More than two years ago, I wrote a blog post about introducing Azure cloud security on the Edge.
This, now labeled the ‘classic’ version of Azure IoT Security, was based on AuditD and filled an important need: getting insight into the security of IoT devices.
Though, as with many things, the world moves on.
Microsoft reconsidered the solution and decided to spice it up a little bit.
They now offer a new edition supporting both an agent-based and an agent-less solution.
If you are interested (and you are when you own large networks with many devices!) in the agent-less solution, please check out this great demonstration on the Internet of Things show.
This agent-less solution is especially powerful in large solutions with many devices on the network:
You just install this Azure Defender for IoT ‘sensor’ device within the network and it starts inspecting that network for possible threats based on deep-packet inspection and updated threat-analysis logic coming from Microsoft.
In contrast, Here is shown how the current agent-based solution is rolled out:
As seen in the picture an agent, running as a daemon process on your (Linux) host (Azure RTOS is supported too), checks for possible vulnerabilities and passes it on to the cloud, to an IoT Hub.
There, the situation (and possible threats) is visualized in the Azure Defender for IoT portal panes.
When I checked out the documentation, I also expected support for Azure IoT Edge… but it seems there is no Azure IoT Edge Docker module support.
It only describes running that solution based on a daemon. This daemon is just a process that is secured using Azure IoT Device Module Identity credentials.
The identity is a separate security key apart from the Azure IoT device runtime security keys.
So, do we need to register a second Azure IoT Device, deployed side-by-side to an Azure IoT Device just to have the host secured?
Or, how can we integrate this daemon in a device running Azure IoT Edge?Doorgaan met het lezen van “Supporting Azure Defender for IoT agent on IoT Edge device”