Keys and Credentials for Routers

Additional Info

CompanyIrdeto
Websitehttps://irdeto.com/
Company size (employees)1,000 to 4,999
Type of solutionService

Overview

Irdeto launched in 2020 the ground-breaking solution Keys & Credentials for Routers. It’s a first-of-its-kind, OEM independent managed service offered to the ISP industry for their Broadband Customer Premise Equipment (CPE).
A breach in security can have severe consequences and companies are often not able to recover from issues affecting customer confidence in the brand resulting in lost customers. If they are not protected, operators risk financially catastrophic consequences from costs of replacing compromised CPEs to regulatory fines and/or class action lawsuits. Irdeto’s Keys & Credentials for Routers future-proofs CPE against new business and security needs.
Irdeto Keys & Credentials for Routers is a fully managed service that lays the security foundations into any broadband CPE, ensuring recoverability and resilience for both CPE and the ISP infrastructure in the event of a router hijack or spoofing. It securely provisions unique and unclonable trusted identities into the chipset in every router, creating a hardware root of trust which is critical to verifying that a router is legitimate. The CPE then provides strong credentials with each API call, allowing the ISP’s servers to instantly identify requests from spoofed CPE, shutting down service and access.
Keys & Credentials for Routers takes care of the full lifecycle for all cryptographic keys, from production and provisioning to renewal and revocation, and integrates seamlessly into the Continuous Integration and Continuous Delivery pipelines to enable fast deployment of signed code. With Irdeto Keys & Credentials for Routers managed service solution, ISPs can ensure that their CPE are well protected without the hassles of day-to-day management.

How we are different

• Pioneering - first-of-its-kind, ODM-independent, managed service offered to ISPs ensuring a consistent security posture across the full lifecycle of their broadband CPE models and vendors
• Innovating – utilizes the hardware root-of-trust security foundation available in newest System-on-Chips to securely provision unique identities and underpin all future authentication limiting unauthorized access to the consumer home and the operator’s own back end infrastructure, providing resilience to attack and recoverability from breaches.
• From cradle to grave - offers remote deployment of new and updated keys thus managing the full lifecycle of the CPE, from factory to the last use in the subscribers home, for all cryptographic keys, extending the lifespan of the CPE by enabling existing devices to adapt to changing business requirement.