Embed Size (px)
Citation preview
Jesse Lin
Account Technology Strategist
IoT Devices, Asia
Partner Devices and Solutions, Technical Sales
Intelligent ConnectivityIntelligent Devices
MICROSOFT IOT PORTFOLIO
WINDOWS 10 IoT EDITIONS
Windows Server 2016 for Embedded Systems (for IoT)
Advanced multi-layer security
Cloud-ready application platform
IoT Server Appliances
Windows 10 IoT Core
Smaller OS footprint; low level bus and hardware access support
Headless/Headed; UWP 512MB RAM, 2GB storage* | X86, X64, or ARM
Smart Devices
Windows 10 IoT Enterprise
Rich user experience
Windows 32 and UWP apps 2GB RAM, 16GB Storage | X86 or X64
Powerful Industry Devices
Windows 10 IoT Mobile
Lockdown, multi-user support and cellular
Modern Shell and UWP apps 1GB RAM, 8GB storage | ARM
Ruggedized Handheld Devices
*For details see: https://msdn.microsoft.com/en-us/library/windows/hardware/dn915086%28v=vs.85%29.aspx
Windows 10 IoT Edition Mapping
Windows Embedded 7 Windows Embedded 8 Windows 10 IoT
Windows 7 Professional
for Embedded Systems*
Windows Embedded POSReady 7
Windows Embedded Standard 7
Windows Embedded Handheld 6.5
Windows Embedded Compact 7
Windows Embedded 8.1 Industry
(Pro & Retail)
Windows Embedded 8.1 Handheld
Windows Embedded 8 Standard
Windows Embedded Compact 2013
Windows 10 IoT Enterprise(Enterprise for Embedded systems)
Windows 10 IoT Mobile
Windows 10 IoT Core
• Mobile Device Management
• Azure IoT Device Management
• Microsoft System Center and
Intune
• Windows Update
• Windows Store App Servicing
• Universal Windows Applications
• Cortana
• Visual Studio
• Windows Trusted Boot
• Secure Boot
• Credential Guard
• Device Guard
• Device Lockdown
• Bitlocker
• Trusted Platform Module
• Enterprise Data Production
• Windows Hello
• Window Biometric Framework
• Alljoyn/OCF
• OPC UA
• Industry Protocol Support
• TPM Protected Azure
Subscription Key
• Preconfigured Solutions
• Azure IoT hub Device Provisioning
• Cloud Connectivity
• Microsoft Cognitive Services
• Edge Intelligence
Simplifies IoT by powering smart devices that bring intelligence to the edge
ConnectedTrustedProductive
Windows
10 IoT
Designed for smart things that bring intelligence to the edge Productive Things
Commercial OS platform that brings
modern user experience to your things
Trusted Things
Trusted platform for cloud-connected
devices
Connected Things
Open platform that seamlessly connects
things, endpoints and the cloud
PRODUCTIVE THINGS
Commercial-ready
platform that brings
modern experience to
your things
Commercial Ready
• Device Management
• OS Update
• Windows Store Servicing
• Long Lifecycle
• Familiar Developer Tools and Resources
Interactive & Innovative UX
• UWP
• Ambient Cortana & Family-Oriented Device
Services
• Natural User Experiences: ‒ Touch
‒ Contextual Sensing
‒ Ink
Universal Windows Platform
One SDK + Tooling
One Store +One Dev Center
Cortana Intelligence
Suite
WindowsPen & Ink
WindowsHello
Configuration Security Management Updates
Device Native Cloud
.NET Standard
Trusted platform for
cloud connected
devices
Protect Devices
• Secure Boot
• Trusted Boot
• Windows Defender ATP
• Device Guard
• Advanced Lockdown
Protect Data
• BITLOCKER
• TPM
• Enterprise Data Protection (EDP)
TRUSTED
THINGS
Protect Identities
• Credential Guard
• Windows HELLO
SAFER AND MORE SECURE
Windows Hello
Windows Hello for Busineess
Companion Device Framework
Credential Guard
Replace passwords, protect
identities
Strengthen auth. with
biometrics and hardware-
based multi-factor
Secure Boot
Device Guard
Windows Defender
Only run software you trust
Eliminate Malware on
corporate devices
Windows Information Protection
Protect sensitive corporate
data
Automatic encryption with
persistent protection
Windows Defender Advanced Threat
Protection
Detect compromised
devices quickly
Use behavioral detection,
cloud, and human threat
intelligence to quickly identify
compromised devices
https://msdn.microsoft.com/en-us/library/windows/hardware/mt767514(v=vs.85).aspx
19
WINDOWS DEFENDER ADVANCED THREAT PROTECTION
DETECT ADVANCED ATTACKS AND REMEDIATE BREACHES
Unique threat intelligence knowledge base Unparalleled threat optics provide detailed actor profiles
1st and 3rd party threat intelligence data.
Rich timeline for investigationEasily understand scope of breach. Data pivoting
across endpoints. Deep file and URL analysis.
Behavior-based, cloud-powered breach detectionActionable, correlated alerts for known and unknown adversaries.
Real-time and historical data.
Built in to WindowsNo additional deployment & infrastructure. Continuously
up-to-date, lower costs.
Microsoft Confidential. Shared Under NDA.
Open platform that
seamlessly connects
things, endpoints and
the cloud
CONNECTED THINGS
Open Standards & Interface
• Standards based approach to IoT and
interoperability‒ ALLJOYN/OCF Integration for consumer IoT
‒ OPC UA for Industrial IoT
• Ubiquitous connectivity‒ USB, Wi-Fi, BLE, Cellular
• Low level BUS and hardware support
Azure Cloud Integration
• Secure Azure connection with TPM
• Best in-class connectivity with Azure
Microsoft IoT – Windows & Azure23
Microsoft Confidential
IoT editions power broad range of devices
20 years of history in embedded devices
One Windows Platform for all devices
Enterprise-ready, maker-friendly
Designed for today’s IoT environments
IoT Core edition includes a free SKU
Cloud-Based IoT Services & Solutions
Easy to provision, use and manage
Pay as you go
Global reach, hyper scale
End-to-end security & privacy
Windows, Mbed, Linux, iOS, Android, RTOS support
Windows Trusted Boot
Windows Hello
Credential Guard
Device Guard
Enterprise Data Protection
Windows Defender ATP
NEW CHALLENGES REQUIRE A NEW PLATFORM
WINDOWS 7 WINDOWS 10
25
2001 2002 2003 2004 2005 2006 2007 2008 2009 2010 2011 2012 2013 2014 2015
Traditional deployment (every 3-5 years)
Apps Infra Imaging Deploy
2009 2015 2016 2017 2018 2019 2020 2021 2022 2023 2024 2025 2026 2027 2028
Windows as a service (twice per year)
Apps Infra Imaging Deploy
CB
CB
CB
CB
CB
CB
CB WaaS Servicing Cadence• One consistent, secure Windows platform
• Devices automatically receive new CB when published
• Only current CB is serviced
• CBs are upgraded every ~4 months
• All updates are cumulative
Windows Editions
• Home
• Pro
• Enterprise
• Mobile
• Education
Monthly Security / Reliability
Updates
Monthly Security / Reliability
updatesDevices Upgrade to next CB
Windows 10 IoT Editions
Windows 10 IoT Core “Free” (targeted for Makers)*
CBBCB
CBBCB – RS2
CB – TH1
CBB WaaS Servicing Cadence• There are only 2 active CBBs at any given time.
• CBB is declared after ~4 months of servicing of the active CB
• CBB has ~8 months of servicing.
• First CBB occured in July 2015.
• All CBB updates contain a delta of previous updates
CB – TH2
CB – RS1
CBB
CBB
CBBWindows 10 IoT Editions
Windows 10 IoT Enterprise (CBB)
Windows 10 IoT Core Pro
Windows 10 IoT Mobile
LTSB WaaS Servicing • 10 years of servicing ( 5 Main + 5 Extended )
• Security, and required reliability/performance fixes only
• No feature additions
• All updates are cumulative
• Infrequent, every 2-3 years
• Requires WSUS or WUfB
Windows Editions
• Enterprise LTSB
• Education
CB CBB
CB CBB
CB CBB
CB CBB
LTSB
CB CBB
CB CBB
CB CBB
CB CBB
CB CBB LTSB
CB CBB
CB CBB
CB CBB
CB CBB
CB CBB
CB CBB
CB CBB
CB CBB
Windows 10 IoT Editions
• Windows 10 IoT Enterprise LTSB
Current Branch for Business vs. Long Term Servicing Branch
Current Branch for Business (CBB)
Long Term Servicing
Branch (LTSB)
Ongoing security updates for the lifetime of the branch
1st party browsing choices
Several months to consume feature updates
Support for Cortanaand some 1st party Universal apps
No feature upgrade required to stay supported
Value of the latest features as they are released
Capabilities
Recommended IoT use scenario
Modern UWP device experiences
Traditional embedded devices with Win32
Microsoft Edge, IE 11
Support for Microsoft Store
Ability to load universal apps
IE 11
Microsoft Windows 10 Enterprise
(Current Branch, Current Branch for Business)
Microsoft Windows 10 Enterprise 2015 LTSB
With Windows 7 and 8, servicing choices added complexity and cost, increased fragmentation, and reduced quality
Typical Windows 7 PC:
Selectively Patched
Windows 7 Test Lab PC:
Fully Patched
What customers
are running
What we
are testing
Y
YY
With Windows 10 servicing, consistency and simplicity are paramount
Changes being considered for older Windows releases as well
Microsoft Confidential
Windows is committing to a predictable twice-per-year feature release schedule, targeting September and March of each year, aligning with Office 365 ProPlus. The next Windows 10 feature update will be targeted for September 2017.
https://blogs.windows.com/business/2017/04/20/windows-office-align-feature-release-schedules-benefit-customers/#12i2GhBvyItgSHId.97
Each Windows 10 feature update (which initially begins as CB and then is declared as CBB) will be serviced with quality updates for a minimum of 18 months after it is released. The total length of time can be longer, as there will be two CBB releases serviced at all times. There will be a minimum of 60 days advanced notice (a grace period) after a CBB declaration occurs before an older feature update is no longer serviced.
https://technet.microsoft.com/itpro/windows/update/waas-quick-start
Note: Security updates will continue to be made available for both Windows 10 Enterprise 2015 LTSB and Windows 10 IoT Enterprise 2015 LTSB.
Windows 10 release cycle update
38Azure regions
NEWLY ANNOUNCED: France: France Central and France South
Korea: Korea Central and Korea South
DoD East and Central
Achieve global scale, in local regionsTrust
HIPAA /
HITECH Act
Moderate
JAB P-ATO
FIPS 140-2
FERPA
DoD DISA
SRG Level 2
ITAR CJIS
GxP
21 CFR Part 11
IRS 1075Section
508 VPAT
ISO 27001 SOC 1
Type 2
ISO 27018 CSA STAR
Self-Assessment
Singapore
MTCS
UK
G-Cloud
Australia
IRAP/CCSL
FISC
Japan
China
DJCP
New
Zealand
GCIO
China
GB 18030
EU
Model Clauses
ENISA
IAF
Argentina
PDPA
Japan CS
Mark Gold
SP 800-171
China
TRUCS
Spain
ENS
PCI DSS
Level 1
CDSA Shared
Assessments
MPAA
Japan
My
Number
Act
FACT
UK
High
JAB P-ATO
GLBA
DoD DISA
SRG Level 4
MARS-E FFIEC
ISO 27017 SOC 2
Type 2
SOC 3
India
MeitY
Canada
Privacy
Laws
Privacy
Shield
ISO 22301
Germany IT
Grundschutz
workbook
Spain
DPA
CSA STAR
Certification
CSA STAR
Attestation
HITRUST IG Toolkit
UK
Trust
The most trusted and compliant cloudG
LO
BA
LU
S G
OV
IND
US
TR
YR
EG
ION
AL
microsoft.com/cognitive
Azure IoT Analytics Patterns
Apache Storm/Spark
Dev
ices
RTO
S, L
inu
x, W
ind
ow
s, A
nd
roid
, iO
S
Gateway
On-Gateway
Analytics
On-Device App Analytics
In-Cloud Analytics
In-Cloud Hot-Analytics
In-Cloud Cold-Analytics
In-Cloud Analytics
Azure IoT Hub Designed for IoT to multi-scale
• Connect, monitor and manage millions of devices
Security• Individual device identities and credentials
• Per-device security keys
• X.509 via AMQPS/HTTPS/MQTTS
• IP Filter to reject/accept specific IP addresses
Cloud-scale messaging• D2C, C2D, File transfer & Request/Reply
methods
• Durable messages
• Device management: twin/methods/query/jobs
• Declarative message routing
Cloud-facing feedback• Delivery receipts, expired messages
• Device communication errors
Operations Monitoring• Monitor device connectivity and device identity
management events
Connection multiplexing• Single device-cloud connection for all
communications (C2D, D2C)
Multi-protocol• Natively supports AMQP, HTTP, MQTT
• AMQP/MQTT over WebSocket
• Designed for extensibility to custom protocols
Multi-platform• Device SDKs available for multiple platforms (e.g.
RTOS, Linux, Windows, iOS, Android)
• Multi-platform Service SDK
Data Visualization
Power BI
Learn more at: https://docs.microsoft.com/en-us/azure/power-bi-embedded/
Power BI overview
Power BI REST APIPower BI Desktop
Prepare Explore ShareReport
SaaS solutionsE.g. Marketo, Salesforce, GitHub,
Google analytics
On-premises dataE.g. Analysis Services
Organizational content packsCorporate data sources, or external data
services
Azure servicesE.g. Azure SQL, Stream Analytics
Excel filesWorkbook data and data models
Power BI Desktop filesRelated data from files, databases,
Azure, and other sources
Data refresh
Visualizations
Live dashboards
Content packs Sharing & collaborationNatural language query
Reports
Datasets01001
10101
Predictive Analytics
Azure MachineLearning
Learn more at: https://docs.microsoft.com/en-us/azure/machine-learning/
Common classes of problems
https://blogs.microsoft.com/iot/2017/04/20/microsoft-simplifies-iot-further/
https://azure.microsoft.com/en-us/blog/announcing-azure-stream-analytics-on-edge-devices-preview/
The IoT
Customer
Journey
Connect your things
Turn data into insights
Transform your business
