You may end up deploying physical gateways near the edge to collect data or manage IoT devices using short-range communication protocols. These gateways must be deployed securely just as your edge IoT devices must be secured. Take the following steps:
- Update the device to the latest firmware and establish a process to continue firmware updates
- Disable unneeded services and ports on your gateway devices
- Disable unneeded accounts on the gateway and change all default passwords
- Set up role-based access controls to restrict who can perform privileged functions on the gateway (for example, provisioning new firmware to devices or making configuration changes)
- Provision gateways with identity certificates
- Configure all TCP-based communications ...