Overview
What this challenge is about.
Design end-to-end provisioning: factory bootstrap (per-device key pair burned at manufacture), installer flow (BLE-driven activation, Wi-Fi handoff), cloud-side enrollment (mTLS (mutual TLS) with device cert validation against a private CA (certificate authority)), and lifecycle (rotation, decommission). Prototype the device-side flow on the existing reference board (ARM Cortex-M with secure element). Measure installer-flow timing on 5 dry-runs. Deliver an architecture document, the prototype firmware, a threat model of the provisioning flow, and an implementation handoff covering the cloud changes the platform team must ship.
The Brief
What you'll do, and what you'll demonstrate.
Replace a hard-coded factory password with per-device mTLS provisioning that adds under 90 seconds to the installer's per-device workflow.
Earning criteria — what you'll demonstrate
- Design per-device credential provisioning that survives a hostile installer environment
- Apply mutual TLS to constrained IoT devices with secure-element backing
- Threat-model a provisioning flow including factory, field, and rotation phases
- Balance security-by-default against installer-experience constraints
Program Fit
Where this fits in your program.
Sharpens the same skills your degree expects you to demonstrate.
Skills
Skills you'll demonstrate.
Each one shows up on your verified credential.
Careers
Roles this prepares you for.
Real titles. Real skill bridges. Pick the one closest to your trajectory.
Career mappings coming soon.