Express Logic Solutions are designed from the ground up for use in embedded IoT applications that need high security, including having no external access points that are not under direct control of the application. Additional security measures include proprietary implementations of network security technologies such as IPsec, TLS, and DTLS. At an architecture level, memory protection/isolation is available to help protect sensitive information.
EAL4+ Common Criteria Certification
Express Logic Solutions SC has achieved EAL4+ Common Criteria security certification. The Target of Evalution (TOE) covers THREADX, NETX DUO, NETX SECURE TLS, and NETX MQTT. This represents the most typical IoT protocols required by deeply embedded sensors, devices, edge routers, and gateways.
The IT Security Evaluation Facility used for the Express Logic Solutions SC security certification is Brightsight BV and the Certification Authority is SERTIT. Please review this link on SERTIT’s web site for additional details.
FIPS 140-2 Validated
Express Logic Solutions NETX™ Crypto libraries have achieved Federal Information Processing Standardization 140-2 (FIPS 140-2) Certification for software, which specifies requirements for cryptography modules. FIPS 140-2 requires all federal government agencies and departments that use cryptographic-based security to meet specific standards related to encryption strength and capabilities. These cryptographic-based security standards are also recognized in Canada and the European Union.
The Information Security evaluation lab used for Express Logic Solutions NETX™ Crypto libraries was atsec and the certification authority is The National Institute of Standards and Technology (NIST). Please review this link on the NIST website for additional details.
No Open Source
Express Logic Solutions contains no open source. All of Express Logic Solutions is proprietary Express Logic embedded software free from all legal, indemnification or licensing issues.
The THREADX MODULES technology offers memory protection via MPU or MMU to limit the access of embedded IoT application software only to it’s predefined memory area, isolating it from the core application code as well as other application modules.
ARM TrustZone™ Support
THREADX fully supports ARMv8M TrustZone, which has built-in facilities for isolating non-secure embedded code and data from the secure embedded code and data.
NETX DUO IPsec
NETX DUO IPsec offers IP-layer security using the latest protocols and cypher suites.
NETX SECURE for NETX DUO offers the latest TLS and DTLS socket-layer security using the latest protocols and cypher suites.