Posted On: Jul 30, 2021

You can now use AWS IoT Core Credential Provider to request temporary, limited-privilege security token that are valid up to 12 hours and use the token to sign and authenticate any AWS request. Until now, the AWS IoT Core Credential Provider issued security tokens that were valid up to 1 hour only. Now with tokens valid up to 12 hours, customers have the ability to optimize the number of calls made to the Credential Provider by caching the credentials for a longer duration per their business needs.

AWS IoT Core is a managed cloud service that lets connected devices easily and securely interact with cloud applications and other devices. IoT Devices can use X.509 certificates to connect to AWS IoT Core using TLS mutual authentication protocols. Other AWS services that not support certificate-based authentication can be called using AWS credentials in AWS Signature Version 4 format. The Signature Version 4 algorithm normally requires the caller to have an access key ID and a secret access key. AWS IoT Core Credentials Provider allows you to use the built-in X.509 certificate as the unique device identity to authenticate AWS requests. This eliminates the need to store an access key ID and a secret access key on your device.

You can visit the AWS IoT Core Credential Provider documentation to learn more.