Https for embedded devices, local addresses

certificate https ssl cryptography embedded

If the customer insists on local IP connectivity you don't even need to leverage a worldwide Public Key Infrastructure by reaching out to "known" Certificate Authorities.

Just set up your own local PKI with its own local CA and distribute your CA's certificate to all the clients. Then use that CA to issue certificates to the devices and they'll be trusted by the clients.

Related

How do I disable "Restart your computer to finish installing updates" popup with GPO?
VSFTPD does not allow upload with virtual users
Varnish running out of open ports, lots of SYN_SENT connections
Technology for short-lived private VMs
SCCM 2012: How to properly update the content of an application?
How to tell the Task Scheduler MMC to remember the column widths of the History?
F5 Load Balancer Resends Request On Timeout
Tracking down the cause of a Postfix "Recipient address rejected: Access denied" error
Graphite stops collecting data randomly
IIS no longer trusts any CAs for client authentication
LOM vs. NIC for iDRAC with Dell PowerEdge R720xd
Write once, read many (WORM) using Linux file system