![]() |
| Web and Network Communications Green Hills Platform for Wireless Devices |
||||||||||||||||||||||||||
|
» Product Overview » Benefits » WPA and WPA2 » Supported EAP Methods » Wi-Fi Protected Set-Up |
||||||||||||||||||||||||||
| Product overview | ||||||||||||||||||||||||||
The latest trend for these connected devices is to drop the leash and get online without wires. While going wireless offers many benefits, it also presents many challenges for developers—such as increased software complexity and added security risks. The Green Hills Platform for Wireless Devices provides developers with a complete Wi-Fi reference development platform for building electronic devices that require secure wireless connectivity. |
||||||||||||||||||||||||||
| Industry-leading collaboration | ||||||||||||||||||||||||||
| Green Hills Software’s Platform for Wireless Devices
accelerates the development of Wi-Fi enabled products by
providing key software technologies in a fully integrated
and tested package. The platform is a result of the collaboration
and joint development of industry leaders in security
and wireless technology. Built on the secure foundation of the INTEGRITY RTOS, the platform incorporates wireless drivers from Atheros with the Devicescape supplicant agent. These software technologies are integrated and validated on a hardware reference platform consisting of the Atmel AT91SAM9263- EK with Atheros AR6001-based radio modules from CardAccess and Silex Technology. |
||||||||||||||||||||||||||
| Platform components | ||||||||||||||||||||||||||
|
||||||||||||||||||||||||||
|
||||||||||||||||||||||||||
| Multiple benefits | ||||||||||||||||||||||||||
Lower device costs
Security and reliability Both security and reliability are critical when connecting devices over a wireless network. With the Green Hills Platform for Wireless Devices your device can take advantage of the proven security and reliability inherent to the INTEGRITY RTOS. INTEGRITY has an unmatched pedigree for security and reliability that includes multiple certifications by the FAA for flight critical electronics as well as formal methods analysis and NSA penetration testing performed on the security aspects of the OS. INTEGRITY’s separation kernel architecture provides isolation, protection, and controlled access to system resources like network services, devices and even system memory and CPU cycles. Without these protection mechanisms devices are susceptible to infiltration, loss of critical data, and denial of service attacks. The ability to partition resources such as the drivers, network stacks, and applications makes INTEGRITY the clear choice for building secure and reliable systems. For protecting data in transit, Green Hills has partnered with Devicescape to bring the gold standard in wireless security together with INTEGRITY. The Devicescape supplicant agent satisfies the supplicant requirements of both WPA and WPA2 standards. It supports both Personal and Enterprise modes and all the EAP methods mandated by the Wi-Fi Alliance for WPA2 compliance. |
||||||||||||||||||||||||||
| WPA and WPA2 | ||||||||||||||||||||||||||
| In 2003, the Wi-Fi Alliance introduced WPA to rectify the
shortcomings of the original Wi-Fi security mechanism,
WEP (Wireless Encryption Protocol). WPA2, introduced in
2004, implements all mandatory elements of IEEE’s security
standard, 802.11i. WPA2 is backwards compatible with
WPA, which includes a smaller subset of the 802.11i
requirements. WPA and WPA2 can be enabled in two
modes – Enterprise and Personal. Both modes provide
user authentication and encryption of data traffic (see
table below). For user authentication, WPA and WPA2 use Pre-Shared Keys (PSK) in Personal Mode and 802.1x/Extensible Authentication Protocol (EAP) in Enterprise Mode. For encryption, WPA uses the Temporal Key Integrity Protocol (TKIP) whereas WPA2 uses the stronger Advanced Encryption Standard (AES). AES satisfies the Federal Information Processing Standard (FIPS) 140-2 specification, a security requirement of many government agencies.
|
||||||||||||||||||||||||||
| Supported EAP methods | ||||||||||||||||||||||||||
|
|
|||||||||||||||||||||||||
| Cisco compatible extensions | ||||||||||||||||||||||||||
| The Cisco Compatible Extensions (CCX) Client provides
device manufactures a certification-ready device stack that
enables connectivity to widely deployed Cisco networks.
CCXv1, v2, v3, and v4 are supported. CCXv4 is targeted at
enterprise voice and embedded devices. The CCX Client is
validated with Cisco CCX infrastructure systems, and has
received KeyLabs certification for CCXv4. |
||||||||||||||||||||||||||
| Wi-Fi protected set-up | ||||||||||||||||||||||||||
1. Enrollee—device seeking to join a wireless network 2. Registrar—device with authority to grant or deny access to the network 3. Authenticator—access point functioning as a proxy between an Enrollee and a Registrar The Devicescape WPS provides the Enrollee function for wireless devices. It supports both in-band models covered by the WPS specification 1.0h for the client side, which are the push button and PIN methods. It also supports both enrollee mode where the wireless client is configured by an access point, and registrar mode where the client can configure an unconfigured access point. The WPS also includes a comprehensive simulator and logging/ debugging capabilities. |
||||||||||||||||||||||||||
|
||||||||||||||||||||||||||
|
|