You are here

What IoT Can Learn From The Payment Card Industry | 赛普拉斯半导体

What IoT Can Learn From The Payment Card Industry

This is part one of a two part series.

The IoT industry is evolving past the proliferation-at-all-costs phase and into a phase focused on profitability. Engineering teams are responding by critically examining every added piece of hardware that isn’t viewed as critical to the intended purpose of the smart device. Interestingly, many think of privacy and security – which are both highly visible topics in the news – as a cost and not a value-added feature. It seems that consumers have not transitioned their general privacy concerns into a preference for secure IoT devices. That said, a breach of an IoT product’s security can kill it, perhaps more quickly than almost any other failing; such is the public’s heightened sensitivity to privacy breaches and online crimes.

This puts the IoT industry between the proverbial rock and a hard place. The good news is there are lessons from the payment card industry that can be applied to the IoT to help reconcile the dilemma.

Managing the cost of an IoT device extends beyond the bill of materials (BOM). Allocated costs can affect the profitability of an IoT device just as much as the BOM cost. Secure manufacturing is one such allocated cost. The total cost of ownership for provisioning secure IoT devices includes capital investment for controlled access facilities, isolated equipment, and special custom inventory. Given that a particular IoT device on average will sell less than one million units per year, and in fact, possibly less than five hundred thousand units, the per unit cost burden of this investment is prohibitive. For OEMs, managing this cost likely means outsourcing to a third-party that is aggregating volume over many customers.

Whether it’s in-house or outsourced, aggregating volume for secure provisioning fundamentally requires a common approach across different applications. The Payment Card Industry (PCI), where the billions of dollars’ worth of transactions are securely conducted, can offer some clues on how to develop this approach.

Rather than foster independent transaction processes, Europay, MasterCard and Visa came together in 1993 to standardize the process for secure transactions. This normative influence yielded tremendous efficiency in the design and operation of payment networks and manufacturing of credit cards. The high cost of constructing controlled facilities and procuring secure, qualified programming equipment is amortized across millions of units aggregated across payment networks and banks so that the per-unit cost is very low.

The question for embedded OEMs: Is this evolution happening for the IoT?

Part two of this blog will examine what this looks like. **Spoiler! It’s already available!**

本网站上的所有内容和材料均“按原样”提供。赛普拉斯半导体公司及其各个供应商对这些材料用于任何用途的适用性不作陈述,并且对关于这些材料的所有担保和条件概不负责,包括但不限于有关适销性、针对特定用途之适用性、权利和不侵犯任何第三方知识产权的所有暗示担保和条件。赛普拉斯半导体公司不授予任何明示或暗示的许可(无论是以默许方式或是任何其他方式)。使用本网站上的信息可能需要第三方的许可,或赛普拉斯半导体公司的许可。

本网站上的内容可能包含或必须遵守关于使用的特定准则或限制。所有帖子和使用本网站上的内容都必须遵守本网站的条款与条件;使用这些内容的第三方必须同意遵守任何限制或准则,并遵守本网站的条款与条件。赛普拉斯半导体公司及其供应商保留随时对内容和材料、产品、计划和服务进行纠正、删除、修改、增强、改进或其他变更,或者移动或终止任何内容、产品、计划或服务的权利,恕不另行通知。