With AWS IoT Device Defender, you pay only for what you use and there are no minimum fees or mandatory service usage. You are billed separately for the Audit and Detect features.

Audit monitors your device-related policies, certificates, and other resources to ensure that the proper security configuration is in place. You can generate reports that identify deviations from recommended settings and access policies on a scheduled or ad-hoc basis.

Detect allows you to continuously monitor high-value security metrics data reported by your devices (e.g. the number of listening TCP/IP ports on your devices or list of IPs the device is communicating with) and the cloud (e.g. authorization failure count). When you use Rules Detect, the metric data is continuously evaluated against user-defined behaviors; when you use ML Detect, the metric data is continuously evaluated by automatically built machine-learning models to identify anomalies. In case an anomaly is detected, an alarm notification is sent to Amazon SNS.

Audit pricing

When you turn on Audit, you are charged based on the number of devices that have connected to AWS IoT Core in the month.

  Price per 1,000 devices audited monthly (Beijing) Price per 1,000 devices audited monthy (Ningxia)
Tier 1 (Up to 100,000 devices) ¥ 10.4 ¥ 10.4
Tier 2 (Over 100,000 devices) ¥ 9.47 ¥ 9.47

Rules Detect pricing

Rule-based Detect lets you define rules and thresholds to monitor devices in your fleet for operational and security issues across metrics like messages sent and connection attempts. You can also take built-in actions to respond to detected issues like quarantining a device. You are charged based on the number of metric datapoints reported to AWS IoT Device Defender for monitoring. A metric datapoint, for example, is the number of messages sent by your device.

  Price per 100K metric datapoints monthly (Beijing) Price per 100K metric datapoints monthly (Ningxia)
Tier 1 (Up to 10 billion metric datapoints) ¥ 0.24 ¥ 0.24
Tier 2 (Over 10 billion metric datapoints) ¥ 0.19 ¥ 0.19

With AWS IoT Device Defender, you will be billed separately for usage of Connectivity to AWS IoT Core but will not incur additional AWS IoT Core Messaging costs for metric datapoints reported to AWS IoT Device Defender. You will be billed separately for alert notification delivery via Amazon SNS.

ML Detect pricing*

ML Detect provides an easy way to monitor devices in your fleet for operational and security issues across metrics like messages sent and connection attempts. You can also take built-in actions to respond to detected issues like quarantining a device. You are charged based on the number of metric datapoints reported to AWS IoT Device Defender for monitoring. A metric datapoint, for example, is the number of messages sent by your device.

  Price per 100K metric datapoints monthly (Beijing) Price per 100K metric datapoints monthly (Ningxia)
Up to 0.3M metric datapoints ¥ 19.31 ¥ 19.31
Next 9.7M metric datapoints ¥ 7.24 ¥ 7.24
Next 90M metric datapoints ¥ 1.45 ¥ 1.45
Over 100M metric datapoints ¥ 0.97 ¥ 0.97

* ML Detect is currently free for all usage levels during preview.

Pricing examples for AWS IoT Device Defender components

Audit

You have 100 devices that connect to AWS IoT Core every month. Your cost for Audit would be calculated as follows:

Charges = 100 devices X ¥0.0104 per device per month = ¥1.04 per month

Rules Detect

You have 100 devices and they are reporting 4 metrics at the rate of 2 datapoints per hour with rule-based Detect turned on. Your cost for rule-based Detect would be calculated as:

Number of metric datapoints per month = 100 devices x 4 metrics x 2 datapoints per hour x 24 hours per day x 30 days per month = 0.576M

Charges = 0.576M metric datapoints x ¥0.24 per 100K metric datapoints = ¥1.38 per month

ML Detect

You have 20 devices and they are reporting 6 metrics at the rate of 2 datapoints per hour with ML Detect turned on. Your cost for ML Detect would be calculated as:

Number of metric datapoints per month = 20 devices x 6 metrics x 2 datapoints per hour x 24 hours per day x 30 days per month = 172.8K

Charges = 172.8K metric datapoints x ¥19.31 per 100K metric datapoints = ¥33.37 per month

If you increase your devices to 100 and they are reporting 6 metrics at the rate of 2 datapoints per hour with ML Detect turned on, your cost for ML Detect would be calculated as:

Number of metric datapoints per month = 100 devices x 6 metrics x 2 datapoints per hour x 24 hours per day x 30 days per month = 864K

Charges = 300K metric datapoints x ¥19.31 per 100K metric datapoints + (864-300)K metric datapoints x ¥7.24 per 100K metric datapoints = ¥98.76 per month

Total monthly charges for AWS IoT Device Defender

Your total monthly cost for AWS IoT Device Defender is as follows:

Total monthly charges = ¥1.04 Audit cost + ¥1.38 Rule Detect cost + ¥98.76 ML Detect cost (for 100 devices reporting 6 metrics) = ¥101.18