Open-source IT-level security tools, lean, fast and portable
February 22, 2012 // Julien Happich
yaSSL, provider of open-source embedded SSL, has made IT-level security tools available for the Open Source Community, ensuring that mature, advanced security tools like Kerberos, wpa_supplicant, and OpenSSH are readily available for devices.
By making security services commonly used for enterprise authentication and encryption available for Android and other device platforms, yaSSL enables developers to simplify and secure device connectivity and to close the door on hackers trying to break through Internet security using the backdoor of a device, such as a router, smartphone, printer, or game console.
“Our homes and businesses depend on network-connected devices,” noted Larry Stefonic, Founder of yaSSL. “The need for secure, authenticated exchange, whether for a gaming console or an Android smartphone, has become essential. We understood the pain developers had creating their own security solution or kludging tools together that were then slow and took too much memory. We've reduced that stress by providing the resources needed to protect and secure both the network and the device.”
yaSSL’s commitment to the Open-Source Community has sparked a number of efforts:
Kerberos to Android―yaSSL ported Kerberos and a Java interface for the Generic Security Services API (GSSAPI) to enable development for the Android platform with the same secure, mutually authenticated and encrypted communication that’s the de facto standard used by Microsoft, Google, Apple and Linux on enterprise and desktop computers. To provide an easy entry point for Android developers interested in Kerberos, yaSSL created a sample Android NDK application that wraps the functionality of kinit, klist, kvno, kdestroy, and Java GSSAPI client into a simple GUI front-end. With these capabilities in place, developers know their applications prevent eavesdropping and replay attacks. yaSSL also embedded CyaSSL’s cryptography library CTaoCrypt in Kerberos to deliver very fast cryto implementations that are 20 times smaller and use less memory than the standard OpenSSL.
OpenSSH for embedded RTOSs—Used for secure remote access, OpenSSH encrypts passwords, sessions, and data for common UNIX and desktop environments, but is far too big and slow for the typical device. By using CyaSSL to do the heavy cryptography for OpenSSH, yaSSL introduces OpenSSH secure access tools that are smaller, faster and more portable. With very fast stream ciphers (e.g., RABBIT and HC-128) and public key support (e.g., NTRU), CyaSSL enables secure remote access for any CyaSSL-supported RTOS environments, including embedded Linux, iOS, QNX, VxWorks, and others. With an already integrated OpenSSH/CyaSSL solution, developers gain secure file copy and remote access to embedded devices without writing their own or kludging different solutions together, greatly decreasing time to market. CyaSSL’s crypto libraries are simply implemented via a build option.
Wi-Fi Protected Access (WPA) for devices—wpa_supplicant, a WPA and WPA2 client for 802.11i, offers a secure, out-of-the-box wireless LAN for Linux, BSD, Mac OS X, and Windows. wpa_supplicant’s small code size and clean design make it ideal for secure key negotiations that control the wireless connection of embedded devices. Integration with CyaSSL takes support a step further by securing the Internet connection and adding very fast cipher suites, such as TLS_RSA_WITH_128_CBC_SHA and TLS_NTRU_RSA_WITH_AES_128_CBC_SHA that are not part of the default installation. With support for embedded Linux, iOS, Android, QNX, VxWorks, and other RTOSs, CyaSSL significantly reduces both development time and cost and eliminates the need for developers to write, purchase, or patch their own solution.
Visit yaSSL at www.yassl.comAll news
Hydrogen power enters the call center
May 23, 2013
A UK startup has had significant success with its hydrogen-powered power system as an uninterruptible power supply for call ...
Brussels Calling: Qualcomm wins in a wasteful industry
Europe in 10 billion € bid to boost chip industry
Nujira surpasses own world record for ET PA linearity
Silica moves to fast lane in Europe's LED market
Intel's new CEO shakes things up
May 23, 2013
Newly minted Intel Corp. CEO Brian Krzanich wasted little time putting his stamp on the company he has worked for for more ...
Wide-angle lens is less than 3mm high for the same diameter
Low-power wireless projected to make waves in remote controls according to IMS Research
Intel pushes for more research beyond 10-nm
InterviewSilica moves to fast lane in Europe's LED market
In the booming market for LED lighting, electronics distributor Silica intends to lead the pack by offering technological excellence at application level. The company is currently planning to offer tailor-made ...
Filter WizardCheck out the Filter Wizard Series of articles by Filter Guru Kendall Castor-Perry which provide invaluable practical Analog Design guidelines.
Linear video channel
READER OFFERRead more
The development platform for i.MX 6Quad from element14 (built to the Freescale SABRE Lite design) is an evaluation platform featuring the powerful i.MX 6Q, a multimedia application processor with Quad ARM Cortex-A9 cores at 1.2 GHz from Freescale Semiconductor.
This month, Freescale and element14 are giving away five such platforms, worth £128.06 each, for EETimes Europe's readers to win. The platform helps evaluate the rich set of peripherals and includes a 10/100/Gb Ethernet port, SATA-II, HDMI v1.4, LVDS, parallel RGB interface, touch screen interface, analog headphone/microphone, micro TF and SD card interface, USB, serial port, JTAG, camera interface, and input keys for Android.
And the winners are...
In our previous reader offer, Pico Technology was giving away one of its recently launched PicoScope 3207B, a 2-channel USB 3.0 oscilloscope worth 1451 Euros. Lucky winner Mr L. Sanchez-Gonzalez from Spain should be receiving his PicoScope 3207B soon. Let's wish them some interesting findings with his projects.
December 15, 2011 | Texas instruments | 222901974
Unique Ser/Des technology supports encrypted video and audio content with full duplex bi-directional control channel over a single wire interface.