wolfSSL and Hex Five Security, provider of MultiZone Security, the first Trusted Execution Environment for RISC-V, announce general availability of the industry-first secure IoT stack for RISC-V – a TLS 1.3 reference implementation of freeRTOS with hardware-enforced separation between OS, TCP/IP stack and root of trust.
FreeRTOS is the leading real-time operating system in the market; however recent security vulnerabilities identified in its connectivity stack highlight the risk inherent in monolithic system designs – the lack of separation between individual functional blocks where the exploit of one vulnerable area exposes the entire system to attack.
The MultiZone Security Trusted Execution Environment allows to separate the monolithic firmware into an unlimited number of physically isolated zones, de-facto preventing shared memory attacks, privilege escalation and lateral movement: the exploit of any zone vulnerability is confined to that zone and doesn’t propagate to the rest of the system.
“wolfSSL’s TLS 1.3 library is broadly recognized as the gold standard for crypto performance and code size,” said Don Barnetson, co-founder of Hex Five Security. “We’re excited to partner with wolfSSL to bring their capabilities to the broad RISC-V community and provide the first secure IoT stack implementation for RISC- V.”
The secure IoT stack for RISC-V is open source and available on GitHub at https://github.com/hex- five/multizone-secure-iot-stack.
Hex Five and wolfSSL will be presenting six papers describing all aspects of the underlying zero-trust framework at the Embedded World Conference in Nuremberg, Germany on Feb 26 and 27, 2019.
Leave a Reply