Close

Husarion cloud security

A project log for CORE2 - A computer for robots

ARM Cortex-M4 + ARMv8. Motor interfaces. 54 I/O with UART, SPI, I2C, CAN. C++ 11 API. Cloud management. ROS-powered.

husarionHusarion 08/03/2017 at 14:540 Comments

It’s not enough that your robot simply connect to the internet. It should be connected securely, so no one has an access to your devices without your approval.

At Husarion we address your robot’s security in a few different areas:

a) Connection between CORE2 and cloud platform - every single message is encrypted and full SSL protocol is implemented, both for CORE2 and CORE2-ROS.

b) Your cloud account and code execution - JavaScript code that powers the user interface is executed in a separate sandbox for each robot. When you compile code in the Web IDE, the compilation also takes place in a sandbox. Working in sandboxes guarantees that users cannot affect the operation of the server or other user accounts.

c) Robot sharing settings - security needn’t mean that only you can use your robots. Thanks to sharing settings you can share your robots with your friends for a fixed amount of time (a few minutes, a few hours, a few days, … or forever) and with specified access rights (read-only, full control etc.). After you select the access rights, you can decide how you will share your robot.

There are two ways:

d) Web console to CORE2-ROS: you can access Linux console of your CORE2-ROS from your cloud.husarion.com user account. It doesn’t matter which network your robot is connected to. The connection is done using the https://www.zerotier.com/ project that provides a secure and effortless VPN setup between your computer and your CORE2-ROS.

e) Run air-gapped robots: the most security sensitive robots can be operated without any access to the internet at all, thanks to our offline SDK.

You don’t need to be an internet technologies expert to be able to manage your CORE2 based robots online without worrying about an unauthorized access to your devices. You can focus just on your robotics application instead.

Discussions