data collected bydevices and gateways needs to be sent to existing back-endsystems, fused with other data sources, and made availableto partners, customers, and employees. This can be achievedwith application programming interface (API) management.

Figure 11. McAfee* Network Security Platform

NetworkVisibilityPolicyDefinition

Reportingand Alerts

Advanced Analysis

Granular Control

Application Awareness

NextGeneration

IntrusionPrevention

McAfee* Network Security Platform

99
http://www.mcafee.com/us/products/network-security-platform.aspxhttp://www.intel.com/content/www/us/en/software/intel-datacenter-manager-portfolio.htmlhttp://www.intel.com/content/www/us/en/ethernet-controllers/82599-10-gigabit-ethernet-controller-family.htmlhttp://www.intel.com/content/www/us/en/ethernet-controllers/82599-10-gigabit-ethernet-controller-family.htmlhttp://www.intel.com/content/www/us/en/software/intel-datacenter-manager-portfolio.htmlhttp://www.mcafee.com/us/products/network-security-platform.aspx


10/12

Figure 12. Conceptual Architecture for API Management and IoT

Figure 13. Creating Value-Added IoT Services and Solutions

Exposing and Managing Data to Enable New Services

End-to-end IoT solutions need a control layer to notonly collect data from things, but also orchestrate key

IoT processes and core software modules. This servicesplatform layer is the foundation for value-added IoTservice creation for vertical industries or for unique IoTbusiness models. The platform must have visibility andinteroperability with all other layers of an IoT deploymentacross hardware, gateways, networks, analytics, and securityin order to control all resources.

Management and control must be adaptable to translateinformation from legacy things and plug in value-addedecosystem components that monetize IoT and tracknewfound business value. IoT requires exibility and cannotbe based on a single set of standards or implemented

entirely from a single vendors software stack.

API Management Holds the Key for IoT 10

Today, a large part of the interoperability, scale, andcontrol for IoT can be achieved through API management.Standards-based design patterns for Web APIs, APImanagement, and a RESTful architecture providetremendous value in simplifying the task of interoperabilityacross heterogeneous systems handling vast amounts ofdata. Since APIs have become ubiquitous, IoT deploymentsspanning a wide range of market segments can bene t fromthis proven architecture.

APIs lower the barrier to entry for connectedness and enablesecure communication from things to applications located

just about anywhere in any cloud, data center, or accessiblefrom API-enabled devices.


Figure 12 shows where sensor middleware and APImanagement for IoT gateway solutions play an importantrole: they provide data fusion, contextual information, datacommunication, coordination and synchronization, dataand protocol interoperability, privacy and security, and faulttolerance.

A Platform Approach to IoT Management and Control

Intel has assembled interoperable core software andservice capabilities as a foundation for IoT based on APImanagement that can help businesses, integrators, and

the larger IoT ecosystem jumpstart their IoT deployments.This foundation provides IoT management and controlthrough the implementation of services-creation and verticalsolutions layers, as depicted in Figure 13.

API

Sensor

Networks

Sensor

Middleware

Data Center,Clouds, and

API Devices

IoT Gateways

and Analytics

API

Management

Services-Creation and Solutions Layers

VerticalSolutionsLayer

Services-CreationLayer (i.e., Apps)

Core IoTServices

IoT Devicesand Network

CloudInfrastructure

NetworkInfrastructure

GatewaysThings

Retail Transportation CommunicationsMedicalIndustrial Energy

Data-as-a-Service Cloud Service Broker Other Business

Services

Ecosystem or PartnerServices

Enable &Deliver

Connect &Protect

Analyticsand Insights

Rapid ServiceCreation

Configure& Manage

Connectivity (e.g., LTE, Wi-Fi, others ...)

Software / Operating Systems (i.e., Wind River* VxWorks*, Linux*, Yocto*, others ...)

10


11/12

Figure 14. The Foundation for Connected IoT


In order to realize true value for IoT, businesses shouldfocus on the value-added services they can assemble fromdata derived from IoT and how they can combine this datawith their legacy systems and business assets. It is this datamashup that is happening across verticals and where trueinnovation for IoT is occurring. Any number of unique IoTbusiness strategies and go-to-market business models can

be empowered, whether they are internal, external, mobile,or channel partner focused.

Intel is delivering the core IoT software layer to helporchestrate the assembly of nished vertical solutions. Thislayer supports Intel-enabled IoT services and solutions withthe following features:

Secure end-to-end communications from thing tocloud

Connected and globally scalable end-to-end solutions

Remote manageability

Interoperability across platforms

Intel architecture processor-optimized performance

Intelligent data analytics

This core IoT software layer creates a foundation forconnected IoT (Figure 14) by providing the followingcapabilities:

Connect and Protect Securely connect and remotelymanage things with real-time gateway control using secureAPIs to foster interoperability.

Confgure and Manage - Remotely manage completesolutions from edge to data center with a consistent user

experience.

Data Services and Analytics Securely transmit, store, andanalyze big data using world-class data center technology,while utilizing intelligent algorithms at the edge tooptimize performance.

Service Enablement via Developer Engagement Unlockthe power of community innovation for IoT by proactively

engaging developers though developer outreach and APIportals.

Rapid Service Creation Quickly and easily enable processintegration, mash-up IoT API data with existing systems,and broker APIs with partners, all through API creation andmanagement.

API Management Solutions for IO T

Intels solutions and services o erings can be mixed andmatched to suit speci c IoT deployment and usage models.

API Management Manage and package APIs through asoftware as a service (SaaS), on-premise portal, as well asenforce tra c from things and analyze API metrics. Thesolution empowers developers to discover, interact, andtest APIs, thereby speeding up IoT application creation.

API Security and Brokerage - Simplify partner and openAPI programs with mobile-friendly OAuth, API keymanagement, developer on-boarding/access, and a PCI-certi ed SaaS environment. As needed, apply enterprise-level security mechanisms, such as API, threat protection,identity system integration, and brokering across securitydomains.

Intel-Enabled IoT Services

and Solutions

Connect and Protect

Configure and Manage Analytics and Insights

Rapid Service Creation

APIService Enablement via

Developer Engagement

1111


12/12

developing solutions for iot

Documents