Skip to content
/ Amazon-FreeRTOS-Certificate-Rotation Public

A mini-sample on how certificate rotation can occur, using existing cloud side configurations

License

MIT license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

zanussbaum/Amazon-FreeRTOS-Certificate-Rotation

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit

demos

demos

 
 

doc

doc

 
 

freertos_kernel

freertos_kernel

 
 

lambda

lambda

 
 

libraries

libraries

 
 

projects

projects

 
 

tests

tests

 
 

tools

tools

 
 

vendors

vendors

 
 

.DS_Store

.DS_Store

 
 

CHANGELOG.md

CHANGELOG.md

 
 

CMakeLists.txt

CMakeLists.txt

 
 

CODE_OF_CONDUCT.md

CODE_OF_CONDUCT.md

 
 

CONTRIBUTING.md

CONTRIBUTING.md

 
 

LICENSE

LICENSE

 
 

PreLoad.cmake

PreLoad.cmake

 
 

README.md

README.md

 
 

checksums.json

checksums.json

 
 

cloudformation.json

cloudformation.json

 
 

directories.txt

directories.txt

 
 

Repository files navigation

Certificate Rotation

This is a sample on how a MCU can rotate certificates, using a cloud side implementation of certificate rotation. It is built off of the Amazon FreeRTOS code.

At a high level, the device will publish to topics, which trigger AWS Lambda functions that create a new certificate and rotate the certificates for you.

The device then stores the new certificate in a buffer and overwrites the old certificate, however this is stored in volatile memory so once the device loses power, the new certificate will be gone.

Further implementations of this can use some library to overwrite the old certificate in NVM (possibly using PKCS).

To setup the cloudside, download, zip, and add the AWS Lambda Functions to an S3 bucket. Then download the cloudformation.json file and create the CloudFormation from the console.

Getting Started

For more information on Amazon FreeRTOS, refer to the Getting Started section of Amazon FreeRTOS webpage.

To directly access the Getting Started Guide for supported hardware platforms, click the corresponding link in the Supported Hardware section below.

For detailed documentation on Amazon FreeRTOS, refer to the Amazon FreeRTOS User Guide.

Supported Hardware

The following MCU boards are supported for Amazon FreeRTOS:

  1. Texas Instruments - CC3220SF-LAUNCHXL.
  2. STMicroelectronics - STM32L4 Discovery kit IoT node.
  3. NXP - LPC54018 IoT Module.
  4. Microchip - Curiosity PIC32MZEF.
  5. Espressif - ESP32-DevKitC, ESP-WROVER-KIT.
  6. Infineon - Infineon XMC4800 IoT Connectivity Kit
  7. Xilinx - Xilinx Zynq-7000 based MicroZed Industrial IoT Bundle
  8. MediaTek - MediaTek MT7697Hx Development Kit
  9. Renesas - Renesas Starter Kit+ for RX65N-2MB
  10. Cypress CYW54907 - Cypress CYW954907AEVAL1F Evaluation Kit
  11. Cypress CYW43907 - Cypress CYW943907AEVAL1F Evaluation Kit
  12. Marvell MW320 - Marvell MW320 AWS IoT Starter Kit
  13. Marvell MW322 - Marvell MW322 AWS IoT Starter Kit
  14. Nordic nRF52840 DK - nRF52840 DK Development kit
  15. Windows Simulator - To evaluate Amazon FreeRTOS without using MCU-based hardware, you can use the Windows Simulator.

About

A mini-sample on how certificate rotation can occur, using existing cloud side configurations

Topics

iot aws aws-lambda aws-iot mcu aws-cloudformation aws-cloudwatch amazon-freertos aws-iot-certificates certificate-rotation

Resources

Readme

License

MIT license

Code of conduct

Code of conduct
Activity

Stars

1 star

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages