Secure Software for the Internet of Things
IoT Device Security
IoT Device Security
Embedded devices are increasingly connected to the Internet and called upon to communicate in meaningful ways with corporate IT servers. Allegro’s Secure IoT Suite offers a number of products to aid your engineering team in building powerful connected embedded devices using industry standard communications protocols.
Embedded TLS Client-Server
TLS (Transport Layer Security) is used to create an authenticated and encrypted channel, often referred to as an encrypted tunnel, between two endpoints on an unsecured network. Allegro’s Secure Transport Layer toolkit (RomSTL) provides both Client and Server support for TLS in addition to DTLS capabilities.
Embedded SSH Client-Server
SSH provides encrypted communications between hosts over an insecure network. Allegro’s SSH embedded Client and Server (RomSShell AE) offers a range of client authentication options other than X.509 public-key certificates which require a fully functioning public key infrastructure.
Embedded Certificate Management
Allegro’s suite of Embedded Device Security toolkits
RomSTL is a small, resource sensitive TLS client and server solution specifically engineered for embedded systems. RomSTL is pre-integrated with the full suite of RomPager AE products making it easy to envoke TLS as needed. RomSTL supports the latest RFC standards for TLS 1.0, TLS 1.1, and TLS 1.2 secure server and client sessions. The toolkit is hardware and software platform
RomSShell AE is an embedded Secure Shell version 2 (SSH) toolkit. SSH provides encrypted communications between hosts over an insecure network. RomSShell AE offers a range of client authentication options in addition to X.509 public-key certificates. RomSShell AE can also be used for port forwarding (sometimes called SSH tunneling), allowing you to arbitrarily tunnel secure TCP connections. RomSShell AE also supports the latest RFCs for implementing Suite B with Secure Shell.
The Allegro Cryptography Engine (ACE) is a cryptographic library module specifically engineered to meet the requirements needed for FIPS 140-2 level 2 validation. The module provides developers with a common software API to enable bulk encryption and decryption, message digests, digital signature creation and validation, and key generation and exchange. Suite B is an advanced standard for cryptography that defines algorithms and strengths for encryption, hashing, calculating digital signatures, and key exchange. ACE includes a platform independent, government validated