Posted On: Apr 4, 2019
Amazon IoT Core launched the Custom Authentication and Credential Provider feature in the BJS region operated by Sinnet. Using the custom authentication feature, you can utilize bearer token authentication strategies, such as OAuth, to connect to Amazon Web Services without using a X.509 certificate on your device. With this feature, you can reuse the existing authentication mechanisms that you have already invested in.
The Amazon IoT Core Credential Provider feature makes it easier for devices to access other Amazon Web Services services, such Amazon S3. After a device is authenticated with a X.509 certificate, Amazon IoT Core can exchange the X.509 certificate for the IAM credentials associated with a predefined IAM role, and return it back to the device. This feature removes the need for customers to store multiple credentials on their devices.