wolfSSL, a leading provider of TLS cryptography and Hex Five Security, provider of MultiZone Security, the first Trusted Execution Environment for RISC-V announce general availability of the industry-first secure IoT stack for RISC-V – a TLS 1.3 reference implementation of freeRTOS with hardware-enforced separation between OS, TCP/IP stack and root of trust.
FreeRTOS is the leading real-time operating system in the market; however recent security vulnerabilities identified in its connectivity stack highlight the risk inherent in monolithic system designs – the lack of separation between individual functional blocks where the exploit of one vulnerable area exposes the entire system to attack.
The MultiZone Security Trusted Execution Environment allows to separate the monolithic firmware into an unlimited number of physically isolated zones, de-facto preventing shared memory attacks, privilege escalation and lateral movement: the exploit of any zone vulnerability is confined to that zone and doesn’t propagate to the rest of the system.
“Security through separation is a fundamental building block of a secure system – however legacy Trusted Execution Environments have only enabled one barrier which does not support the complexity of a modern IoT device.” Said Todd Ouska, CTO and co-founder of wolfSSL. “MultiZone Security on RISC-V enables an unlimited number of secure zones, providing the flexibility for a proper security implementation.”
“wolfSSL’s TLS 1.3 library is broadly recognized as the gold standard for crypto performance and code size.” said Don Barnetson, co-founder of Hex Five Security. “We’re excited to partner with wolfSSL to bring their capabilities to the broad RISC-V community and provide the first secure IoT stack implementation for RISC-V.”