| Dual-licensed embeddable SSL library achieves first stable release |
Apr. 07, 2004
PeerSec Networks has achieved the first stable release of its dual-licensed Secure Sockets Layer (SSL) library created specifically for devices running Linux and other embedded operating systems. MatrixSSL 1.0 includes host and client implementations under 50KB each, and can secure socket-based communications on "even the smallest devices," the company says.
MatrixSSL has been beta testing since February.
GPL version
MatrixSSL 1.0 is available for licensing under the GNU GPL. The GPL version can be used to add SSLv3 based security to open source software applications such as Web browsers, chat clients, XML translators, and machine-to-machine (M2M) communications, according to PeerSec.
The library is already being used in AppWeb, a "mini-Apache" Web server that recently added support for PHP. The free version of AppWeb is MatrixSSL's reference implementation.
Commercial version
PeerSec also offers a royalty-free commercial version of MatrixSSL that can be used with closed applications. It includes "Quick Start Integration" support, and a security updates subscription.
The commercial version also adds support for two important standards often required by large companies and governments. It supports Transport Layer Security (TLS), a network protocol ratified by the IETF as a vendor-neutral alternative to Netscape's Secure Sockets Layer (SSL). It also supports Advanced Encryption Standard (AES), a high-performing government-standardized cipher algorithm unencumbered by patents.
PeerSec President J Harper notes, "Our commercial customers are interested in TLS support because of its standards approval. The SSLv3 protocol is more compatible and contains no weaknesses that make upgrading to TLS a necessity."
General features
The MatrixSSL 1.0 library supports both client and host applications, although "most applications require just one or the other," according to Harper. It can be built to support both in a footprint of "under 70K," he adds.
The library manages memory with minimal system calls, to better support minimalist embedded devices, according to Harper. It supports X.509 certificate authentication, fast session resumption, and implementations of RSA, AES, 3DES, ARC4, SHA1, and MD5.
According to Harper, MatrixSSL is not dependent on any specific transport layer, operating system, or hardware configuration. "It is designed to allow straightforward integration with existing applications without threading, sockets, or file system constraints," says Harper.
Harper adds that most of PeerSec's early customers for MatrixSSL have been interested in adding security to existing devices or applications, to enable them to be used outside corporate LANs and on wireless networks.
Availability
The free MatrixSSL 1.0 library is available for download now from the MatrixSSL open source project site. The portable code is designed to build on a wide range of embedded operating systems, including embedded Linux, and it includes sample applications and programming examples.
Further details about commercial licensing can be found on the Peersec Networks website. PeerSec also offers custom integration services for customers with additional security requirements.
Australian security consulting specialist Mocana also offers a small commercial SSL library designed for embedded applications, and recently supported by the Go Ahead web server.
Related Stories:
(Click here for further information)
|
|
|
7 Advantages of D2D Backup
For decades, tape has been the backup medium of choice. But, now, disk-to-disk (D2D) backup is gaining in favor. Learn why you should make the move in this whitepaper.
4 Legal Reasons to Control Internet Access
The Internet is obviously a valuable resource for many organizations. However, many are exposed to legal liability concerns because they fail to control Internet access. Learn if you're safe in this white paper.
Rapidly Resolve J2EE Application Problems
Whether you are in the process of building J2EE applications or have J2EE applications already running in production, you must ensure that they deliver the expected ROI. Learn how in this white paper.
Load Testing 2.0 for Web 2.0
There are many unknowns in stress testing Web 2.0 applications. Find out how to test the performance of Web 2.0 in this white paper.
Build Better Games Online
For the game infrastructure providers, life is complex. Making money from games has become more complicated. Why? Find out in this white paper.
Building a Virtual Infrastructure from Servers to Storage
This white paper discusses the virtual storage solutions that reduce cost, increase storage utilization, and address the challenges of backing up and restoring Server environments.
Gaining Faster Wireless Connections with WiMAX
Welcome to what is quickly becoming the hyperconnected world where anything that would benefit from being connected to the network will be connected. Learn more in this white paper.
Is Your Desktop a Security Threat?
The new wave of sophisticated crimeware not only targets specific companies, but also targets desktops and laptops as backdoor entryways into those business’ operations and resources. Learn how to stay safe in this white paper.
Increasing SAN Reliability by 100 Percent
Storage area networks (SAN) are a strong part of storage plans. Learn how to increase your reliability and uptime by 100 percent in this case study.
|
|
|
|
|
Use of this site is governed by our Terms of
Service and Privacy Policy.
Except where otherwise specified, the contents of this site are copyright © 1999-2008
Ziff Davis Enterprise Holdings Inc. All Rights Reserved.
Reproduction in whole or in part in any form or medium without express written permission of Ziff Davis Enterprise is
prohibited. Linux is a registered trademark of Linus Torvalds. All other marks are the property of their respective owners.
news feed