Embedded Device Security Toolkits

Device Security, A Multi-Industry NeedThe proliferation of embedded network enabled devices as reported by many industry analysts is astounding. Networked embedded devices have made their way into most industries and have become instrumental to delivering business and operational capabilities. As an example, in the emerging Smart Grid industry, networked embedded systems enable functionality needed to securely deploy advanced metering infrastructures (AMI). Dedicated medical devices in the healthcare industry empower patients to lead active lives while providing the capability to securely communicate with their medical providers. Advances in embedded technology and remote communications allow military operations to gather and process untold amounts of intelligence for both war and peacetime operations. Enterprise data systems around the world rely on embedded technologies that enable sophisticated device management to meet the changing and demanding needs of business operations. The consumer electronics industry has fully embraced networked embedded devices. From cell phones, gaming consoles and televisions to portable MP3 players, media adapters and more, virtually all products arebeing enhanced with network capabilities. The ability to communicate across a network delivers enhanced value, enables remote support capabilities and ultimately extends the life and business proposition of a product. All in all, billions of devices now have the capability to communicate on their own to retrieve the latest application data and firmware updates across the Internet.

Device Security, Design Lifecycles, and Time to MarketProduct design lifecycles are influenced by many internal and external factors in an organization. One of the more prominent factors, a marketing derived time to market metric, tends to effect project timelines the most. In turn, engineering and marketing managers strive to balance the need of hitting a market window with the implementation time needed to meet the product requirements. Appropriately, device security is often acknowledged and highly ranked on the list of product requirements. Unfortunately, however, without dedicated security protocol “know-how”, the detailed integration and testing of in-house developed protocol implementations or open source variants can be labor and time intensive which, in turn, can dramatically effect product delivery.

Allegro’s Integrated Embedded Device Security ToolkitsAllegro’s suite of Embedded Device Security toolkits makes embedding standards-based security protocols into resource sensitive embedded systems and consumer electronics fast, easy and reliable, while decreasing time to market.

Integrated Embedded Device Security

Embedded Device Security Toolkits for All Markets

Toolkits for Device Security

RomWebClient Secure™ ToolkitRomWebClient Secure adds support for SSL 3.0 and TLS 1.2 encryption protocols to RomWebClient™ Standard and Advanced HTTP client. RomWebClient Secure addresses the need for advanced security with integrated support for a variety of cypher suites (RCA, DHE, RC4, DES, 3DES, AES, SHA, CBC, MD5 and Suite B) giving your development team compatibility with all standard cryptography. With the included libraries and certificate services your engineering team can easily build embedded devices that can participate in secure communications with any secure Web server.

• RFC compliant • Pre-integrated with RomWebClient embedded HTTP client• Support for hardware crypto acceleration• SSL 3.0 and TLS 1.2

• Choice of toolkits to match your development needs

• Decrease time to market by leveraging field proven embedded security solutions

• Highly portable via field proven abstraction layer (Hardware, RTOS and TCP/IP stack)

• Support for hardware crypto acceleration

• Cryptography independently developed by US citizens meeting Free From Foreign Influence (FFFI) requirements

• Independently developed technology provides freedom from GPL licensing constraints

• Interoperability routinely tested at industry plugfests

• Simple development model• Small RAM/ROM footprint• Interface files for leading

RTOS vendors provided• ANSI-C source distribution• Compilation switches for

size and speed trade-offs

Features & Benefits

RomPager Secure™ ToolkitRomPager Secure is a small, resource sensitive SSL/TLS server solution specifically engineered for use in embedded systems. RomPager Secure is standards based, hardware and software platform agnostic, and written from the ground up for performance and can optionally make use of hardware assisted crypto acceleration. RomPager Secure supports the latest RFC standard for SSL 3.0 and TLS 1.2 in addition to Suite B crypto algorithms.

• RFC compliant • Pre-integrated with RomPager® embedded Web server• Support for hardware crypto acceleration• SSL 3.0 and TLS 1.2

RomPager Scheduler and Core Services

Embedded CryptoLibraries Suite B Hardware Crypto

Harness

SSL/TLSClient and Server

RomPager SecureRomWebClient Secure

CertificateManagement

RomCert

SSH

RomSShell

DTLS

RomDTLS

Link Protection

RomPlug DTCPRomPlug WMDRM

RADIUS

RomRadius

Device Specific Application Code

RomPagerWeb Server

RomWebClientHTTP Client

RomCLICommand Line Interface

RTOS File SystemTCP UDP

Software Abstraction Layer

Internet Software Toolkits

Allegro’s suite of Embedded Device Security toolkits

RomCert™ ToolkitRomCert is a platform independent implementation of the Online Certificate Status Protocol (OCSP) and the Simple Certificate Enrollment Protocol (SCEP) that makes embedding security certificate management into resource sensitive embedded systems and consumer electronics fast, easy and reliable. Offered as an option for Allegro’s RomPager Secure and RomWebClient Secure SSL/TLS embedded solutions, RomCert can communicate with most any Certificate Authority (CA) via HTTP to request certificates, renew certificates and pull down Certificate Revocation Lists (CRL) that have been issued.

• RFC compliant• Speeds development and reduces time to market• Small RAM/ROM footprint• High performance

RomPlug DTCP and WMDRM ToolkitsDLNA has chosen DTCP-IP and WMDRM for link protection for home networking environments. Allegro’s RomPlug DTCP and WMDRM toolkits enable your design team to easily integrate DTCP and WMDRM-ND technology for streaming protected digital media content into their UPnP and DLNA enabled consumer electronics and mobile devices.

• Fully compliant implementations of DTCP and WMDRM-ND• Routinely qualified at ongoing industry interoperability plugfests• Fully integrated with the RomPlug suite of products

RomRadius™ ToolkitAllegro’s Remote Authentication Dial In User Service (RomRadius) is an AAA (authentication, authorization and accounting) protocol that offers authentication capabilities to be built into your embedded device. Often utilized to grant access to network resources, RADIUS clients are now found in many application spaces including mobile and M2M environments. RomRadius implements a standards based client/server model that enables remote access servers to communicate with a centralized server to authenticate a user or device and authorize access to network resources.

• RFC compliant• Dynamic management of RADIUS servers• Configurable for multiple RADIUS servers

RomSShell™ ToolkitRomSShell is a Secure Shell (SSH) toolkit that is often used in conjunction with RomCLI™ to deliver secure command line management capabilities. SSH provides encrypted communications between hosts over an insecure network. SSH and RomSShell offer a range of client authentication options including X.509 public-key certificates. RomSShell is full configurable, supports multiple simultaneous SSH sessions using X.509 certificates as well as other standards based authentication capabilities.

• RFC compliant• SSH version 2• Support for multiple simultaneous SSH sessions• SSH client and server

Toolkits for Device Security

Allegro Software Development Corporation1740 Massachusetts AvenueBoxborough, Massachusetts 01719

Phone: +1 (978) 264-6600Fax: +1 (978) 266-2839

www.allegrosoft.com

About Allegro

Since 1996, Allegro has been providing superior products to the embedded industry. Many companies have discovered the advantages of connecting devices to the Internet and working with Allegro to meet their networking needs. Allegro customers include many of the leading developers of computer systems and networking equipment such as 3Com, Agilent, American Power Conversion, Andover Controls, Casio, Cisco, D-Link, Honeywell, HP, IBM, Microsoft, Motorola, Nortel, Philips, Roku, Siemens, Sony, Sun, Xerox and Yamaha. These customers, and others have found that the RomPager Product Family is well suited for embedding in devices like printers, routers, fax servers, RAID disk arrays, UPS systems, automated building control systems, remote access servers and networked digital media products. With over 300 design wins and over 100 million deployed devices worldwide, Allegro delivers robust and field proven Internet software for your embedded device.