Secure implementation of freeRTOS with wolfSSL TLS 1.3 and hardware-enforced separation between OS, TCP/IP stack and root of trust.
SAN JOSE, CALIF. -- FEBRUARY 25, 2019 -- wolfSSL, a leading provider of TLS cryptography and Hex Five Security, provider of MultiZone™ Security, the first Trusted Execution Environment for RISC-V announce general availability of the industry-first secure IoT stack for RISC-V – a TLS 1.3 reference implementation of freeRTOS with hardware-enforced separation between OS, TCP/IP stack and root of trust.
FreeRTOS is the leading real-time operating system in the market; however recent security vulnerabilities identified in its connectivity stack highlight the risk inherent in monolithic system designs – the lack of separation between individual functional blocks where the exploit of one vulnerable area exposes the entire system to attack. The MultiZone™ Security Trusted Execution Environment allows to separate the monolithic firmware into an unlimited number of physically isolated zones, de-facto preventing shared memory attacks, privilege escalation and lateral movement: the exploit of any zone vulnerability is confined to that zone and doesn’t propagate to the rest of the system.
“Security through separation is a fundamental building block of a secure system – however legacy Trusted Execution Environments have only enabled one barrier which does not support the complexity of a modern IoT device.” Said Todd Ouska, CTO and co-founder of wolfSSL. “MultiZone Security on RISC-V enables an unlimited number of secure zones, providing the flexibility for a proper security implementation.”
“wolfSSL’s TLS 1.3 library is broadly recognized as the gold standard for crypto performance and code size.” said Don Barnetson, co-founder of Hex Five Security. “We’re excited to partner with wolfSSL to bring their capabilities to the broad RISC-V community and provide the first secure IoT stack implementation for RISC-V.”
The secure IoT stack for RISC-V is open source and available on GitHub at https://github.com/hex-five/multizone-secure-iot-stack.
Hex Five and wolfSSL will be presenting six papers describing all aspects of the underlying zero-trust framework at the Embedded World Conference in Nuremberg, Germany on Feb 26 and 27, 2019. https://www.embedded-world.eu/home.html
About Hex Five Security
Hex Five is the creator of MultiZone™ Security, the first trusted execution environment (TEE) for RISC-V. Hex Five’s patent pending technology provides policy-based hardware-enforced separation for an unlimited number of security domains, with full control over data, code, interrupts and peripherals. Contrary to traditional solutions, MultiZone™ Security requires no additional hardware, dedicated cores or clunky programming models. Open source libraries, third party binaries and legacy code can be configured in minutes to achieve unprecedented levels of safety and security. MultiZone™ Security is a free and open standard. Download it from the open source repository at https://github.com/hex-five
wolfSSL focuses on providing lightweight and embedded security solutions with an emphasis on speed, size, portability, features, and standards compliance. Dual licensed to cater to a diversity of users ranging from hobbyists to the user with commercial needs, we are happy to help our customers and community in any way we can. Our products are open source, giving customers the freedom to look under the hood. Our wolfSSL embedded TLS library is the first commercial release of TLS 1.3 in the world.