Verifiable Embedded TLS/DTLS

HCC’s TLS/DTLS is a highly optimized software module designed to provide secure network communications for embedded devices. The software is developed using a rigorous adherence to MISRA C:2004 and is available with a full MISRA compliance report. The importance of using a strong development process and source code control has been emphasized by a number of high-profile security problems caused by source code errors. Network security requires a high degree of quality and traditional methods of ‘freestyle coding’ and test do not provide sufficient guarantees of correctness.

HCC’s verifiable Transport Layer Security (TLS) and Datagram Transport Layer Security (DTLS) provides a framework for secure communication in networks based on the TCP/IP or UDP protocols. The module implements TLS 1.2 and, optionally, downrev versions (including SSL 3.0).

  • Typically uses a standard Sockets interface, allowing easy integration.
  • TLS 1.0, 1.1 and 1.2 (RFC 5246) and SSL 3.0 and is verifiable.
  • DTLS version 1.2 (RFC 6347) and version 1.0 (RFC 4347).
  • Heartbeat extensions (RFC 6520).
  • HTTP over TLS (RFC 2818).
  • HTTP or FTP Server support for HTTPS and FTPS implementations.
  • Embedded Encryption Manager (EEM) provides full certificate management.
  • Supports a wide range of cipher suites including: DH/DHE/DSS/ECDHE/RSA, AES/RC4/3DES, SHA/MD5

Low Footprint, High Performance: HCC’s TLS/DTLS implementation can be used as client or host and is designed especially for microcontrollers, ensuring a low memory footprint, typically around 20kB ROM / 8kB RAM. Typically it uses a standard sockets interface and will bring ease of integration to many embedded applications. HTTP or FTP Server support is provided for HTTPS and FTPS implementations or connection to any other secure client or server application.

All algorithms are implemented as individual libraries and, where possible, use crypto hardware support provided on specific microcontrollers.

Target Support: HCC’s TLS/DTLS is the perfect complement to HCC’s MISRA compliant TCP/IP stack. The stack is extensively used on a wide range of embedded platforms including most ARM Cortex-based MCUs. All projects are delivered as fully documented source code and can be optimized for performance and low footprint.