aws iot core device certificate

Hi. Using a unique certificate is a best practice to limit blast radius to a single device if a device is compromised.

• https://docs.aws.amazon.com/whitepapers/latest/securing-iot-with-aws/provision-iot-devices-and-systems-with-unique-identities-and-credentials.html
• https://docs.aws.amazon.com/wellarchitected/latest/iot-lens/identity-and-access-management-iam.html

AWS has numerous methods of device provisioning that can help you provision devices at scale:

• https://d1.awsstatic.com/whitepapers/device-manufacturing-provisioning.pdf
• https://docs.aws.amazon.com/iot/latest/developerguide/iot-provision.html

Please review that material and we'd be more than happy to answer subsequent questions.