Medical Device Cybersecurity
The Allegro™ suite of products are specifically engineered to meet the rigors of embedded computing while offering OEM manufacturers access to the latest networking and embedded security technology to actively participate in the rapidly growing Internet of everything universe of devices. With 300+ design wins and 275+ million devices shipped to markets worldwide in a broad range of applications, Allegro’s technology is widely recognized as the most used OEM web server on the market today. The full suite of Advanced Edition products support both IPv4 and IPv6 operation, offers TLS 1.2 using FIPS 140-2 level 2 validated cryptography along with a rich set of Web technology, unprecedented flexibility, and unparalleled performance to meet your embedded device development needs.
RomPager
RomPager is a sophisticated Hyper Text Transfer Protocol (HTTP) engine that serves content to browsers and other Web clients. Fully compliant with HTTP 1.0/1.1 specifications, the RomPager Web server offers superior performance and can be configured to handle thousands of concurrent requests. RomPager also provides access to a high performance CGI-style interface, optional file system support, and the ability to dynamically generate HTML giving your engineering team flexibility to design any Web based interface of their choice. Additionally, the toolkit offers the ability to serve web objects (HTML, GIF, JPEG, Applets, etc.) from multiple sources: an optional file system, CGI-style User Exit functions and ROM. RomPager is delivered as standard ANSI-C source and built upon a highly portable and field proven abstraction layer enabling it to work with any RTOS or TCP/IP stack.
PageBuilder Compiler
Delivered as part of the toolkit, the PageBuilder Web-to-C compiler gives your engineering team a powerful and advanced tool that simplifies the process of converting Web objects to ANSI-C structures. The generated source is compiled and later linked with the RomPager modules along with your application allowing the Web server to present Web objects directly from ROM. The PageBuilder Web-to-C compiler also offers significant features for compression, integrated variable data access, integrated dynamic content and much more. Additionally, the Web server engine itself offers HTTP Streaming and HTTP 1.1 PUT, OPTION and TRACE support. Advanced Security features are included with support for Digest Authentication, external password validation and support for an internal security database with dynamic realm and security level configuration. Additional support is provided for state management (URL and HTTP Cookies) and compliance with IETF standards (RFC 2069, RFC 2616, RFC 2617) along with Browser-based file upload support (RFC 1867).
RomSTL – Embedded TLS
Security is always a concern when dealing with devices connected to the internet. RomSTL addresses the need for advanced security with integrated TLS 1.2 support. With support for a variety of cypher suites (RSA, DHE, RC4, DES, 3DES, AES, SHA, CBC and MD5) and full integration with Allegro’s FIPS 140-2 validated cryptography and Suite B, your development team can provide compatibility with all standard secure browsers. The RomCert toolkit offers a built-in certificate authority, certificate import support and Basic and Digest Authentication under TLS. Compliant with IETF standards (RFC 5246 and RFC 3268), RomSTL provides RomPager with the advanced security functionality to meet your development team needs.
Highly Portable
All Allegro toolkits are highly portable across RTOS and processor families. Delivered in ANSI-C source code all products utilize a field proven abstraction layer to enable portability with any RTOS, TCP/IP stack and file system environment. Interface files for leading RTOS environments are provided.
Features |
Benefits |
|---|---|
|
Small code footprint |
More resources available for application features |
|
ANSI C Source Code Distribution |
Broad processor architecture support, eases porting and support |
|
Processor, RTOS and TCP/IP stack agnostic |
Allegro’s products will work with new or existing hardware and software designs |
|
Interface files for leading RTOS vendors provided |
Minimizes porting effort, decreasing time to market |
|
Shipping in millions of products worldwide |
Field proven reliability |
|
Compatible with all standard browsers |
Universal and ubiquitous support |
|
Support for all HTML versions including HTML 5 |
Your designs can incorporate and use the latest HTML technology |
|
HTTP 1.0/1.1 Support |
High performance capabilities of HTTP 1.1 in addition to backward compatibility with HTTP 1.0 |
|
An interface to SNMP-style set and get routines |
Access routines can be shared for RomPager and an SNMP implementation |
|
Dynamic HTML creation |
Creating HTML dynamically saves considerable space and delivers performance gains especially in larger systems |
|
Efficient Internationalization support |
Built in support for Internationalization allows engineers to concentrate their efforts on product differentiation |
|
Flexible Security and External Security support |
Use software encryption or if available make use of hardware crypto acceleration |
|
Compilation switches for size, feature and speed trade-offs |
Allows the development team to optimize for system resources |
|
URL State Management support |
Allows designers to fully use stateful communications (cookies) |
Supported RFCs
- RFC 1867 – Form-based File Upload in HTML
- RFC 2069 – An Extension to HTTP : Digest Access Authentication
- RFC 2616 – Hypertext Transfer Protocol — HTTP/1.1
- RFC 2617 – HTTP Authentication: Basic and Digest Access Authentication
Supported RFCs – RomSTL SSL/TLS/DTLS
- RFC 2246 – The TLS Protocol Version 1.0
- RFC 4346 – The Transport Layer Security (TLS) Protocol Version 1.1
- RFC 5246 – The TLS Protocol Version 1.2
- RFC 3268 – Advanced Encryption Standard (AES) Ciphersuites for Transport Layer Security (TLS)
System Requirements
- Processor Architecture – Agnostic to any 16-bit, 32-bit or 64-bit processor
- Operating System(OS) – Agnostic to OS vendor and will function without an OS if needed
- TCP/IP Stack – Agnostic
- Filesystem – Agnostic to vendor implementation and will function without a filesystem if needed
- Compiler – ANSI C