Transforming

the World through

the Power of ConnecHvity
New Relic | Electric Imp Workshop
August, 2016

Electric Imp

Property of Electric Imp, Inc.

Not for Distribu5on

New Relic

Padma Duvvuri, Head of BD & Ecosystem

Clay Smith, Developer Advocate

Betsy Rhodes, SoJware Engineer

Jackson De Oliveira, Field and Community

Terrence Barr, Senior Solu5on Architect

Marke5ng Manager

Jaron Abelsohn, BD Manager

CONFIDENTIAL Not for Distribu5on

Agenda
Electric Imp Company Overview

CollaboraHon Benets of New Relic & Electric Imp

Workshop and Demo Overview

New Relic and Electric Imp integraHon:

Challenge 1: Tutorial
Conclusion and Next Steps
Q&A
Property of Electric Imp, Inc.
Not for Distribu5on

Challenge 2: Self-paced

IntroducHon to Electric Imp

Our Mission: Transform the world through the power of connec5vity

Hugo Fiennes, CEO & Co-Founder

A history of leading development of world
class connected device innova6ons

100+

customers
Led the hardware team through rst four
genera5ons of Apple iPhone
Designed and architected hardware for
the Nest Thermostat
Founded 2011
HQ in Los Altos, CA
Product Development in the US and UK

Electric Imp Team: Experience across leading technology companies:

105+
countries

14 Billion
Messages processed per month

600,000+ IoT Market Focus

Devices in
the market

Intelligent Buildings
Light Industrial
Energy
Connected Home Infrastructure

Property of Electric Imp, Inc.

Not for Distribu5on

The Challenge of ConnecHvity

To realize the value of data, companies must rst securely connect their products
ConnecHvity
Edge to Cloud
Security

Hardware and
Firmware Design

Approvals and
Cer5ca5ons

Scalability and
Availability

OTA SoJware &

Security Updates

Support and
Maintenance

Tes5ng and
Produc5za5on

HW/SW
Infrastructure
integra5on

Provisioning and
Management

Edge Intelligence
and Control

Connec5vity is complex; building it is expensive and 5me intensive

Companies oJen lack the resources, exper5se, and long-term support commitment

Connec5vity decisions today are cri5cal; changing pla\orms is hard

Ongoing security adds addi5onal complexity and cost

IoT Data &

ApplicaHons

Conclusion: To maximize ROI, companies should evaluate Buy-vs-Build for connec5vity

Property of Electric Imp, Inc.
Not for Distribu5on

The Electric Imp

ConnecHvity PlaTorm Components

SoluHon:

Electric Imp takes the Complexity

out of Connec5vity
Our leading IoT connec5vity pla\orm provides the core services to
get any device online

Security

Ongoing, managed security-as-a-service for connec5vity

Reliability

Less risk and reduced development costs with a proven pla\orm

Flexibility

Easily adapt to dierent use cases & customer requirements

Scalability Eortless scalability for large deployments

Seamlessness Faster 5me to market with complete out-of-the-box
connec5vity and drop-in integra5on

Property of Electric Imp, Inc.

Not for Distribu5on

APIs

imp Cloud Agent

BlinkUp

imp Device SoXware

imp Authorized Hardware

(partner-provided)

Customer Proof Points

Our single pla\orm meets the business objec5ves of a wide range of customers

Cybex Care
Connected Treadmill

Connected Postage Meters

via SmartLink

Update units in the eld

Meet stringent security
requirements
Accommodate users
with a wide range of
technical ap5tude

Retrot units in the eld

Provide predic5ve
maintenance
Expedite 5me to market

Property of Electric Imp, Inc.

Not for Distribu5on

The Shopping Bu@on

Bridge between assets

and the cloud
Oer analy5cs for the
real world
Builds direct customer
engagement

Bud-e Fridge
Smart Home Beer Fridge

Automated fulllment
Usage tracking
Accessible user
experience
Innovate brand
engagement

VibraEon mote for

predicEve maintenance

Retrot industrial
vibra5on monitoring
Provide real-5me
analy5cs and
dashboarding
Reduce unplanned
down5me and repair
costs

Customers in a variety of roles use New Relic to solve problems faster and improve
visibility.
DEVELOPERS
Extra visibility
helps them solve
problems faster
and build beder
apps.

Property of Electric Imp, Inc.

Not for Distribu5on

APPLICATION
OWNERS
Service-level
responsibility to
the business,
understands
monitoring from a
transac5onal point
of view.

OPERATIONS
Important to keep
apps and services
up and running.
Availability and
app health drives
their business.

MANAGERS &
EXECS
Direct visibility into
how performance
is aec5ng the
bodom line.

SUPPORT
Quickly diagnose
performance
issues aec5ng
customers. Reduce
5me to resolve
issues.

CollaboraHon Benets

With Electric Imps plaTorm every device has a customizable, secure,

powerful, and intelligent virtual presence
imp APIs
Rest API, webhooks & partner integra5on libraries
Seamless integra5on with mobile apps, web apps, data
services, and enterprise systems

BlinkUp

Patented secure op5cal provisioning and

authen5ca5on
Enables produc5on scale device enrollment

impCloud Agent
Small, powerful cloud virtual machine paired with device
VM
Container for programmable middleware
Total resilience, always on, and near innite scaling

impSecure
Edge to cloud security
Life5me managed by Electric Imp

impOS
imp Scalability
Full suite of tools from prototyping to deployment
Scales across mul5ple product lines & product groups

Purpose built & op5mized for IoT applica5ons

Hardware independent customer app in device VM
OTA management and instant updates

imp Authorized Hardware

Veded hardware design and security
Partner supplied commodity hardware
Preloaded with impOS and security keys
Property of Electric Imp, Inc.
Not for Distribu5on

Why Electric Imp & New Relic?

Proven edge-to-cloud solu5on to address real-

world challenges of delivering, securing, and

managing connected products
Low complexity, IP-based architecture enables
customers to easily connect devices to New Relic
Insights and other services
Secure and scalable soluHon allows easy
customiza5on and reuse across dierent use cases
and products
Full visibility of performance from the edge to
cri5cal backend systems

Powered by BlinkUp"

Seamless end-to-end
integra5on
Secure and reliable
communica5ons
Eortless scale device
through the cloud
Fully customizable solu5on
Simplest out-of-the box and
produc5on experience
Property of Electric Imp, Inc.
Not for Distribu5on

Proven Security
for the Real
World
Best-of-Breed
Device
ConnecHvity
Delivering
Commercial
Products in
Volume since
2012
Property of Electric Imp, Inc.
Not for Distribu5on

Unique Edge-toCloud Virtual

Machine-based
Architecture

Ongoing
PlaTorm
Security and
Maintenance
As-a-Service

Electric Imp is uniquely

posiHoned in the market to
address Enterprise IoT with
its technology, strategy and
leadership

Workshop & Demo Overview

Demo Architecture: Environmental Monitoring

imp Cloud

(Public or Private)
Sensor Data &
Mode Commands

New Relic
Integra5on

imp Agent (one per device)

Monitoring App
(agent)

Cloud Services

imp Cloud Virtual Machine

Imp Dev Kit

App Updates

System Health &

Logging

Device Management

Opera5ons
Management

Security Services
Communica5on & Scalability

Congura5on/
Enrollment

Monitoring
App

SoJware & Key

Updates

BlinkUp

imp Virtual Machine

imp OS
CPU/MPU
I2C

WiFi*
Temp,
Humidity, Light

Property of Electric Imp, Inc.

Not for Distribu5on

Router/Access Point

HTTPS

Send events (deviceto-cloud)

SoXware
Development API/
IDE

New Relic Insights

Demo ApplicaHon Structure

Cloud-side Agent applicaHon

Device-side applicaHon

imp001 Developer Kit + Environmental Tail

Single module Cortex-M3 MCU and WiFi
Temp + humidity sensors

Monitor device and environmental condi5ons

WiFi strength, latency, free memory, and voltage
Temperature, humidity and light level

Log readings
Send readings to cloud agent

Property of Electric Imp, Inc.

Not for Distribu5on

Endpoint for bidirec5onal device-agent

communica5on
Pass data between device and agent over
secure, managed communica5on link
Push data into New Relic

Temperature, humidity and light level

WiFi strength, free device memory, message round-trip
5me

Demo Overview and Steps

1

Create
Power up imp001, In Electric Imp Online Use Electric Imp
Electric Imp
connect & enroll imp
development kit to
IDE:
developer account &
into cloud
collect readings


download BlinkUp

Create applica5on

Use BlinkUp to
app for iOS or
(model) with
Devices will send
provision WiFi
device and agent code
Android
readings to the agent
creden5als and enroll Insert OAuth Semngs
Agent forward data to

into imp Cloud
Press Build budon in
New Relic:

IDE to build, deploy,
- Env Data
Create a
and auto-run
- Device Data
New Relic account
applica5on on device

and agent



Property of Electric Imp, Inc.
Not for Distribu5on

5
Integrate with New
Relic

Use Insights to create
custom visualiza5ons
of data sent from
devices.
Create dashboards to
share with your team
and integrate with
other monitored
applica5ons.

Electric Imp App/BlinkUpTM: Simple and secure method of provisioning

a device to end user Wi-Fi network
Mobile app uses light pulses to pass
informa5on (SSID & password) to the
device
Device is automa5cally authen5cated,
enrolled into the Electric Imp cloud,
and provisioned (e.g. Wi-Fi network)
Now you can program your device in
the online IDE

Property of Electric Imp, Inc.

Not for Distribu5on

IDE Overview
ide.electricimp.com
1 Agent Code Window
2 Device Code Window
3 Log Window
4 Sidebar
Models
Devices

5 Build and Run

6 Agent URL

Property of Electric Imp, Inc.

Not for Distribu5on

Electric Imp IDE Demo

Challenge 1 (tutorial)

Challenge 1: Environmental Monitoring

Monitor environmental parameters
Push Data to New Relic Insights
Query/visualize data in New Relic Insights

Property of Electric Imp, Inc.

Not for Distribu5on

Reminder: You need these things to conHnue

You should already have set up your Electric Imp Account and blinked
up your Imp
A New Relic account with Insights enabled
New account sign-up

newrelic.com/electricimp

Exis5ng account

Account > Upgrade subscrip5on > Dedicated > Add a promo code: ELCEVT14APM

Code at
github.com/electricimp/NewRelicWorkshop_2016

Property of Electric Imp, Inc.

Not for Distribu5on

New Relic Account Sekngs

rpm.newrelic.com/accounts
1 Account Semngs
2 Integra5ons -> API keys
3 Note Your Account ID
4 Click Insights API keys

Property of Electric Imp, Inc.

Not for Distribu5on

New Relic API Key

insights.newrelic.com/accounts
1 Click Show
2 Note Your API Key
Note: this is an Insights key, not the
REST API Key.

Property of Electric Imp, Inc.

Not for Distribu5on

Electric Imp Create New Model

ide.electricimp.com
1 Click Create New Model
2 Enter Name for your
Model
3 Assign your Device to the
Model
4 Click Create Model

Property of Electric Imp, Inc.

Not for Distribu5on

Electric Imp Run Example Code

ide.electricimp.com
1 Copy and Paste Agent Code
EnvironmentalMonitoringExample.agent.nut

2 Copy and Paste Device Code

EnvironmentalMonitoringExample.device.nut

3 Enter Your New Relic Info

Account Number
API Key

4 Click Build and Run

Property of Electric Imp, Inc.

Not for Distribu5on

Your rst NRQL query

hdps://insights.newrelic.com
1 Click Query
2 Enter SELECT * from
envData (just like SQL!)
3 Click Run to execute
query and see results
being sent to Insights.

Property of Electric Imp, Inc.

Not for Distribu5on

Visualizing Humidity Readings

hdps://insights.newrelic.com
1 Write a query to visualize
data
2 Give the chart a 5tle
3 Click Run to execute
query
4 Add to your dashboard

Property of Electric Imp, Inc.

Not for Distribu5on

Experiment with Queries and Add New Widgets

Property of Electric Imp, Inc.

Not for Distribu5on

Status Check
Ques5ons?
Comments?

Challenge 2 (self-paced)
Background

Challenge 2: Monitoring ApplicaHon Performance at the Edge

Previous Challenge: Monitor environmental parameters

This Challenge: Monitor the edge applica5on itself
How?

Capture key performance metrics indica5ve of applica5on/device performance

Send to New Relic Insights
Analyze metrics, generate sta5s5cs, provide insights into applica5on performance at the edge

Suggested metrics to monitor

Device WiFi signal strength

Free applica5on memory
Message communica5on round-trip 5me (RTT)

Property of Electric Imp, Inc.

Not for Distribu5on

Measuring Round-Trip Time (RTT) for Beler Network Visibility

Imp Dev Kit

Monitoring
App

ping

imp Virtual Machine

pong

imp OS
WiFi*

CPU/MPU

Temp,
Humidity, Light

I2C

imp Cloud

(Public or Private)

RTT
New Relic Insights

Goal: understand the impact of network latency from the Imp to the cloud
Implement simple ping/pong event that measures 5me elapsed, send to New Relic
Dont blame the network: understand how it impacts performance

Property of Electric Imp, Inc.

Conden5al

Challenge 2: Hints
Hints
See
electricimp.com/docs/api/hardware/ and electricimp.com/docs/api/imp/

To measure round-trip 5me, use agent.send() <-> agent.on() ping-pong

As data gets send to Insights, create new dashboards that display results
docs.newrelic.com/docs/insights/new-relic-insights/using-new-relic-query-language/using-nrql

Property of Electric Imp, Inc.

Conden5al

Recap: Complete Dashboard Example

Property of Electric Imp, Inc.

Conden5al

Conclusion and Next Steps

Conclusion and Next Steps

Electric Imp & New Relic: Extending ApplicaHon Monitoring to the Edge
Easy integra5on of device- and applica5on data into New Relic Insights (and other New Relic
services such as APM)
Our integrated product oering can rapidly enable high value end-to-end IoT solu5ons
Electric Imp focuses on the complexi5es of device connec5vity and security so you can focus
on your product- and applica5on value-add

Next Steps
Integrate Electric Imp device monitoring with exis5ng backend soJware monitored by New
Relic for full visibility from the edge to internal systems
Use data to diagnose performance issues and discover connec5vity issues or errors
Know how your IoT devices are performing on dierent networks

Property of Electric Imp, Inc.

Conden5al

Q&A

Transforming the World Through

the Power of Connec5vity

betsy@electricimp.com
padma@electricimp.com
terrence@electricimp.com
jaron@electricimp.com

www.electricimp.com

CONFIDENTIAL Not for Distribu5on

Appendix: Technical Deep Dive

Electric Imp PlaTorm Architecture Overview

imp Cloud

Customer/3rd party Domain(s)

(Public or Private)

(Cloud or On-premise)

Customer
IntegraHon

Cloud Services

imp Cloud Virtual Machine

imp Powered Devices

Apps

APIs

Customer
App

Customer

imp Agent (one per device)

Data & Commands

SoJware & Key

Updates

System Health &

Logging

Device Management

Opera5ons
Management

APIs

IntegraHon(s)
(Device Data &
Commands)

Workows
Analy5cs

Security Services

Storage

Communica5on & Scalability

Congura5on/
Enrollment
imp Authorized H/W
Customer App

App Updates

Installa5on
(Note)

(device)

imp Virtual Machine

OS & Key Updates

imp OS
CPU/MPU
I/O (UART, SPI,
I2C, USB, etc)

WiFi*

Router/Access Point

imp Ops
Console

Sensors &
Actuators
Exis5ng
Subsystems
& Protocols

Property of Electric Imp, Inc.

Note:
Installa5on can be done by BlinkUpTM, customer app
with BlinkUpTM SDK, or other mechanism.

SoXware
Development API/
IDE

Customer / User
Legend:

Network connec5on
Logical ow of management opera5ons
Logical ow of customer data/commands
Blue areas: Components by Electric Imp

* Other connec5vity op5ons available on request

Not for Distribu5on

Electric Imp provides Worry-Free Security

Security is considered the number one
inhibitor to IoT implementaHons
A security breach from just one device can cost a company
millions of dollars in revenue loss, brand damage and
expenses







To safeguard the IoT, security must be designed in from the
ground up

The Electric Imp plaTorm has an

unparalleled security architecture from the
hardware through the cloud

Device Security - Hardware keys and code

protected within the silicon

CommunicaHons Security - Industry standard TLS
link security and forward secrecy
Local Network Security - Real ac5vity is masked by
random trac
Device <> Server Monitoring - Server and device
iden55es are conrmed before any
communica5on
Cloud Server Security - Network servers rewalled
and only accessed through a secure protocol

Secure Remote Updates - Devices are updated

automa5cally and seamlessly
Property of Electric Imp, Inc.
Not for Distribu5on

Comprehensive Security Architecture

Addresses security at mul5ple levels, using industry standards and best prac5ces, for the product life5me
Servers

Device link crypto terminated on home server (running agent), not load balancer
Servers reside within VPC, minimal open ports
Full PKI chain valida5on for outbound HTTPS connec5ons from agent (vs on device which
wouldn't have resources)
Standard best prac5ces including use of bas5on host, minimal privileges, etc.
Automated monitoring and congura5on management of clusters

Link
Provisioning
Replay-proof token-based op5cal provisioning
system uniquely iden5es user & device
Simple: increases chances of being done correctly

ApplicaHon
Applica5on storage either on-die or AES-GCM encrypted
depending on model
Secure OTA upgrades via TLS channel to server
TOTP authorized deployments*

*Deploying on private cloud in

1H'16, public cloud in 2H'16

Property of Electric Imp, Inc.

CONFIDENTIAL Not for Distribu5on

Minimal adack surface (no open ports except DHCP & DNS)
Industry standard TLS 1.2 protected link, with forward secrecy (ephemeral DH)
Par5es validate each other with RSA cer5cates
AES-128 or 256 encryp5on
Outbound connec5on from device to cloud - no rewall holes
Secondary non-impersona5on protec5on using ECC challenge-response
Random link maintenance trac to hide applica5on trac paderns

OS

OS, network & security stack is maintained independently of applica5on by Electric Imp for
all devices
OS updates do not require applica5on or user involvement
OTA OS upgrades/key management protected by RSA signing & AES-GCM encryp5on
HSM-protected OS signing keys per cloud (each private cloud customer has their own set)

Hardware

Secure boot, debug interfaces permanently disabled

Unique per-device keys provisioned at 5me of module manufacture
All o-die storage AES-GCM+AEAD encrypted with per-device keys
Hardware no-execute protec5on on all writable RAM (viola5ons reported to server over TLS)