Docs

All documentation
Connectivity Cellular, LPWAN, and satellite
- Cellular
  - Cellular (Soracom Air)
  - SIM Management
- LAN & WiFi
  - Soracom Arc
- LPWAN
  - LPWAN / LoRaWAN
- Sigfox
  - Sigfox
- Satellite
  - Satellite
Hardware Devices and modules
Platform Console, configuration, account, billing
- Console & Navigation
  - Console
- Configuration
- SIM & Fleet Ops
- Account & Access
- Billing
  - Usage & Invoices
Cloud Integration Route data to cloud services
- Data Entry Point
  - Data Entry Point
- Protocol Conversion & Forwarding
  - Protocol Conversion & Forwarding
- Serverless Triggers
  - Serverless Triggers
- Direct Cloud Delivery
  - Direct Cloud Delivery
- Inline Data Transformation
  - Inline Data Transformation
- Video Streaming
  - Video Streaming
Data & Analytics Store, visualize, and query
- Data Collection & Storage
  - Soracom Harvest
- Dashboards & Alerts
  - Dashboards & Alerts
- Data Analytics
  - Data Analytics
- IoT Automation
  - IoT Automation
Network & Security Private networking and VPN
- VPG Sub-features
- Credential Provisioning
  - Credential Provisioning
- SIM Authentication
  - SIM Authentication
Device Management Firmware, provisioning, inventory
- Fleet Management
  - Fleet Management
- Device Commands
  - Device Commands
- Remote Access
  - Remote Access

Documentation navigation

Docs

All documentation
Connectivity Cellular, LPWAN, and satellite
- Cellular
  - Cellular (Soracom Air)
  - SIM Management
- LAN & WiFi
  - Soracom Arc
- LPWAN
  - LPWAN / LoRaWAN
- Sigfox
  - Sigfox
- Satellite
  - Satellite
Hardware Devices and modules
Platform Console, configuration, account, billing
- Console & Navigation
  - Console
- Configuration
- SIM & Fleet Ops
- Account & Access
- Billing
  - Usage & Invoices
Cloud Integration Route data to cloud services
- Data Entry Point
  - Data Entry Point
- Protocol Conversion & Forwarding
  - Protocol Conversion & Forwarding
- Serverless Triggers
  - Serverless Triggers
- Direct Cloud Delivery
  - Direct Cloud Delivery
- Inline Data Transformation
  - Inline Data Transformation
- Video Streaming
  - Video Streaming
Data & Analytics Store, visualize, and query
- Data Collection & Storage
  - Soracom Harvest
- Dashboards & Alerts
  - Dashboards & Alerts
- Data Analytics
  - Data Analytics
- IoT Automation
  - IoT Automation
Network & Security Private networking and VPN
- VPG Sub-features
- Credential Provisioning
  - Credential Provisioning
- SIM Authentication
  - SIM Authentication
Device Management Firmware, provisioning, inventory
- Fleet Management
  - Fleet Management
- Device Commands
  - Device Commands
- Remote Access
  - Remote Access

Credential Provisioning

Soracom Krypton provisions cloud service credentials to devices using the SIM card as a root of trust. Devices authenticate to Krypton via their SIM identity and receive temporary credentials for AWS IoT, Azure IoT Hub, or other cloud services without pre-loading secrets at the factory.

What it does

SIM-based authentication — Use the SIM card's built-in identity as a secure authentication factor
Cloud credential provisioning — Issue temporary AWS IoT certificates, Azure IoT Hub keys, or custom tokens on demand
Zero-touch onboarding — Devices obtain cloud credentials at first boot without manual provisioning steps
Credential rotation — Issue short-lived credentials that are automatically refreshed, reducing the risk of compromised keys

SIM Authentication — Generate application-layer auth tokens from SIM identity
Credentials Store — Manage cloud service credentials used by Krypton
Soracom Air — Cellular connectivity that provides the SIM identity

Credential Provisioning

What it does

Related