SMART IoT Gateway Security

The SMART IoT Gateway was developed by Wildlife Acoustics as a way to manage multiple Internet-connected SMART Systems. It uses robust security practices and provides simple options for managing user access to the SMART Control Panel.

The SMART IoT Gateway was developed by Wildlife Acoustics using OpenSSL. The server is hosted in Amazon Web Services (AWS), and the client runs on the SMART Controller when enabled in the SMART Control Panel Administration tab.

Connection Security

To connect, the SMART Controller establishes an AES128-SHA encrypted connection to the SMART IoT Gateway on a TCP connection. The SMART Controller and IoT Gateway identify and authenticate each other with a SHA256 hash.

The encrypted TCP connection can then multiplex multiple HTTPS and SSH encrypted tunnels between a SMART Controller and authorized clients. This means each session is double-encrypted.

The SMART IoT Gateway maps two unique TCP ports to each connected SMART Controller: one for HTTPS traffic and one for SSH traffic.

User and IP Address Authorization

The SMART IoT Gateway will only allow connections from authorized IP addresses for a given SMART Controller as specified in the SMART Portal on wildlifeacoustics.com.

Authorized users can authorize connections from their own current IP address or a manually entered IP address or subnet. The union of all authorized IP addresses from authorized users is allowed to make connections through the SMART IoT Gateway to any given SMART Controller.