{"id":15778,"date":"2022-09-14T11:11:39","date_gmt":"2022-09-14T15:11:39","guid":{"rendered":"https:\/\/www.thesslstore.com\/blog\/?p=15778"},"modified":"2023-05-24T10:53:58","modified_gmt":"2023-05-24T14:53:58","slug":"matter-iot-standard","status":"publish","type":"post","link":"https:\/\/www.thesslstore.com\/blog\/matter-iot-standard\/","title":{"rendered":"Matter, the New IoT Standard: A Look at the Future of Consumer IoT Device Interoperability &#038; Security"},"content":{"rendered":"\n<h2 class=\"wp-block-heading\" id=\"h-90-of-consumers-aren-t-confident-about-the-security-of-their-iot-devices-frankly-who-can-blame-them-iot-devices-have-a-long-history-of-exploitable-weaknesses-and-security-issues-matter-a-new-industry-standard-backed-by-amazon-google-and-other-industry-titans-aims-to-change-that-once-and-for-all\"><a href=\"https:\/\/dis-blog.thalesgroup.com\/security\/2017\/10\/31\/90-consumers-lack-confidence-security-iot-devices-finds-gemalto-study\/\">90% of consumers<\/a> aren\u2019t confident about the security of their IoT devices. Frankly, who can blame them? IoT devices have a long history of exploitable weaknesses and security issues. Matter, a new industry standard backed by Amazon, Google, and other industry titans, aims to change that once and for all<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><em>Editor\u2019s Note: This is the first in a set of articles on Matter (or what\u2019s also sometimes called the Matter IoT standard, Project Matter, Matter Protocol, and Matter Smart Home standard). Stay tuned in the coming weeks to learn more about the new industry standard that\u2019s poised to revolutionize the IoT industry.<\/em><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">IoT home devices aim to make consumers\u2019 lives easier \u2014 the whole point of having an Alexa or other \u201csmart\u201d devices is to simplify tasks and improve your life. But if a device doesn\u2019t work with other devices in your home, is cumbersome to use or leaves your home network vulnerable to cyber attacks, it achieves the opposite \u2014 adding problems and security risks to your life.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">That&#8217;s exactly why Google, Amazon, Apple, and other IoT giants have created the Matter protocol. This new universal standard is designed to make it easier to connect and set up IoT devices, while also ensuring that every device is properly secured against potential attacks. It\u2019s a standard that\u2019s going to start with IoT smart devices for the home and it\u2019s expected to launch this fall (just in time for Matter-certified devices to hit the shelves in time for the 2022 holiday season).<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">But what exactly is Project Matter? Let\u2019s take a deeper look at the Matter IoT standard and why we think it will revolutionize the connected device industry.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Let\u2019s hash it out.<span id=\"newline\"><\/span><\/p>\n\n\n<span style=\"--tl-form-height-m:149.594px;--tl-form-height-t:120.9844px;--tl-form-height-d:120.9844px;\" class=\"tl-placeholder-f-type-shortcode_16856 tl-preload-form\"><span><\/span><\/span>\n\n\n<h2 class=\"wp-block-heading\" id=\"h-what-is-the-matter-iot-standard-a-look-at-the-new-matter-protocol\">What Is the Matter IoT Standard? A Look at the New Matter Protocol<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><a href=\"https:\/\/csa-iot.org\/all-solutions\/matter\/\">Matter<\/a> (sometimes called the Matter Protocol or other similar names) is a new standard for the IoT industry that\u2019s designed to make IoT devices:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Easier to connect to each other regardless of who the device manufacturer is and what controller is being used.<\/li>\n\n\n\n<li>More secure against cyber attacks.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">Matter was created by the <a href=\"https:\/\/csa-iot.org\/all-solutions\/matter\/\">Connectivity Standards Alliance<\/a> (CSA), the group behind the industry\u2019s existing Zigbee standard \u2014 which is the standard for low-cost, low-power wireless network technology for IoT devices.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">For our readers who are familiar with the TLS\/SSL industry, you can think of CSA as the IoT industry\u2019s version of the <a href=\"https:\/\/cabforum.org\/\">CA\/Browser Forum<\/a>. (The CA\/B Forum is the collaborative governing body for standards relating to public key infrastructure [PKI] and website security. It\u2019s made up of certificate authorities and browsers).<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Formerly known as Project Connected Home Over IP (CHIP), Matter is an IP-based, open-source <a href=\"https:\/\/www.thesslstore.com\/blog\/what-is-iot-security-insights-tips-from-iot-experts\/\">IoT security<\/a> standard that aims to help manufacturers create secure and reliable smart home devices that are universally interoperable with customer ecosystems. Phew, that\u2019s a mouthful, but what this means is that you can easily connect Matter-compatible devices to each other, even if they&#8217;re made by different manufacturers.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">For example, your smart home controller, smartphone, smart thermostat and lighting systems could all be connected together, even if they were all different brands. (Just like how you can connect any Bluetooth compatible devices to your computer, phone, or even your car no matter where you buy the Bluetooth-enabled devices from.)<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Matter, as an application layer protocol, is all about enabling devices and systems to communicate. It\u2019s a standard that\u2019s founded on several key security, usability, and compatibility considerations:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Making devices more secure and resilient without sacrificing usability. <\/strong>The idea here is that by creating a standard, manufacturers will be better equipped to ensure that they cross their T\u2019s and dot their I\u2019s when it comes to security. This includes providing a way to ensure secure boot and device software updates (you know, since update shave been an ongoing issue with IoT devices for years\u2026). But just because you make something more secure doesn\u2019t mean you have to make it more cumbersome to use\u2026<\/li>\n\n\n\n<li><strong>Ensuring devices are easy for consumers to use right off the bat.<\/strong> Customers buy smart devices for the convenience they afford. If your set up or operational processes are cumbersome or unintuitive, or if they aren\u2019t compatible or don\u2019t communicate with other manufacturers\u2019 devices, then it\u2019s going to create a lousy experience for users. And security has to work by default \u2014 most users won\u2019t take extra steps to secure their devices.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-who-is-involved-in-matter\">Who Is Involved in Matter?<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">As of the time this article was written, the CSA website says that Matter is made up of more than 500 major players around the world, including 28 promoters, 269 participants, and 220 adopters, including:<\/p>\n\n\n\n<figure class=\"wp-block-table\"><table><tbody><tr><td><strong>Promoters<\/strong><\/td><td><strong>Participants<\/strong><\/td><td><strong>Adopters<\/strong><\/td><\/tr><tr><td>Amazon<\/td><td>Arris<\/td><td>Accenture Global Solutions, Ltd.<\/td><\/tr><tr><td>Apple<\/td><td>Belkin<\/td><td>Cisco<\/td><\/tr><tr><td>Google<\/td><td>DigiCert<\/td><td>D-Link Corporation<\/td><\/tr><tr><td>Ikea<\/td><td>Mastercard<\/td><td>Philips DA<\/td><\/tr><tr><td>Samsung SmartThings<\/td><td>T-Mobile<\/td><td>Vodafone Group Services GmbH<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">All in all, <a href=\"https:\/\/csa-iot.org\/newsroom\/about-us\/\">CSA reports<\/a> having more than 3,000 member representatives globally from all facets of the supply chain that are involved in the Matter IoT standard. That\u2019s a whole lot of collaboration between organizations globally and speaks volumes to the importance of Matter as a new industry standard.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">There are a lot of great ideas out there that never quite get enough momentum to \u201ctake off\u201d like they deserve to. Clearly, that is not the case with Matter, which already has the industry backing and momentum for takeoff \u2014 for example, with Google, Apple, and Amazon on board, it means that <a href=\"https:\/\/www.geekwire.com\/2021\/amazon-maintains-big-lead-google-apple-u-s-smart-speaker-market-new-study-says\/\">99% of smart home speakers will be part of the Matter initiative<\/a>.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-why-the-iot-industry-needs-a-universal-standard\">Why the IoT Industry Needs a Universal Standard<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">It\u2019s no secret that the consumer IoT market is booming. <a href=\"https:\/\/uk.finance.yahoo.com\/news\/global-consumer-iot-market-2022-111800005.html\">Data from ResearchAndMarket.com<\/a> shows that the market\u2019s estimated value in 2022 is $95.06 billion. The industry is anticipated to enjoy a 17.45% compound annual growth rate (CAGR) that will help it reach an estimated $212.45 billion by 2027.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><a href=\"https:\/\/blogs.idc.com\/2021\/01\/06\/future-of-industry-ecosystems-shared-data-and-insights\/\">IDC predicts<\/a> that more than 55.7 billion IoT devices will connect to the internet globally by 2025. I mean, we\u2019re talking about <a href=\"https:\/\/www.thesslstore.com\/blog\/how-much-data-is-in-the-world-and-how-do-you-secure-it\/\">massive quantities of data being generated daily<\/a> \u2014 all of which need to be secured. And if all devices and systems are doing their own thing, not adhering to the same standards and processes, then you\u2019re bound to run into issues where that data is less than secure. It only takes one insecure device in a home and a hacker could take over the entire network. This is where designing your products to meet specific industry-wide standards can be a gamechanger.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Another grave concern is the threat of counterfeit or fraudulent devices being sold as legitimate. We\u2019ve <a href=\"https:\/\/www.securitymagazine.com\/blogs\/14-security-blog\/post\/96068-protecting-hospitals-from-supply-chain-counterfeits-and-other-security-threats\">already seen examples of counterfeits in the medical industry<\/a>. Counterfeit IoT devices come with a litany of risks:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Invalid software licenses,<\/li>\n\n\n\n<li>Fraudulent or malicious software,<\/li>\n\n\n\n<li>Poor security, and<\/li>\n\n\n\n<li>No updates, patches and little to no support from manufacturers.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">A report by <a href=\"https:\/\/www.which.co.uk\/news\/article\/how-the-smart-home-could-be-at-risk-from-hackers-akeR18s9eBHU\">Which?<\/a> (conducted in collaboration with the Global Cyber Alliance [GSA] and NCC Group) shows that smart home devices are targeted on a massive scale \u2014 a test they ran using a fake smart home received 12,000 hacking attempts in one week, including 2,435 attempts to log in using weak default username-password combinations (that\u2019s basically 14 attempts per hour using weak login credentials, or approximately one attempt every four minutes). Which? also estimates that 97% of IoT-targeting attacks are done with the goal of adding the devices to the Mirai botnet, which can then be used to carry out attacks on organizations globally.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-matter-aims-to-make-stronger-security-by-eliminating-smart-home-device-shortcomings\">Matter Aims to Make Stronger Security by Eliminating Smart Home Device Shortcomings<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">A universal protocol like Matter is an open-source alternative to traditional proprietary systems that helps make companies more transparent and accountable. You see, traditional IoT devices are largely egocentric by design; they often:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Use their own specific languages, software, or hardware,<\/li>\n\n\n\n<li>Don\u2019t tell you much about what they are (or aren\u2019t) doing for security,<\/li>\n\n\n\n<li>Require specific (and potentially rigorous) setup activities, and<\/li>\n\n\n\n<li>Don\u2019t \u201cplay well with others\u201d \u2014 i.e., lack interoperability with other systems, devices, and platforms.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">Think of various electronic devices you\u2019ve owned over the years that had proprietary charging cables that fit only those devices and nothing else. Not only were they cumbersome because you have to have that exact cable readily available when needed, but you also couldn\u2019t just pop over to the store to buy a new one when you lost or broke the original. This isn\u2019t convenient, nor does it promote the good user experience that\u2019s central to smart devices.&nbsp;<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Using these insulated devices as an average user is like traveling to another country where you don\u2019t speak the language and don\u2019t have a translation book or app with you. You\u2019re going to run into a lot of issues and may not be able to accomplish what you want or need to do because of communication issues. The Matter protocol in this scenario would be kind of like having the <em>Star Trek<\/em> universal translator in the sense that you\u2019d be able to communicate with everyone, everywhere. (And by \u201cyou,\u201d we mean your IoT devices would be able to communicate with other devices and cloud applications.)<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-customers-want-things-to-be-easier-standardization-helps-you-achieve-that\">Customers Want Things to Be Easier \u2014 Standardization Helps You Achieve That<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">By creating devices that meet universal standards, you can avoid these pitfalls and focus more on innovation and accessibility. This means you can focus on what matters most: creating solutions that meet your customers&#8217; needs. You\u2019re also better meet the needs and desires of your customers \u2014 creating devices that \u201cjust work\u201d and connect with other manufacturers\u2019 devices straight out of the box, without any complications or unnecessary extra steps.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-why-device-manufacturers-should-get-the-matter-certification-for-their-devices\">Why Device Manufacturers Should Get the Matter Certification for Their Devices<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Wondering what the advantage of making your devices Matter IoT Standard compliant is for you as a manufacturer? The answer will vary a bit depending on whom you ask and the type of IoT project you\u2019re working on. But in general, using the Matter protocol helps you:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Increase the interoperability of your device.<\/strong> Due to the adoption of universal standards, your device will be compatible with major consumer ecosystems regardless of their manufacturers and device types.<\/li>\n\n\n\n<li><strong>Simplify setup and related processes for customers. <\/strong>Users don\u2019t want to deal with complicated or cumbersome processes. They want to take your device out of the box and have it ready to go with the least amount of effort possible.<\/li>\n\n\n\n<li><strong>Improve your brand reputation with consumers. <\/strong>By enabling your devices to work right off the bat, you\u2019ll make things easier for users who want to include your device in their smart homes. So even if your customers don\u2019t realize that your device is Matter compliant, they\u2019ll remember that it only took them 30 seconds to set up and connect with their other devices.<\/li>\n\n\n\n<li><strong>Save time and money on development.<\/strong> Building on the previous talking point, being Matter compliant means you can cut costs. How? By not having to spend all of the extra time and money developing systems that are compatible with individual consumer systems. Building with universal standards in mind streamlines your processes and eliminates issues within the development lifecycle.<\/li>\n\n\n\n<li><strong>Shift your focus to innovation and creative problem solving. <\/strong>If you no longer have to focus as much on compatibility-related concerns, it frees you (or your team) up to focus on exercising your creative muscles.<\/li>\n\n\n\n<li><strong>Gain greater reliability via open-source capabilities.<\/strong> The idea here is that because more eyes will be on it, you\u2019re more likely for people to discover and quickly address security-related issues. Of course, there is the drawback of bad guys finding vulnerabilities to exploit. But that can happen regardless of whether something is open source.<\/li>\n\n\n\n<li><strong>Improve your bottom line.<\/strong> Data from a <a href=\"https:\/\/report.psacertified.org\/\">2022 study by PSA Certified<\/a> shows that 96% of manufacturer survey respondents indicate that they believe products equipped with security positively affect their revenue numbers.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">Simply put, there\u2019s definitely something to be said for universal standardization. By adopting a universal IoT standard like Matter, you\u2019ll eliminate many of the inoperability issues by creating a system that communicates easily with others.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The Matter IoT Standard aims to make it so that you can enable local connectivity for your devices without having to build multiple versions or connectors to work with different consumer ecosystems (and without having to rely on cloud services or third-party apps). It\u2019s all about creating universality by making smart devices application- and system agnostic. This way, all devices can connect regardless of which manufacturer created them.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">If you\u2019re looking for another reason why you want to make your products Matter certified, then consider this from the same PSA Certified report: 70% of survey respondents recognize the value of security credentials on products. This is why having one industry-leading standard that all manufacturers adhere to would benefit users and IoT manufacturers alike.<\/p>\n\n\n<span style=\"--tl-form-height-m:1397.69px;--tl-form-height-t:764.094px;--tl-form-height-d:764.094px;\" class=\"tl-placeholder-f-type-shortcode_15760 tl-preload-form\"><span><\/span><\/span>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-matter-relies-on-pki-to-improve-data-security-and-privacy\">Matter Relies on PKI to Improve Data Security and Privacy<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">One of the big takeaways for IoT developers is that Matter uses public key cryptography as the foundation of its security. Matter certified devices must have a way to securely prove the identity of the device and its manufacturer. This involves the use of new special PKI digital certificates called <strong>device attestation certificates <\/strong>(DACs) and their corresponding attestation keypairs. (Yes, <a href=\"https:\/\/www.thesslstore.com\/solutions\/matter-device-attestation-certificates.aspx\">we can help you get Matter PKI certificates<\/a> for your devices.)<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Essentially, Matter-certified IoT devices will use X.509 certificates to assert your organization\u2019s digital identity and use that to make secure node-to-node (i.e., device to device) and device-to-cloud communications a reality. Not sure what X.509 certificates are? Some common examples of X.509 certificates include SSL\/TLS certificates, code signing certificates, and email signing certificates.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Much like SSL\/TLS certificates, Matter IoT device certificates are typically issued by a trusted third-party certificate authority (CA). In this case, <a href=\"https:\/\/www.digicert.com\/blog\/setting-new-standard-for-digital-trust-in-smart-home-with-matter-protocol\"><strong>DigiCert is the only CA that has announced the ability to issue these certificates<\/strong><\/a>. (An IoT manufacturer could create their own root CA and submit it to Matter, but that would require significantly more time, energy, and expense, as well as ongoing audit and management requirements.)<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">But what does the PKI architecture look like for Matter? The hierarchy for this approach to IoT digital trust looks similar to the chain of trust for traditional <a href=\"https:\/\/www.thesslstore.com\/blog\/pki-architecture-fundamentals-of-designing-a-private-pki-system\/\">PKI architecture<\/a> (such as for SSL\/TLS certificates), which you\u2019ll see momentarily. &nbsp;<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>DigiCert issues a self-signed root certificate.<\/strong> This is used as the foundation of trust for all Matter IoT certificates.<\/li>\n\n\n\n<li><strong>Product attestation intermediate (PAI) CAs are issued from the root CA.<\/strong> This is the IoT digital trust equivalent of the intermediate CAs for SSL\/TLS certificates. Unlike public SSL\/TLS certs, you can\u2019t get DACs issued from generic, DigiCert-owned ICAs. Each IoT manufacturer will have one (or more) PAIs that are dedicated to them.<\/li>\n\n\n\n<li><strong>Device certificates are issued by the PAIs.<\/strong> These are the certificates that are issued to your devices or other IoT software components.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">The hierarchy for this approach to digital trust looks a little different:<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"885\" height=\"1022\" src=\"https:\/\/www.thesslstore.com\/blog\/wp-content\/uploads\/2022\/09\/matter-pki-chain-of-trust.png\" alt=\"A basic diagram that illustrates the Matter PKI chain of trust, which includes the product attestation authority (PAA) at the top, the product attestation intermediate (PAI) in the middle, and device attestation certificates (DACs) at the bottom.\" class=\"wp-image-15780\" srcset=\"https:\/\/www.thesslstore.com\/blog\/wp-content\/uploads\/2022\/09\/matter-pki-chain-of-trust.png 885w, https:\/\/www.thesslstore.com\/blog\/wp-content\/uploads\/2022\/09\/matter-pki-chain-of-trust-260x300.png 260w, https:\/\/www.thesslstore.com\/blog\/wp-content\/uploads\/2022\/09\/matter-pki-chain-of-trust-768x887.png 768w\" sizes=\"auto, (max-width: 885px) 100vw, 885px\" \/><figcaption class=\"wp-element-caption\">Image caption: A basic overview diagram that illustrates how the PKI architecture will look for the new Matter IoT standard. It\u2019s similar to how a PKI architecture looks \u2014 from the root CA at the top (called a product attestation authority) to the intermediate CA (middle, called a product attestation intermediate CA) to the bottom device or website certificate (called a device attestation certificate).<\/figcaption><\/figure>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-a-quick-look-at-matter-s-cryptographic-requirements\">A Quick Look at Matter\u2019s Cryptographic Requirements<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">According to the CSA website, there\u2019s <a href=\"https:\/\/csa-iot.org\/wp-content\/uploads\/2022\/03\/Matter_Security_and_Privacy_WP_March-2022.pdf\">one cryptographic suite that Matter uses<\/a>:<\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p class=\"wp-block-paragraph\"><em>\u201cAES in CCM mode is used for confidentiality and integrity with 128 bit keys. AES in CTR mode is used for protecting identifiers to preserve privacy. SHA-256 is used for integrity and ECC with the \u201csecp256r1\u201d curve for digital signatures and key exchanges, standard key derivation schemes and truly random number generators.\u201d<\/em><\/p>\n<\/blockquote>\n\n\n\n<p class=\"wp-block-paragraph\">AES, or the Advanced Encryption Standard, is a <a href=\"https:\/\/www.thesslstore.com\/blog\/symmetric-encryption-algorithms\/\">symmetric encryption algorithm<\/a> (i.e., bulk encryption cipher) that uses a single key to encrypt and decrypt data. The two modes mentioned \u2014 counter with CBC-MAC (CCM) and counter mode (CTR) \u2014 refer to modes of operation, meaning the way that data gets processed. CCM is actually a <a href=\"https:\/\/nvlpubs.nist.gov\/nistpubs\/legacy\/sp\/nistspecialpublication800-38c.pdf\">combination of CTR mode and the cipher block chaining-message authentication code<\/a>. (We\u2019re not going to dive into this stuff today \u2014 check out the links embedded in this paragraph to learn more about AES and the two operational modes.)<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Okay, that last paragraph may leave you feeling a little unclear about what all of that means. Basically, gist of it is that the cipher suite used is highly tested and considered secure.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">SHA, which stands for the <a href=\"https:\/\/www.thesslstore.com\/blog\/difference-sha-1-sha-2-sha-256-hash-algorithms\/\">secure hash algorithm<\/a>, is a way to ensure data integrity. This is useful in a variety of processes, including:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Creating and verifying digital signatures for attestation, and<\/li>\n\n\n\n<li>Generating strong, secure cryptographic keypairs.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">But what about key generation? Matter also specifies that elliptic curve cryptography (ECC) should be used for public key generation purposes. Furthermore, it specifies that the elliptic curve digital signature algorithm (ECDSA) should be used for creating and verifying digital signatures.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-matter-also-integrates-hardware-based-integrity-attestation\">Matter Also Integrates Hardware-Based Integrity Attestation<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Another facet of Matter security is the use of hardware-based attestation capabilities as well. For example, using secure boot enables you to ensure that a device will not start up if it or its firmware has been altered in any way. This involves the use of cryptographic modules (e.g., <a href=\"https:\/\/www.thesslstore.com\/blog\/what-is-tpm-security-trusted-platform-modules-explained\/\">trusted platform modules<\/a>, or TPMs) that must be installed on Matter-certified devices.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">These modules are small chips that come installed in many modern devices. They\u2019re responsible for providing assurances that your device or the firmware installed on it hasn\u2019t had any unauthorized modifications or alterations. They\u2019re isolated environments (i.e., separate from your device\u2019s CPUs) that are used to handle the cryptographic operations that occur within the device as well as for storing certificates and keys.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-what-types-of-devices-can-be-matter-iot-compliant\">What Types of Devices Can Be Matter IoT Compliant?<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Oh, geez. We don\u2019t have enough time in the day to list all of the smart home devices that can use the Matter protocol \u2014 that\u2019s just a rabbit hole we don\u2019t need to go down. So, let\u2019s just quickly cover a handful of Matter smart home device types that will be eligible to receive the certification:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Smart HVAC systems and controllers<\/li>\n\n\n\n<li>Smart monitoring systems, meters, alarms and sensors<\/li>\n\n\n\n<li>Connected access controllers and devices<\/li>\n\n\n\n<li>Network and IT systems<\/li>\n\n\n\n<li>Lighting devices, controls and bulbs<\/li>\n\n\n\n<li>Blinds and shades<\/li>\n\n\n\n<li>IoT safety and security devices<\/li>\n\n\n\n<li>Smart window coverings (i.e., shades and blinds)<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">Major manufacturers like Google and Amazon are going all-in on their Matter supporting efforts:<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"744\" src=\"https:\/\/www.thesslstore.com\/blog\/wp-content\/uploads\/2022\/09\/google-matter-developer-screenshot-1024x744.png\" alt=\"A screenshot of Google's Matter-related page for developers\" class=\"wp-image-15781\" srcset=\"https:\/\/www.thesslstore.com\/blog\/wp-content\/uploads\/2022\/09\/google-matter-developer-screenshot-1024x744.png 1024w, https:\/\/www.thesslstore.com\/blog\/wp-content\/uploads\/2022\/09\/google-matter-developer-screenshot-300x218.png 300w, https:\/\/www.thesslstore.com\/blog\/wp-content\/uploads\/2022\/09\/google-matter-developer-screenshot-768x558.png 768w, https:\/\/www.thesslstore.com\/blog\/wp-content\/uploads\/2022\/09\/google-matter-developer-screenshot.png 1071w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><figcaption class=\"wp-element-caption\">Image caption: A screenshot from Google\u2019s Matter website.<\/figcaption><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"742\" src=\"https:\/\/www.thesslstore.com\/blog\/wp-content\/uploads\/2022\/09\/amazon-matter-developer-screenshot-1024x742.png\" alt=\"A screenshot of Amazon's Matter-related page for Alexa developers\" class=\"wp-image-15782\" srcset=\"https:\/\/www.thesslstore.com\/blog\/wp-content\/uploads\/2022\/09\/amazon-matter-developer-screenshot-1024x742.png 1024w, https:\/\/www.thesslstore.com\/blog\/wp-content\/uploads\/2022\/09\/amazon-matter-developer-screenshot-300x217.png 300w, https:\/\/www.thesslstore.com\/blog\/wp-content\/uploads\/2022\/09\/amazon-matter-developer-screenshot-768x556.png 768w, https:\/\/www.thesslstore.com\/blog\/wp-content\/uploads\/2022\/09\/amazon-matter-developer-screenshot.png 1365w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><figcaption class=\"wp-element-caption\">Image caption: A screenshot of the Amazon website that encourages developers to adopt Matter.<\/figcaption><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">Furthermore, Google and Amazon are encouraging device developers to make their products Matter compliant so that they\u2019re interoperable with their smart speakers.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-an-overview-of-how-to-get-matter-certification-for-your-product-s\">An Overview of How to Get Matter Certification for Your Product(s)<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Want the Matter smart home certification for your IoT products? Great! You\u2019ll be happy to know that it\u2019s a fairly straightforward process:<\/p>\n\n\n\n<ol class=\"wp-block-list\" type=\"1\">\n<li><strong>Develop a great, secure product.<\/strong> This one should be a no brainer, but you\u2019d be surprised what passes for IoT device security today.<\/li>\n\n\n\n<li><strong>Add the software and features for Matter support onto your device<\/strong>. <a href=\"https:\/\/github.com\/project-chip\/connectedhomeip\">Matter has a GitHub repository<\/a> with code you can use.<\/li>\n\n\n\n<li><a href=\"https:\/\/csa-iot.org\/become-member\/\"><strong>Become a member<\/strong><\/a><strong> of the Connectivity Standards Alliance. <\/strong>There are four levels to choose from \u2014 Associate, Adopter, Participant, and Promoter \u2014 and each offers different benefits and has different membership fees.<\/li>\n\n\n\n<li><strong>Undergo product testing by an <\/strong><a href=\"https:\/\/csa-iot.org\/certification\/testing-providers\/\"><strong>authorized test provider<\/strong><\/a><strong>.<\/strong> You\u2019ll also need to pay for the application and testing fees (which vary by testing provider and product).<\/li>\n\n\n\n<li><strong>Apply for your certification.<\/strong> This vital step is what enables your product to receive its certificate stamp of approval (and gives you the authority to use the Certified Product logo).<\/li>\n\n\n\n<li><strong>Receive your 10-year certificate and slap a Matter Certified Product logo on that bad boy.<\/strong> Once you receive your certification, your product will be included in the CSA\u2019s <a href=\"https:\/\/csa-iot.org\/csa-iot_products\/\">Certified Products<\/a> database (which currently lists more than 4,000 Alliance certified products and compliant platforms). You\u2019ll also get to show off by displaying the Certified Product label on your packaging that helps your device stand out.<\/li>\n<\/ol>\n\n\n\n<p class=\"wp-block-paragraph\">Of course, there are more specifics involved \u2014 how the certificates are issued and managed. We aren\u2019t going to get into all of that here. That\u2019s a topic for another time. Stay tuned for an article that will dive into all of that in the coming weeks. But what we can tell you is that DigiCert is the only certificate authority that can help you set up everything you need to issue IoT certificates for your devices.<\/p>\n\n\n<span style=\"--tl-form-height-m:149.594px;--tl-form-height-t:120.9844px;--tl-form-height-d:120.9844px;\" class=\"tl-placeholder-f-type-shortcode_16856 tl-preload-form\"><span><\/span><\/span>\n\n\n<h2 class=\"wp-block-heading\" id=\"h-final-thoughts-on-project-matter-and-the-new-matter-iot-standard\">Final Thoughts on Project Matter and the New Matter IoT Standard<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">We hope that this article has been enlightening. Our goal at Hashed Out is to help you stay abreast of industry changes and news. The Matter IoT standard stands to serve as a breath of fresh air in an industry that\u2019s long been plagued with security issues.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Of course, it\u2019s going to be interesting to see how all of this pans out over the next several months and years. From what I can tell, it\u2019s being rolled out properly and enough big-name manufacturers are supporting its adoption, so this new protocol looks like a shoo-in for becoming a universal standard much like:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Public key infrastructure<\/li>\n\n\n\n<li>Wi-Fi<\/li>\n\n\n\n<li>Bluetooth<\/li>\n\n\n\n<li>Trusted security modules (TPMs)<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">Of course, we here at Hashed Out can\u2019t predict the future. But all signs are absolutely pointing towards Matter mattering by becoming as ubiquitous as Bluetooth and USB. Suffice to say, we\u2019re excited about watching this enlightened industry move pan out and quickly become the ubiquitous standard for IoT beyond smart home devices.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><em>Stay tuned for another article here in the next few weeks that talks more about PKI\u2019s role in Matter compliance in the form of digital certificates and certificate lifecycle management. &nbsp;&nbsp;<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"<p>90% of consumers aren\u2019t confident about the security of their IoT devices. Frankly, who can blame them? IoT devices have a long history of exploitable weaknesses and security issues. Matter,&#8230;<\/p>\n","protected":false},"author":17,"featured_media":15784,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":"","tve_updated_post":"","tve_custom_css":"","tve_user_custom_css":"","tve_globals":{},"tcb2_ready":0,"tcb_editor_enabled":0,"tve_landing_page":"","_tve_header":"","_tve_footer":""},"categories":[16,17,10200],"tags":[3802,13134,13197,13198],"class_list":["post-15778","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-hashing-out-cyber-security","category-industry-lowdown","category-monthly-digest","tag-iot","tag-iot-security","tag-matter-iot-standard","tag-project-matter","post-with-tags"],"views":13179,"jetpack_featured_media_url":"https:\/\/www.thesslstore.com\/blog\/wp-content\/uploads\/2022\/09\/matter-iot-standard-feature.jpg","_links":{"self":[{"href":"https:\/\/www.thesslstore.com\/blog\/wp-json\/wp\/v2\/posts\/15778","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.thesslstore.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.thesslstore.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.thesslstore.com\/blog\/wp-json\/wp\/v2\/users\/17"}],"replies":[{"embeddable":true,"href":"https:\/\/www.thesslstore.com\/blog\/wp-json\/wp\/v2\/comments?post=15778"}],"version-history":[{"count":0,"href":"https:\/\/www.thesslstore.com\/blog\/wp-json\/wp\/v2\/posts\/15778\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.thesslstore.com\/blog\/wp-json\/wp\/v2\/media\/15784"}],"wp:attachment":[{"href":"https:\/\/www.thesslstore.com\/blog\/wp-json\/wp\/v2\/media?parent=15778"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.thesslstore.com\/blog\/wp-json\/wp\/v2\/categories?post=15778"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.thesslstore.com\/blog\/wp-json\/wp\/v2\/tags?post=15778"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}