Advanced RTOS, embedded real-time OS, compact OS, IDE, Software development toolkits, embedded c compilers, Multicore debugger, hardware probes, static source code analysis tool, secure hypervisor, virtual prototyping platform
Web and Network Communications
Green Hills Platform for Wireless Devices

» Download Wirelss Devices Datasheet (PDF)

   
» Product Overview
» Benefits
» WPA and WPA2
» Supported EAP Methods
» Wi-Fi Protected Set-Up



 
Product overview  
GATED, embedded wireless security platform solutions in networking and communications, WPA, WPA2  
The Platform for Wireless Devices provides a complete WiFi
reference development platform that accelerates the development
of WiFi enabled devices.
  
In the last decade, network connectivity in embedded devices has become extremely common. A wide range of devices—gas pumps, digital video recorders, industrial controls, patient monitoring equipment, and vending machines—are now linked to private networks or the internet.

In recent years, more and more of these types of devices have needed to communicate untethered over wireless networks. With the Green Hills Platform for Wireless Devices, developers now have a complete WiFi reference development platform for building electronic devices that require wireless LAN (WLAN) interfaces.

The Platform for Wireless Devices makes it easy to add complete, diverse wireless connectivity safely and securely to your wireless device by offering a full suite of embedded networking, security, and mobility products.

Green Hills Software’s Platform for Wireless Devices accelerates the development of WiFi enabled products by providing key software technologies in a fully integrated and tested package.

Feature summary
» Configurable, small footprint
» Full IEEE 802.11 and Wi-Fi Alliance standards support with guaranteed interoperability
» Comprehensive WLAN client security features
» Enterprise-level security with full support for personal and enterprise WPA2 and WPA
» Static and dynamic WEP (64/128/152-bit)
» Supports the full range of 802.1X Extensible Authentication Protocol (EAP) types
» Supports simultaneous use of different drivers
» Supports infrastructure and ad-hoc networks
» Supports 802.1X authentication over wired LANs
» Designed to interoperate with all standards-compliant RADIUS servers
» Optional Cisco Compatible Extensions (CCX) version 4 wireless client for embedded devices - only available to Cisco licensees
» Wi-Fi Protected Setup (WPS) Support
 
top
  
Benefits  

Lower Device Costs
Green Hills royalty-free licensing model is ideal for any wireless devices, eliminating the per unit cost to include this valuable software technology in your embedded devices. Whether you ship 10,000 or 1,000,000 units, you never pay a royalty.

Fast Time To Market
With all of the required software pre-integrated and working together, you don’t need to spend valuable time integrating components. Instead, you can focus on adding the unique features and capabilities that will differentiate your product in the market.

GATED, Wireless security platform solutions in networking and communications, WPA, WPA2, SCA, 802.11i
  With INTEGRITY, you can isolate the TCP/IP stack and security software into a protected virtual address space (blue boxes) and control the access, flow of information, and availability of these system resources to applications running in other protected parts of the system.
Security and Reliability
Both security and reliability are critical when connecting devices over a wireless network. With the Green Hills Platform for Wireless Devices your device can take advantage of the proven security and reliability inherent to the INTEGRITY RTOS as well as be integrated with the latest security standards approved by the WiFi Alliance, WPA and WPA2 (802.11i).

Even if you’re using the latest security standards and security software available to develop your products, if you are not running on a secure, reliable RTOS like INTEGRITY, you are compromising your product. What’s more, you are opening the system up to both intentional and unintentional events that can promote denial of service, access to configuration information, or even complete system failure. With INTEGRITY you can isolate, protect, and control system resources to guarantee access and control of system networking services, devices and even system memory and CPU availability.

With INTEGRITY, developers can statically or dynamically control information flow and resource availability to a given protected address space. Also, running the TCP/IP stack in a protected address space, isolates and protects it from failure of applications in other address spaces.

  
top
  
WPA and WPA2  
In 2003, the WiFi Alliance introduced WPA to rectify the shortcomings of the original WiFi security mechanism, WEP (Wireless Encryption Protocol). WPA2, introduced in 2004, implements all mandatory elements of IEEE’s security standard, 802.11i. WPA2 is backwards compatible with WPA, which includes a smaller subset of the 802.11i requirements. WPA and WPA2 can be enabled in two modes – Enterprise and Personal. Both modes provide user authentication and encryption of data traffic (see table below).

For user authentication, WPA and WPA2 use Pre-Shared Keys (PSK) in Personal Mode and 802.1x/Extensible Authentication Protocol (EAP) in Enterprise Mode. For encryption, WPA uses the Temporal Key Integrity Protocol (TKIP) whereas WPA2 uses the stronger Advanced Encryption Standard (AES). AES satisfies the Federal Information Processing Standard (FIPS) 140-2 specification, a security requirement of many government agencies. The Green Hills supplicant support satisfied the supplicant requirements of both WPA and WPA2 standards. It supports both Personal and Enterprise Modes, that use PSK and EAP for authentication respectively. Additionally, it supports all EAP methods mandated by the WiFi Alliance for WPA2 compliance.

WPA and WPA2 authentication and encryption summary
WPA
Personal Mode Authentication: PSK Encryption:TKIP/MIC
Enterprise Mode Authentication:802.1x/EAP Encryption:TKIP/MIC
WPA2
Personal Mode Authentication: PSK Encryption:AES-CCMP
Enterprise Mode Authentication:802.1x/EAP Encryption:AES-CCMP
top
  
 
Supported EAP methods  
  • EAP-TLS
  • EAP-PEAP (PEAPvO & PEAPv1)*
  • MSCHAPv2
    • TLS
    • GTC
    • OTP
    • MD5-Challenge
  • EAP-TTLS*
    • EAP-MD5-Challenge
    • EAP-GTC
    • EAP-OTP
    • EAP-MSCHAPv2
    • EAP-TLS
    • MSCHAPv2
    • MSCHAP
    • PAP
    • CHAP
  • LEAP
  • EAP-MD5-Challenge
  • EAP-MSCHAPv2
  • EAP-GTC
  • EAP-OTP
  • EAP-SIM
  • EAP-FAST
* For the tunneled EAP methods, the mode used by the server to authenticate itself is listed as the first-level bullet; the modes used by the client to authenticate itself are shown as sub-bullets.

  
Cisco compatible extensions  
The Cisco Compatible Extensions (CCX) Client provides device manufactures a certification ready device stack that enables connectivity to widely deployed Cisco networks. CCXv1, v2, v3, and v4 are supported. CCXv4 is targeted at enterprise voice and embedded devices. The CCX Client is validated with Cisco CCX infrastructure systems, and has received KeyLabs certification for CCXv4.

  
top
  
Wi-Fi protected set-up  
GATED, IEC 61508, Secure and reliable wireless platform solutions in networking and communications  
WPS automatically configures the WPA parameters for wireless network that can
be as easy as pushing a button on the device and the access point.		  
Wi-Fi Protected Set-up (WPS) was created by the Wi-Fi Alliance to enable easy and secure establishment of wireless networks. WPS automatically configures the WPA parameters for wireless network in one of four simple ways that can be as easy as pushing a button on the device and the access point. There are three functions that are involved in this protocol.

1. Enrollee—device seeking to join a wireless network

2. Registrar—device with authority to grant or deny access to the network

3. Authenticator—access point functioning as a proxy between an Enrollee and a Registrar

The Green Hills WPS provides the Enrollee function for wireless devices. It supports both in-band models covered by the WPS specification 1.0h for the client side, which are the push button and PIN methods. It also supports both enrollee mode where the wireless client is configured by an access point, and registrar mode where the client can configure an unconfigured access point. The WPS also includes a comprehensive simulator and logging/debugging capabilities.		  
top
  
GATED, IEC 61508, Secure and reliable wireless platform solutions in networking and communications  
Green Hills Software’s Platform for Wireless Devices provides a full suite of embedded networking, security, and mobility products in a fully integrated and tested package.  
 
   
 
 
Products    |     Benefits   |     Services    |     Support    |     Partners    |     About    |     Home
 
Contact   |    Request Info    |   Search  |   Webmaster  |  RSS  |   Copyright © 2008 Green Hills Software
secure platform for wireless devices