Posted On: Aug 19, 2021

You can now use Amazon IoT Core Credential Provider to request temporary, limited-privilege security token that are valid up to 12 hours and use the token to sign and authenticate any Amazon Web Services request. Until now, the Amazon IoT Core Credential Provider issued security tokens that were valid up to 1 hour only. Now with tokens valid up to 12 hours, customers have the ability to optimize the number of calls made to the Credential Provider by caching the credentials for a longer duration per their business needs.

Amazon IoT Core is a managed cloud service that lets connected devices easily and securely interact with cloud applications and other devices. IoT Devices can use X.509 certificates to connect to Amazon IoT Core using TLS mutual authentication protocols. Other Amazon Web Services services that not support certificate-based authentication can be called using Amazon Web Services credentials in Amazon Signature Version 4 format. The Signature Version 4 algorithm normally requires the caller to have an access key ID and a secret access key. Amazon IoT Core Credentials Provider allows you to use the built-in X.509 certificate as the unique device identity to authenticate Amazon Web Services requests. This eliminates the need to store an access key ID and a secret access key on your device.

You can visit the Amazon IoT Core Credential Provider documentation to learn more.