EEJournal

industry news
Subscribe Now
February 21, 2012

yaSSL Offers New Open-Source Security Tools

San Francisco, CA ? February 21, 2011 ? yaSSL, the open-source, embedded SSL provider, has made IT-level security tools available for the Open Source Community, ensuring that mature, advanced security tools like Kerberoswpa_supplicant, and OpenSSH are readily available for devices. By making security services commonly used for enterprise authentication and encryption available for Android and other device platforms, yaSSL enables developers to simplify and secure device connectivity and to close the door on hackers trying to break through Internet security using the backdoor of a device, such as a router, smartphone, printer, or game console.

“Our homes and businesses depend on network-connected devices,” noted Larry Stefonic, Founder of yaSSL. “The need for secure, authenticated exchange, whether for a gaming console or an Android smartphone, has become essential. We understood the pain developers had creating their own security solution or kludging tools together that were then slow and took too much memory. We’ve reduced that stress by providing the resources needed to protect and secure both the network and the device.”

yaSSL’s commitment to the Open-Source Community has sparked a number of efforts: 

  • Kerberos to Android?yaSSL ported Kerberos and a Java interface for the Generic Security Services API (GSSAPI) to enable development for the Android platform with the same secure, mutually authenticated and encrypted communication that’s the de facto standard used by Microsoft, Google, Apple and Linux on enterprise and desktop computers. To provide an easy entry point for Android developers interested in Kerberos, yaSSL created a sample Android NDK application that wraps the functionality of kinit, klist, kvno, kdestroy, and Java GSSAPI client into a simple GUI front-end. With these capabilities in place, developers know their applications prevent eavesdropping and replay attacks. yaSSL also embedded CyaSSL’s cryptography library CTaoCrypt in Kerberos to deliver very fast cryto implementations that are 20 times smaller and use less memory than the standard OpenSSL.
  • OpenSSH for embedded RTOSs—Used for secure remote access, OpenSSH encrypts passwords, sessions, and data for common UNIX and desktop environments, but is far too big and slow for the typical device. By using CyaSSL to do the heavy cryptography for OpenSSH, yaSSL introduces OpenSSH secure access tools that are smaller, faster and more portable. With very fast stream ciphers (e.g., RABBIT and HC-128) and public key support (e.g., NTRU), CyaSSL enables secure remote access for any CyaSSL-supported RTOS environments, including embedded Linux, iOS, QNX, VxWorks, and others. With an already integrated OpenSSH/CyaSSL solution, developers gain secure file copy and remote access to embedded devices without writing their own or kludging different solutions together, greatly decreasing time to market. CyaSSL’s crypto libraries are simply implemented via a build option.
  • Wi-Fi Protected Access (WPA) for devices—wpa_supplicant, a WPA and WPA2 client for 802.11i, offers a secure, out-of-the-box wireless LAN for Linux, BSD, Mac OS X, and Windows. wpa_supplicant’s small code size and clean design make it ideal for secure key negotiations that control the wireless connection of embedded devices. Integration with CyaSSL takes support a step further by securing the Internet connection and adding very fast cipher suites, such as TLS_RSA_WITH_128_CBC_SHA and TLS_NTRU_RSA_WITH_AES_128_CBC_SHA that are not part of the default installation. With support for embedded Linux, iOS, Android, QNX, VxWorks, and other RTOSs, CyaSSL significantly reduces both development time and cost and eliminates the need for developers to write, purchase, or patch their own solution.

“Lean, fast, and portable embedded application security is critical in this environment of ever-growing connectivity,” said Stefonic. “By bringing such widely adopted standards as Kerberos, OpenSSH, and wpa_supplicant to developers, yaSSL gives developers the resources they need to easily integrate their applications with the larger enterprise infrastructure and market. We appreciate being able to give back to the Open Source Community in this way and look forward to the development opportunities this added security will bring. 

About yaSSL

Founded in 2004, yaSSL offers open-source, embedded security solutions that are fast, small, portable and standards-compliant, including:  CyaSSL, the C-language SSL library for embedded and RTOS environments; yaSSL, the embedded C++ SSL library; and yaSSL embedded web server, a fast, embeddable, secure web server. Dual-licensed, yaSSL caters to the security applications in industrial automation, smart energy, surveillance, medical, military, and telecommunications markets as well as the open-source community. yaSSL is headquartered in Bozeman, Montana, and employs a worldwide distributor network. For more information about yaSSL solutions, please visit the company’s Web site atwww.yassl.com, call +1 206 369 4800, or e-mail info@yassl.com.

Leave a Reply

featured blogs
Celebrating World Intellectual Property Day
Apr 26, 2024
LEGO ® is the world's most famous toy brand. The experience of playing with these toys has endured over the years because of the innumerable possibilities they allow us: from simple textbook models to wherever our imagination might take us. We have always been driven by ...
More from Cadence...
Wow! Biomimetic LEDs!
Apr 26, 2024
Biological-inspired developments result in LEDs that are 55% brighter, but 55% brighter than what?...
More from Max's Cool Beans...
Want to Mix and Match Dies in a Single Package? UCIe Can Get You There
Apr 25, 2024
See how the UCIe protocol creates multi-die chips by connecting chiplets from different vendors and nodes, and learn about the role of IP and specifications.The post Want to Mix and Match Dies in a Single Package? UCIe Can Get You There appeared first on Chip Design....
More from Synopsys...

featured video

How MediaTek Optimizes SI Design with Cadence Optimality Explorer and Clarity 3D Solver

Sponsored by Cadence Design Systems

In the era of 5G/6G communication, signal integrity (SI) design considerations are important in high-speed interface design. MediaTek’s design process usually relies on human intuition, but with Cadence’s Optimality Intelligent System Explorer and Clarity 3D Solver, they’ve increased design productivity by 75X. The Optimality Explorer’s AI technology not only improves productivity, but also provides helpful insights and answers.

Learn how MediaTek uses Cadence tools in SI design

featured paper

Designing Robust 5G Power Amplifiers for the Real World

Sponsored by Keysight

Simulating 5G power amplifier (PA) designs at the component and system levels with authentic modulation and high-fidelity behavioral models increases predictability, lowers risk, and shrinks schedules. Simulation software enables multi-technology layout and multi-domain analysis, evaluating the impacts of 5G PA design choices while delivering accurate results in a single virtual workspace. This application note delves into how authentic modulation enhances predictability and performance in 5G millimeter-wave systems.

Download now to revolutionize your design process.

featured chalk talk

Secure Authentication ICs for Disposable and Accessory Ecosystems
Sponsored by Mouser Electronics and Microchip
Secure authentication for disposable and accessory ecosystems is a critical element for many embedded systems today. In this episode of Chalk Talk, Amelia Dalton and Xavier Bignalet from Microchip discuss the benefits of Microchip’s Trust Platform design suite and how it can provide the security you need for your next embedded design. They investigate the value of symmetric authentication and asymmetric authentication and the roles that parasitic power and package size play in these kinds of designs.
Click here for more information about the Microchip Technology DM320118 CryptoAuth Trust Platform Kit
Jul 21, 2023
32,294 views