Filter results by

ARTIK Overview

Samsung ARTIK represents a hardware, software, and cloud strategy for the Internet of Things (IoT) that is secured end-to-end. Here's the solution in a nutshell.

ARTIK modules are the processing and input/output hardware. They contain a Secure Element for keys and private data; the "s" module variants extend the security with a lockable JTAG port and secure boot, OS, storage, and over-the-air (OTA) updates.

Modules implement Wi-Fi®, ZigBee®, Thread®, and/or Bluetooth® radios, moving data with SSL/TLS-protected TCP-IP, MQTT, CoAP, BLE, and other protocols.

ARTIK Cloud receives data from and sends actions to the pre-registered ARTIK modules, ensuring secure operation. Rules you set up in ARTIK Cloud allow it to make decisions and take action based on data coming in. Connectors from ARTIK Cloud to other clouds keep your options wide-open.

ARTIK Linux gateway modules handle local Edge Node IoT devices on one side, and ARTIK Cloud on the other, using the Edge Node Manager in the middle to oversee and coordinate device management. An "on-boarding" smart phone app registers each node you add to the system with the gateway.

The ARTIK SEE API provides a means of interacting with the Secure Element, and optionally post-provisioning the modules (for customers with the appropriate security infrastructure).

Samsung Key Management Services (KMS) provide a code-signing service for custom images on "s" modules, ensuring that devices in the field cannot be hacked. Customers can instead choose to implement their own code signing solution.

ARTIK Modules

Samsung ARTIK Modules comprise a tiered series of component families that each balance performance/power/memory/footprint to match application needs. For example, different members of the series can precisely target low-end wearables, mid-range controllers, and powerful hubs with local processing and analytics.

The links below take you to product pages for each device. For technical articles, use the navigation bar to the left.

ARTIK 0 – low-power device node processors
020 – Bluetooth®
030 – ZigBee®/Thread
053, 055 – Wi-Fi®
ARTIK 5 – 32-bit processors – 4GB Flash
with Wi-Fi, Bluetooth, ZigBee/Thread, graphics

520 – 2-core Cortex® A-7, USB device
530 – 4-core Cortex A-9, USB host, HDMI
ARTIK 7 – 64-bit processors – 4GB Flash
with Wi-Fi, Bluetooth, ZigBee/Thread, graphics

710 – 8-core Cortex A-53, USB host, HDMI
ARTIK 10 – 32-bit processors – 16GB Flash
with Wi-Fi, Bluetooth, ZigBee/Thread, graphics
                                                                                     
1020 – 4-core Cortex A-15 + 4-core Cortex A-7, USB host, HDMI

We've tried to make developing for ARTIK modules as straightforward as possible. In addition to the usual built-in compilers, you'll find the ARTIK IDE, an Arduino compatibility library, the resin.io secure deployment system, and libraries for Java, Python, Temboo, and others.

ARTIK Cloud

Samsung ARTIK Cloud is an open data exchange platform designed to connect all devices.

ARTIK Cloud provides developers easy-to-use open APIs and powerful tools to collect, store, and act on any data from any device or cloud service. Using these APIs and tools, you can quickly bring new IoT apps to market, tap into new revenue streams, and grow your business.

Moreover, its ability to independently analyze data and generate Action messages gives you an intelligent tool for interaction with Android apps.

For more more information about developing for ARTIK Cloud, visit https://developer.artik.cloud

Frequently Asked Questions

Security

Question Answer
Is the secure element tamper resistant? Yes, the Secure Element is Common Criteria Evaluation Assurance Level 5 (CC EAL5) certified.
Can you do AES encryption by using your Security APIs? Yes, AES encryption is provided by the ARTIK Security (SEE) API.
Does OTA or secure boot reject a build? All verifications/rejections are based on cryptographic signatures. Boot loaders are signed so they can be rejected, so can application level images. Kernel, OS, drivers cannot. Boot loader signing is with KMS (uses RSA keys). OTA can be signed using Kyrio service using Certificates and ECDSA algorithms.
Are there CRC checks or signature checks to prevent a tampered image/application from getting to the device? While there is no CRC check provided by default, it can be implemented easily.
Should a customer use Samsung KMS or their own KMS? Samsung KMS is only involved in signing of bootloaders. There is also another similar service for application level code signing from Kyrio. Customers can use their own KMS if they handle post-provisioning.
How does provisioning work in the manufacturing stage? What are the steps? ARTIK root based certificates / keys are provisioned in Samsung Secure Element (SE) at the factory. Customer post-provisioning uses see_post_provision security API calls. KMS is not involved in provisioning of keys.
How can you unlock secure JTAG? Does the device reflash through JTAG or not on S modules? JTAG port lock can only be unlocked by password. If locked, the module cannot be reflashed through JTAG.
Is libCrypto integrated in Secure Element? The OpenSSL engine calls lower-level ARTIK SEE security routines implemented within the Secure Element.
How do you manage M0 firmware in 05x security subsystem? How do you flash it? The M0 firmware for the security subsystem is provided in binary format. It is flashed by the IDE when a customer fuses their image to the A05x series.

Module and OS

Question Answer
Is the module encapsulated? Modules are not encapsulated.
Where are the products assembled? Modules are assembled in China.
Are there Long Range connectivity options? The <a href="https://www.artik.io/iotmarketplace/#stq=cellular&stp=1" target=_blank">ARTIK Marketplace</a> offers a number of cellular modem daughter boards that can be easily connected via USB.
Is there Mesh support? Mesh is supported on modules with ZigBee or Thread – basically, all modules except for 020 and 05X.
Provisioning on gateway devices or node devices? Provisioning takes place through the ARTIK SEE see_post_provision security API calls.

Development

Question Answer
What are the security steps during the development process? Code is developed using security libraries and tools; build scripts handle code signing automatically. KMS is not involved at this stage.
Are there any mobile apps, or URL or service, to interact with the ARTIK devices? Thread Commissioning appSamsung ARTIK on-boarding appThingWorx portalEdge Node Manager DashboardKura Management PortalNode-RED visual wiring toolAWS S3, AWS RekognitionHome Assistant
What is the debugging method? JTAG using OpenOCD.
Are there debugging tools available in IDE? gdbserver is installed on Linux modules during board setup.

Cloud and OTA

Question Answer
OTA Solution. How to catalog different versions? Can we sort by versions? OTA can be sorted based on metadata stored in cloud servers; metadata can be cataloged based on customer need.
How does ARTIK Cloud work with 3rd party cloud services? Manifest, Cloud connector, AWS call to ARTIK Cloud. Create and configure an "ARTIK Cloud Connector" application on the third-party cloud.
Integration with AWS 1-click? Not supported at this time.
Does OTA revert back to an old firmware version if anything fails? We support OTA rollback mechanisms depending on the failure type.
What is the bootloader sequence on each module? 5/7/10 modules: BL0 loads BL1, BL1 loads BL2, uboot and Secure OS, uboot loads Kernel, drivers; 0x modules: BL0 loads BL1, BL1 loads OS and apps.
What is overwritten during OTA process? Currently only application software.
What is the method for maintaining local configuration files on the OS after a full OTA update? Technology-dependent. For example, A030 has a local configuration partition. OTA on the Linux gateway modules is for package updates, not entire image.
Last updated on: