Device Hardening

mocana-use-case-device-hardening-video

The level of protection controls that may be embedded on devices varies based on factors such as available memory (SRAM), storage (flash), protocol stack (IP, Lightweight IP, None – No IP), operating system (e.g. Linux, RTOS, Windows, None – Microkernel), host processor, and ancillary processor (secure element, MCU). The benefits, in varying degrees of protection and implementation methods, include:

  • Device Identification
  • Device Authentication
  • Dynamic Key Exchange
  • Data Integrity
  • Data Privacy
  • Secure Enrollment
  • Secure Update
  • Software PUF
  • Minimal or Zero Coding

TrustCore provides adaptive design templates for IIoT/IoT developers to customize their solutions based on device functions, resource constraints, and security requirements to achieve industry compliance. Emerging standards for field device interoperability and device health monitoring for risk management are fueling manufacturing lines and supply chain visibility. A unified approach to provisioning and managing wired and wireless devices, interoperability between brownfield and greenfield devices, and managing cryptographic artifacts without complexity and expensive PKI infrastructure buildout are core drivers in solution engineering.

mocana-device-hardening-slide-01

For edge gateways (5G) and edge cloud multi-access edge compute (MEC) platforms, with an Enterprise grade Linux operating system (OS), an IP stack, and a secure element (e.g. TPM, EPID, SIM), TrustPoint clients and applications integrated with TrustCore offer the highest degree of protection for compliance.

mocana-device-hardening-slide-02

For purpose-built greenfield devices, with a real-time operating system (RTOS), a lightweight IP stack, and a secure element (e.g. TPM, EPID, SIM), TrustPoint clients and applications integrated with TrustCore offer a high degree of protection for compliance.

mocana-device-hardening-slide-03

For resource limited brownfield devices, with a micro kernel, an ancillary microcontroller as a secure element, and a lightweight IP stack, applications integrated with TrustCore offer a basic degree of protection for compliance. Deployed behind edge gateways, these devices may be hardened for immutable identifiers, certificate-based authentication, key exchange and key-based data privacy and protection.

mocana-device-hardening-slide-04

For resource constrained legacy devices, with a micro kernel, no secure element, and a lightweight IP stack, applications integrated with TrustCore offer a basic degree of protection for compliance. Deployed behind edge gateways, these devices may be hardened for verified boot, immutable identifiers, certificate-based authentication, key exchange and key-based data privacy and protection. In the absence of a lightweight IP stack, proprietary communications protocols may leverage cryptographic functions for signaling integrity and privacy.

IoT infrastructure encompasses a broad array of services and applications orchestrated for the enterprise, home and government sectors. Hardening devices for embedded protection and resilience changes the rules for cybersecurity. The reactive “outside-in” threat model in IT environments requires rethinking the “hard-edge, soft-core” paradigm with a proactive “inside-out” risk model. The OT/IoT ecosystem requires a “hardened core”. Mocana's key differentiator is that trust is baked in (not bolted on) and traverses the complete supply chain, from silicon vendor, equipment manufacturer, device manufacturer, and platform vendor to the application vendor.

Learn More About Mocana Solutions

icon-trustcenter-white

Mocana TrustCenter™

Services platform for automated security lifecycle management
icon-trustpoint-white

Mocana TrustPoint™

Comprehensive IoT endpoint security that simplifies integration
icon-trustcore-white

Mocana TrustCore

Proven, differentiated and compliant system of cybersecurity
  • Mocana's new IoT software brings trusted, military-grade security, and cloud-based communications to safety-critical applications like connected commercial and military aircraft. We are excited to be working with Mocana and our joint customers to provide an integrated platform for safety-critical avionics applications that combines key pieces of their IoT software with our best-in-class DO-178 real-time operating system."

    Greg Rose

    Vice President of Marketing and Product Management at DDC-I

  • The tools provided by Mocana are rooted in its long history of equipping engineers with the ability to harden devices that perform mission-critical operations."

    Rob Westervelt

    Research Manager, IDC

  • Connected devices are being deployed at a rapid pace, and security can no longer be optional. This is a shared industry responsibility, which is why Arm is working with partners including Mocana to shift the economics of security by providing a common framework for building more secure connected devices through PSA."

    Paul Williamson

    Vice President and General Manager, IoT Device IP, Arm

Find the device hardening solutions that meet your needs

Request a demo

Resources

The latest thoughts on cybersecurity
management.

Solution Briefs

Learn More

White Papers

Learn More

Datasheets

Learn More

Videos-Podcasts

Watch/Listen

Webinars

Learn More

Case Studies

Learn More