coversant, inc. internet of things service bus
DESCRIPTION
Coversant’s proprietary software Soapbox, an Internet of Things Service Bus (IoT-SB), connects disparate systems and devices, across platforms, in real-time, enabling the marriage of the “Internet of Things” and Big Data on the most scalable solution available. Built on event-driven (SOA 2.0) architecture, our SoapBox product line offers an advanced presence engine and higher levels of security via application centric networking. Soapbox IoT-SB allows automated conducting of data to the correct ends points, via auto-attendants of virtual rosters of devices and data source to be auto-discovered, auto-configured, auto-managed, and auto-controlled through a secure channel that can be configured on the fly. Auto-attendants can be written in any language and reside inside or outside of the platform (assuming in process extension, out of process extensions, or client extensions). Standard features of SoapBox allow for Human, Application and Machine collaboration around the M2M, sensor data and analyzed results. SoapBox also includes streaming of content through pub/sub, virtual rosters and MUC rooms. Components can be integrated into existing UI with ease. Certified by the Defense Information Systems Agency (DISA) and added to the U.S. Department of Defense Unified Capabilities Approved Product List (UCAPL) in August 2012, and is one of two companies that currently hold the distinction. Our security and privacy capabilities make it the clear choice for IoT.TRANSCRIPT
A P
LA
TF
OR
M T
O P
OW
ER
TH
E I N
TE
RN
ET
OF
TH
I NG
S
3rd PLATFORM
BILLIONSOF USERS
100s OF BILLIONSOF THINGS
MILLIONSOF APPS
Mobile Cloud Big Data Social IoT
Mobile Devices2.5 exabytes/day (= billion gigabytes
= 10^18 bytes) of data (2012)TENS OF THOUSANDS
OF APPSHUNDREDS OF MILLIONS
OF USERS
2ND PLATFORM
LAN/Internet Client/ServerPC
1ST PLATFORM
MILLIONS OF USERS THOUSANDS OF APPS
Mainframe, MinicomputerTerminals
COMPANY
CONFIDENTIAL
The emergence of the IoT and mobility have increased: The amount of data Data distribution Number of connections required Number of requests per device Importance of real time Security risks Current network inefficiencies
THE PROBLEM
? How will organizations securely access Big Data? From more devices
? Everywhere
? Efficiently
COMPANY
CONFIDENTIAL
1. Provide an ability to view remote sensors and control of actuators over any technology and provide maximum assurance of interoperability with built-in security
2. Provide registration of devices to recognize if a devices configuration has changed
3. Ensure that all data is encrypted between end points.
4. Provide presence capability to know that a device is available for use.
5. End device shall have the ability to instantly change an incoming protocol to XML
– The XML shall be able to be mapped to any protocol
– The XML may be used as the primary protocol
6. End devices are viewable by a web browser and can be viewed on mobile devices
7. There shall be a intermediary brokerage (Service Broker) between the end-point
8. Firewalls shall exist at all end-points
9. There shall be a profile that can identify the end devices
10. The interface shall be able to operate over any wired or wireless connection
IOT/M2M REQUIREMENTS
COMPANY
CONFIDENTIAL
Reduce up front and total lifecycle costs of systems
Increase the technical performance of key systems
Compress schedules for system acquisition programs
Enable new, innovative, creative concepts of operation (CONOPs) and tactics, techniques, and procedures (TTPs)
Extend the service life of legacy systems and components (e.g., those that would be difficult to integrate into/with new systems, architectures, and technologies).
Reduce the level of technical risk for acquisition programs
Enhance the security, survivability and operational continuity of vital systems, platforms, networks, infrastructure, operations from a macro perspective
Improve the confidentiality, availability, integrity, and authenticity of data
Accelerate and dramatically increase the integration of systems and operations
Optimize operational capabilities of shrinking structure
Reduce manpower requirements and costs
"Do more with less”
ORGANIZATION CHALLENGES
COMPANY
CONFIDENTIAL
Highly advanced Internet of Things Service Bus (IoT-SB)
Based on event-driven fabric
Advanced presence engine
Benefits: Big Data distribution Loosely Coupled Applications Billions of devices Bi-directional communication Real-time (as real as Internet gets) Federation of disparate systems (interoperable)• Applications (Loosely Coupled)• Devices • People
Highly secure and reliable• Protects applications and data• Application centric networking
Vertical and horizontal scaling (including Global Server Load Balancing)
THE SOLUTION
COMPANY
CONFIDENTIAL
GENERAL CONFIGURATION
XMPP Widely Adopted
Protocol Users/Promoters Market Requirements
XMPP Used 1 Billion + devicesAppleAndroidGoogle Cloud ConnectionAllSeen (Qualcomm)UPnP
Open Standard- IETFVoting IEC, ISO, IEEE
Gateway to CloudTrue PresenceFull SecurityPrivacy
COMPANY
CONFIDENTIAL
1. Applications, end-points, and users are not exposed to cyber-attack
2. All devices must be registered and can only talk to the Service Broker
3. End devices can be viewed by mobile devices such as Android
4. Packets are inspected during the transversion process
5. The device identity and use must be specified in a transducer profile
6. All devices, applications and users have an agreed trust relationship
7. The brokerage provides virtually unlimited scalability.
BENEFITS OF XMPP FOR IoT
COMPANY
CONFIDENTIAL
Active/Active Clustering True single domain hosting, no sub domains required Single or Multi-domain hosting from a single cluster or server
Proprietary High Performance Message Engine Highest Single Server1 Performance• Over 1 million concurrent sessions• Over 300k messages2 per second throughput
Highest Compact Server3 Performance• 200-250k concurrent sessions• 50-60k messages2 per second throughput
Global Server Load Balancing Multi-site clustering and fail-over Single domain hosting across multiple sites
BIG DATA | MASSIVE CONCURRENCY
1 HP DL900 x8 XEON 10 Core, 128 GB, 4x10GB NICs2 1k of XML as message body3 HP BL480 2x XEON 4 Core, 16GB, 10GB NIC
COMPANY
CONFIDENTIAL
Product Stanza Type Average Per Call (ms)
Max Per Call (ms) Min Per Call (ms)
OPC.TCP (cloud) 1 n/a 89 354 70
OPC.TCP (local)2 n/a 2 5 1
OpenFire Message 3369 5034 2268
OpenFire IQ Failed Failed Failed
SoapBox Server Message 159 374 143
SoapBox Server IQ 197 213 188
Ejabberd3 Message 2021 2558 1617
Ejabberd3 IQ 3985 6391 3332
PERFORMANCEPerformance was evaluated by setting up an OPC UA and then calling the Read service for 100 integer values. The XMPP server was running on a cloud based Windows Server 2008 R2 accessed via a 2 Mbps Internet connection. The OPC UA client and server were running on the same machine. The security policy is Basic128Rsa15 in all cases.
COMPANY
CONFIDENTIAL
WHY IS SOAPBOX MORE SECURE?
TCP connection with TLS Client certificates on the TLS handshake Verification of identity of both endpoints
XMPP login SCRAM-SHA1-PLUS SASL mechanism Channel binding (the PLUS) guards against man-in-the-middle attacks
on the TLS connection
Secure server-to-server connections For communicating between XMPP domains Allows for flexibility in the system architecture White or black list functionality to control server-to-server connections
Coversant is a sponsoring member of the XMPP Standards Foundation and uses XMPP as an open standard for communication. It does not, however, rely on any open source code.
COMPANY
CONFIDENTIAL
THE HIGHEST STANDARDSCertification: Certified by and added to the U.S. Department of
Defense Unified Capabilities Approved Product List (UC-APL) in August 2012
One of only two companies to win certification for Unified Communications on the DoD UC-APL, and the only company that is U.S. based with all code developed in the U.S.
Rigor and design excellence Commercial Defense Space Government
A track record 8th generation mature, stable and patented
Current Markets/Customers
• Building Automation- Ingersoll Rand TRANE• Fortune 100 HVAC company • 1500 service representatives HVAC systems in 200,000 buildings• Support more buildings, provide a more proactive, intelligent level of service• No additional service representative• Create a new revenue model for this higher level of service
• SmartGrid- Intelligent Energy Solutions (E3 Greentech) • Deploy sensor-enabled smart meters on water heaters and HVAC systems, thermostats,
and smart plugs • Detect and control the “vampire effect” (draining of power) of appliances and other
devices
• Cable- Foxtel- Set-Top Box RDM• A pay for content television company• Gather viewer metrics (watch live, recorded, fast forward, and total time) through set
top boxes • Supply content providers discovery via remote button use (volume, channel, record,
etc.)
• Cable- Pace Networks- Integrated with Cobalt RDM backend
• Defense- NAVY, Air Force- C4 ISR
COMPANY
CONFIDENTIAL
REMOTE DEVICE MANAGEMENT
COMPANY
CONFIDENTIAL
Power of Presence for DevicesReal-time tracking of status and capabilities of assets in the field.
Challenges Assumes rosters are preconfigured Can create significant chatter Excess of unrelated presences message delivered
Solution Advanced Presence Automated Rosters Auto-attendants
Benefits Automatically identifies assets in need and directs them to resources to
resolve issues Automatically link asset together to reduce miscommunication and cycle
times Update business and device processes from a single location
AUTOMATION VIA MESSAGING
CURRENT CABLE DEPLOYMENT
Adding the IoT
BRIDGING AT THE GATEWAY
COMPANY
CONFIDENTIAL
MILITARY C4 ISR
COMPANY
CONFIDENTIAL
DEMO CONFIGURATION
