Security Feature Implementation
VigiShield Secure by Design
Leverage our embedded device expertise to implement
the core security features your device needs.
What’s the key to managing device security?
Implement security early in its design.
In today’s heightened cyber threat environment, connected embedded systems for industrial controls, transportation, navigation, communications, aerospace, military applications, healthcare devices, logistics systems, and many others require uncompromising security at deployment and throughout their product lifecycles.
Regulatory requirements and consumer expectations compel you to consider security from the very beginning. And yet, you have core product functionality that you have to complete on schedule. Have in-house expertise? You probably still prefer those folks to be working on product differentiators instead of committing them to OS security.
You could:
button | button
or
Use an in-house expert…
Try to use an off-the-shelf solution…
Take advantage of our embedded security expertise.
For more than 20 years, Timesys has been the industry’s trusted partner for secure embedded software design and development. We provide device makers and system developers with tools and services to accelerate time to market and develop more secure products.
What We Can Implement
Prevent Firmware Tampering
Secure Boot / Chain of Trust
Ensure your device is not running tampered software by verifying its authenticity before execution. Establish software authenticity all the way from the bootloader to user applications. Our secure boot/chain of trust services help implement:
- Verified bootloader (NXP i.MX / QorIQ, Qualcomm Snapdragon, TI Sitara, Atmel SAMA5, Xilinx Zynq, Nvidia Jetson, STM32MP1, Intel® x86 and Atom™, and more)
- Kernel verification (FIT image, SoC specific mechanisms)
- Root filesystem verification (dm-verity, IMA/EVM, FIT image)
Keep Your IP and User Information Safe
Device Encryption and Secure Key Storage
You can protect IP and sensitive user information by encrypting data/software. It is also critical to protect the key used for encryption using a secure storage mechanism. Additionally, software that handles confidential data should run from within a hardware/software-isolated environment. We provide solutions and services that span:
- Anti-cloning (IP and Data Protection)
- Key management and secure key storage
- Data protection using encryption — In use, in motion, and at rest
- Trusted Platform Module (TPM)
- Trusted Execution Environment (TEE) using Arm TrustZone and OP-TEE
- Device identity and authentication
Keep Your Updates Safe
OTA Software Updates
Our security services can help you determine how to update/deploy software securely and deny unauthorized software installs. We can implement:
- Over-the-air (OTA) updates of the software on your embedded system
- Package updates
- Full OS updates
- Signing of packages and images
- Server authentication
See Where You Stand
Security Audit
By performing a risk analysis, our audit services can help you determine what potential threats your system might encounter and what should be secured. Timesys’ security audits provide:
- Detailed review of packages and default system configuration
- Analysis of reports from audit and scanning tools
- End-to end-review of system security
- Risk management and recovery plan
Lock It Down
Hardening
Our hardening service focuses on system configurations needed to reduce your product’s attack surface, decrease risk of compromise, and minimize breach impacts including:
- Access & authorization
- Vulnerabilities
- Logging of all user access
- Logging of access level changes by any program
- Disabling unused services and ports
- Security-oriented configurations for packages and kernel
Know Where Your Software Comes From and Stay Resilient
Software Supply Chain Security
VigiShield Secure by Design helps you gain visibility into your software supply chain and secure it by:
- Choosing the right open source software
- Implementing end-to-end framework for supply chain integrity
- End-to end-review of system security
- Managing supply chain risks leveraging detailed SBOM
SEE THE SOLUTION YOU NEED?
Start The Conversation
Stop worrying about how you are going to find the engineering time and in-house expertise to give your product the professional architecture and security attention it needs.