Wind River beefs up Linux security for IoT
At the Embedded Linux Conference this week in San Jose, Ca., Wind River released a new security profile for its Linux distribution certifiable to the Common Criteria General Purpose Operating System (GPOS) Protection Profile up to Evaluation Assurance Level 4 (EAL 4). http://www.windriver.com/products/linux.html
Additionally, Wind River has released the latest version of Carrier Grade Profile for Wind River Linux, a turnkey platform for customers to meet Carrier Grade Linux (CGL) requirements.
"With increasing connectivity among devices, using a well-established, standards-based approach such as Common Criteria during development can help address security concerns around the Internet of Things (IoT)," said Dinyar Dastoor, vice president of product management at Wind River..
The use of the Security Profile, he said, will help developers deal with future threats arising from the growth of IoT. Key features, ncluding a hardened kernel, secure boot, a security-focused user space, and the Yocto Project Compatible Wind River Linux base—seamlessly integrate with validation tools, documentation, and hardware support.
"With the Internet of Things, the needs around device connectivity and security are growing more complex, yet companies are under pressure to keep to tighter development schedules and budgets,” said Dastoor.
The Security Profile includes certification evidence for the functional and assurance requirements to become certifiable, which, he said, makes it possible for developers can work through the traditionally complicated and expensive certification process much faster.
Separately, the updated release of Carrier Grade Profile includes support for the latest Linux kernel 3.10 LTSI release and expanded silicon support for a variety of hardware architectures. The profile also includes virtual routing and forwarding (VRF) with containers to seamlessly provide carrier grade functionality in a virtualized environment.
"As data traffic pushes the limits of the carrier network, and the industry is evolving towards network functions virtualization (NFV)," said Dastoor., "it is critical to uphold carrier grade reliability and maintain the strict service level agreement (SLA) performance and security requirements that carriers already guarantee their customers today. "