Performance & Reliability
CDN DNS Argo Smart Routing Load Balancing Web Optimizations China Network
Video Streaming & Delivery
Cloudflare Stream Stream Delivery
Advanced Security
DDoS Protection WAF Rate Limiting SSL / TLS DNSSEC Cloudflare Access Cloudflare Spectrum Argo Tunnel
Insights
Analytics Cloudflare Logs
Cloudflare for Developers
Cloudflare Workers Cloudflare Workers KV BETA Mobile SDK
Domain Registration
Cloudflare Registrar EARLY ACCESS
Cloudflare Marketplace
Cloudflare Apps
Cloudflare for Everyone
1.1.1.1
Performance
Accelerate Internet Applications Accelerate Mobile Experiences Ensure Application Availability
Security
Mitigate DDoS Attacks Prevent Customer Data Breaches Stop Malicious Bot Abuse
Industries
SaaS Publishers Public Sector
Partnerships
Partner Program Hosting Provider Referral Reseller / MSP OEM / Technology Workers Partner Program Peering Portal Bandwidth Alliance
Integrations
IBM Cloud WordPress Google Cloud Magento Acquia Rackspace Microsoft Azure Kubernetes WP Engine
Develop
API Guide Developer Hub Developer Fund Documentation
Explore
Case Studies Cloudflare in China Network Map Webinars Product Updates White Papers GDPR
Learn
DDoS Learning Center CDN Learning Center DNS Learning Center Security Learning Center Performance Learning Center Serverless Learning Center
Connect
Blog Contact Sales Community Support
Contact
Orbit

I*oT protection by Cloudflare

Technology is changing — shifting towards a world where low cost, connected chips power products used by billions of people around the world. Everything from jet turbines and oil rigs, to cars, cameras, and clothing are coming online. And while these tiny chips unlock incredible potential, they are a liability if not secure.

When PC vulnerabilities are discovered, software vendors issue a patch, which end users are required to download and install. These patches keep PC software up-to-date and secure. IoT devices also require patches, but the PC security model can’t scale to 22 billion devices; IoT manufacturers often haven’t built over-the-air (OTA) update mechanisms and are terrified that updates will brick a user’s device. In the meantime, consumers never think about having to upgrade their internet-connected “toaster.”

Cloudflare Orbit solves this problem at the network level by creating a secure and authenticated connection between an IoT device and its origin server. Orbit takes the Internet out of IoT: Behind Orbit, devices are I*oT.

Orbit allows device manufacturers to instantly deploy “virtual patches” and block vulnerabilities across all devices on the network simultaneously. This keeps malicious requests from reaching devices, buys time for IoT manufacturers to carefully QA their updates, and keeps devices from leaking data or launching DDoS attacks.

Talk to us!

Benefits of Orbit for IoT Device Manufacturers

Two gears

Secure & authenticated data transfer

Cloudflare’s Mutual Authentication (TLS Client Authentication) creates a secure, authenticated connection between IoT devices and their origin server.

Shield

Vulnerabilities blocked in real-time

Cloudflare’s firewall instantly blocks malicious threats across all IoT devices at the network level.

Earth icon

Fast and cost-effective firmware updates

Cloudflare delivers IoT firmware updates directly from cache, resulting in faster updates and reduced bandwidth costs.

Earth icon

Improved battery life

Cloudflare’s compression and performance optimizations reduce data transmission, resulting in lower power consumption and better battery life.

“Keeping our products and customers secure is our primary concern. Cloudflare provides an extra layer of security that allows us to keep our devices continually updated and ahead of any vulnerabilities.”
PAUL GERHARDT
Co-founder at Lockitron

Secure and Authenticated IoT Device Connections

Cloudflare’s Mutual Authentication (TLS Client Authentication) creates a secure connection between an Internet of Things device and its origin. When a device attempts to establish a connection with its origin server, Cloudflare validates the device’s certificate.

Successful IoT Device Authentication

If the device has a valid client certificate, like having the correct key to enter a building, the device is able to establish a secure connection.

Unsuccessful IoT Device Authentication

If the device’s certificate is missing, expired, or invalid, the connection is revoked and Cloudflare returns a 403 error.

Trusted By

To provide you with the best possible experience on our website, we may use cookies, as described here.
By clicking accept, closing this banner, or continuing to browse our websites, you consent to the use of such cookies.