Security

When it comes to IoT devices, there is no shortage of security concerns. This part of the guide will be a discussion of security-related topics that arise with a product at scale.

Treating Devices as Products

When you created a product, you created a new type of device in the Particle cloud. So far, development kits that you have been using for prototyping have been considered as a "Photon," "P1", "Electron," or "Core" by the Particle cloud. However, when you add devices to your product, you are signaling to the cloud that you would like them to be treated as part of your product instead of as development kits.

There are certain security implications that arise around devices behaving as products. Ideally, the following is always true:

  • Only the devices that are given product privileges will receive them
  • Only the people who should have the ability to interact with the product device will be allowed to do so

There can be, however, cases when the Particle cloud won't have all the information it needs to be certain that a device should in fact be treated as a part of your product. As such, you have the power as a product creator to choose the level of strictness around which devices receive product privileges and which do not.

Before making this decision, it is important to get a grasp of the role of the Product ID in the Particle cloud.

Product IDs

A Product ID is used to group devices together and treat them as a cohesive unit. A group of devices that all share a Product ID are able to do things like download product-specific firmware, publish events that will appear in a product's event stream, and trigger product webhooks.

Each product can only have a single type of device, however some devices are grouped together:

  • The B Series SoM B404X/B404/B402 is a separate product from the B524/B523
  • All Tracker Ones ONE404/ONE402, ONE524/ONE523, Tracker SoM T404/T402, and T524/T523 can share a single product
  • The E Series E404/E402/E201 and Electron models can share a single product
  • Except for the E Series E404X, which must be in its own product
  • The P2 and Photon 2 must be in separate products
  • The P1 and Photon must be in separate products

When you created your product, a unique numeric ID was assigned to it. This ID will be used countless times during the development and manufacturing process for your product. When a device is added to a product, the Product ID of the device changes from a development kit to a member of a product.

You will be able to find your product's ID at any time in your product's console navigation bar:

A new product

Your product ID is marked with a key icon

You should store your Product ID in a safe place where you won't forget it. It may be helpful to memorize your Product ID if possible.

Information for Device OS 3.x and earlier