Go to Spaceti
All Collections
Sensors
General Information
Spaceti Sensors - Security Whitepaper

Spaceti Sensors - Security Whitepaper

S
Written by Spaceti Support. Updated over a week ago

1. GLOSSARY

Spaceti Sensors – portfolio of all Spaceti Smart stones (Location, Environmental, Occupancy, …) and other sensors (Spaceti parking sensor, …).

Sensor Data – anonymized data from sensors, such an occupancy, environmental parameters (temperature, humidity, CO2) etc.

Spaceti Services – services provided to end customer (data handling, analytics, real-time data, device management, map editor, …). See other documentation for detailed information.

Spaceti Cloud – mix of infrastructure, server, databases to serve Spaceti Services.

Spaceti Sensor Gateway – data aggregator used for collecting data from Spaceti Sensors and sending to Spaceti Cloud via Internet interface.

Sub-GHz band – communication channel operating in frequencies around 868 MHz or 915 MHz. Used for communication between Spaceti Sensors and Spaceti Sensor Gateway (except product with NB-IoT).

NB-IoT - Low Power Wide Area Network (LPWAN) radio technology standard used for direct communication between Spaceti Sensors and Spaceti Cloud.

Internet Interface -

Datasheet – technical documentation with detailed information about sensor/product.

VPN – Virtual Private Network.

Device Management – secure connection between Spaceti Cloud and Spaceti Gateway.

AES - Advanced Encryption Standard.

PN – Part Number – unique identifier of product type.

SN – Serial Number – unique identifier of sensor across all Spaceti Sensors.

OTA update – Over The Air update.

2. TECHNOLOGY OVERVIEW

Spaceti Sensors portfolio consists of sensors for variable use-cases, such a creating indoor localization network for mobile app, tracking occupancy on individual seats or in specific meeting room, monitoring environmental parameters etc.

See specific Part Numbers and it’s use-cases:

where:
# = color option; @ = communication channel option (Sub-GHz bands or NB-IoT); *** = product revision.

Note: please see the latest sensors portfolio and its datasheets online.

Note: sensors are available in different colors, Sub-GHz bands (depends on country to operate) and revisions. Please refer more during order placement.

Spaceti Sensors are sending Sensor Data to Spaceti Cloud. Sensor Data can be transferred through:

2.1. SUB-GHZ TOPOLOGY

Presence of Spaceti Gateway is crucial in Sub-GHz topology. It receives data from Spaceti Sensors and sends through Internet Interface to Spaceti Cloud. Also, other features are available:

  • Device management - secure channel (through VPN) to manage Spaceti Gateway (device update, logs, etc.).

  • SIM card management (if applicable) - blocking, enabling connection, SIM info, data transfer info.

SPACETI GATEWAY – INTERNET INTERFACES

To enable function of Spaceti Gateway, device must be connected to Internet (to reach Spaceti Cloud). Options available:

  1. Mobile network connection: 2G/3G network, 4G (LTE) network

  2. Ethernet connection

  3. Wi-Fi connection

2.2. NB-IoT TOPOLOGY

Other available features:

  • SIM card management - blocking, enabling connection, SIM info, data transfer info.

Please note, that NB-IoT network is not supported in all countries. Please check with Spaceti if NB-IoT products can operate in specific country.

2.3. MOBILE NETWORK CONNECTIVITY

If Spaceti Gateway with mobile network connection Internet Interface is used, following features are available:

  • 2G/3G/4G network support (choose proper product PN during order),

  • Global roaming (check with Spaceti availability in specific country),

  • SIM cards management - blocking, enabling connection, SIM info, data transfer info,

  • Support of different Telco providers (replaceable miniSIM and configurable APNs) – please contact Spaceti to discuss further.

3. PHYSICAL SECURITY

To enable physical security of Spaceti Sensor or Spaceti Gateway, following features are available:

  • FW locked (available only for devices without OTA update),

  • Free-fall detection – to understand sensor falling from wall (available for Location/Standard sensors group),

  • Movement detection – to understand moving sensors from its original position (available for parking sensors etc.).

4. SPACETI SENSORS SECURITY

To provide secure transfer of Sensors Data to Spaceti Cloud, following security features are implemented in Spaceti Sensors:

  • End-to-end encryption (Spaceti Sensor to Spaceti Cloud) using AES-128,

  • Message counter,

  • Sensor chip unique id (hardcoded) check,

  • Notification about inactivity of Spaceti Sensor,

  • Battery monitoring.

5. SPACETI GATEWAY SECURITY

To provide secure transfer of Sensors Data to Spaceti Cloud and provide ability to manage Spaceti Gateway remotely, following security features are implemented:

  • VPN – to provide secure access to Spaceti Gateway and enable remote FW upgrade, log management.

  • Monitoring of Spaceti Gateway connection utilization,

  • Reporting of Spaceti gateway inactivity.

6. SPACETI CLOUD SECURITY

As final stage of data flow, Sensor Data are processed in Spaceti Cloud. Spaceti Cloud security is the subject of document Spaceti Cloud Security whitepaper.

Konec stránky

7. COMPLIANCE

It is important for Spaceti to be sure about customers/partners data privacy and provide services regarding protecting the confidentiality, integrity, and availability of information.

Did this answer your question?