If you look at their implementation, it's a lot more secure than most implementations. Client-certificate based authentication, provisioning, etc.
The only thing it can't do is prevent connections from devices with expired certificates ie: you can't prevent them from trying to connect.
It's up to you to do signed firmware etc, but from a communications infrastructure and management point of view they're better than what you can do in a reasonable amount of time.
AWS IoT is mostly secure (Score:2)
If you look at their implementation, it's a lot more secure than most implementations. Client-certificate based authentication, provisioning, etc.
The only thing it can't do is prevent connections from devices with expired certificates ie: you can't prevent them from trying to connect.
It's up to you to do signed firmware etc, but from a communications infrastructure and management point of view they're better than what you can do in a reasonable amount of time.
Re:AWS IoT is mostly secure (Score:1)
Ah the ol' "you're safer under the protection of the Mafia" schtick.