CSPs offer a wide range of options for provisioning and managing keys and certificates on your IoT devices. This process is typically completed during the onboarding period; however, management of cryptographic material is an ongoing activity that requires the ability to update these materials on a regular basis.
AWS IoT provides administrators with the option to generate their own public/private key pairs and an associated Certificate Signing Request (CSR), which is then uploaded to the AWS Public Key Infrastructure (PKI) for signing.
AWS IoT also allows administrators to simply use their own certificates, by first registering their CA certificate with the AWS IoT service. This is a good option if your organization ...