Security protocol ensures tamper-proof TCP/IP traffic
ESC-Silicon Valley, San Jose, CA, May 3, 2011 — Express Logic, Inc., the worldwide leader in royalty-free, real-time operating systems (RTOS), has extended its NetX Duo™ TCP/IP IPv4/IPv6 dual stack with support for the IPsec protocol. IPsec (Internet Protocol Security), a protocol suite for securing network communications by authenticating and encrypting each packet of a communication session, now optionally can be added to NetX Duo to provide secure communications. NetX Duo with IPsec support (NetX/IPsec) creates a virtual channel between two networks within which packets traveling in the channel are encrypted for security and signed for authenticity. NetX/IPsec also includes protocols for establishing mutual authentication between sender and receiver at the beginning of a session and negotiation of cryptographic keys to be used during the session. IKE version 2 (IKEv2) is a protocol designed to negotiate security parameters and to exchange encryption keys, without the need for human intervention. NetX/IPsec also allows the definition of Traffic Selectors that define the type of data packets to be protected, with others simply passing through without security protection.
NetX/IPsec can be used to secure transactions between two hosts (for example, to secure a medical record transmistted from a handheld patent monitoring device to a physican’s workstation), a host and a network (for example, to secure a remote access session from a hotel room to company headquaters), or from a network to a network (for example, for a gateway device to secure network traffic between a local office and main office). The addition of IPsec protection requires no changes to existing NetX Duo applications. All encryption and authentication is done at the network layer, which is below any application code or API references, meaning that NetX Duo applications remain unchanged as IPsec security is added.
NetX/IPsec is fully integrated with NetX Duo, both in IPv4 and in IPv6 modes of operation. NetX/IPsec includes 3DES, AES encryption, HMAC-SHA1, and HMAC-MD5, with frameworks that allow user to integratetheir hardware cryptographic engine or software crypto library with NetX/IPsec operation.
“Our customers have always sought to provide the highest degree of security in the products they offer to consumers, medical personnel, and for transportation and industrial control,” commented William E. Lamie, president of Express Logic. “Now, by adding IPsec, they can secure their NetX Duo transmissions without having to change their application coding at all.”
About Express Logic and ThreadX
Headquartered in San Diego, CA, Express Logic offers the most advanced run-time solution for deeply embedded applications, including the popular ThreadX® RTOS, the high-performance NetX™ TCP/IP stack, the FileX® embedded FAT compatible file system, the new GUIX™ GUI development toolkit, and the USBX™ Host/Device USB protocol stack. All products from Express Logic include full source-code and have no run-time royalties. For more information about Express Logic solutions, please visit our web site at http://www.rtos.com, call 1-888-THREADX, or email inquiries to firstname.lastname@example.org.