Fuente: Wipo "IOT" The invention describes an apparatus and method for establishing secure communication channels in an Internet of Things (IoT) system. For example, a computer-executed method comprises: establishing communication between an IoT service and an IoT device through an IoT hub; generating, by the IoT service, a first data packet including an IoT service serial number and an IoT service public key, and signing the first data packet using a factory private key in a factory public/private key pair implemented by a manufacturer of the IoT service and/or the IoT device; transmitting the signed first data packet from the IoT service to the IoT device; validating, by the IoT device, the signed first data packet using the plant public key; generating a second data packet including the IoT device serial number and the IoT device public key through the IoT service, and signing the second data packet using the factory private key; transmitting the signed second data packet from the IoT device to the IoT service; and validating the signed second data packet by the IoT service using the factory public key.