- January 15, 2019
This integration enables industrial manufacturers and operators to replace OpenSSL, an open source crypto library, with Mocana‚Äôs cybersecurity software solution that is FIPS 140-2 validated and compliant with industrial cybersecurity standards.
January 15, 2019 – Mocana, a provider of device security solutions for IoT and industrial control systems, announced the integration of Mocana TrustPoint, the company’s embedded cybersecurity software, with Unified Automation’s High Performance OPC Unified Architecture (UA) Software Development Kit (SDK). This integration enables industrial manufacturers and operators to replace OpenSSL, an open source crypto library, with Mocana’s cybersecurity software solution that is FIPS 140-2 validated and compliant with industrial cybersecurity standards.
OPC UA is an open machine-to-machine communication platform for industrial automation developed by the OPC Foundation. The OPC UA standard enables industrial control system (ICS) devices across multiple platforms to communicate using a services-oriented architecture (SOA) including enhanced publish / subscribe capabilities. The standard is broadly used across many industries including pharmaceutical, oil and gas, building automation, industrial robotics, security, manufacturing, process control, and transportation.
Unified Automation develops several OPC UA software development kits for C++, .NET, and ANSI C. Unified Automation’s High Performance (HP) OPC UA Server SDK was designed to support OPC UA in the smallest, most resource-constrained devices, such as IoT devices. The HP SDK improves the performance, scalability, and security of OPC UA and enables servers to handle thousands of connections in parallel.
By default, most OPC UA SDKs have been designed to use OpenSSL, open source security software, to handle security functions such as authentication and encryption. Besides the large footprint hindering implementation on the smallest embedded devices, OpenSSL has been shown to have thousands of vulnerabilities, a hard to maintain complex code base, and slow vulnerability remediation times. Additionally, the latest NIST 140-2 standards cannot be met by the current version of OpenSSL. As a result, industrial companies are migrating away from OpenSSL to meet cybersecurity compliance standards.
Mocana’s integration with Unified Automation’s OPC UA SDKs helps to replace OpenSSL with Mocana’s FIPS 140-2 validated cryptographic engine and comprehensive device security lifecycle management platform. Mocana provides an OpenSSL Connector, a shim that transparently intercepts the device application’s OpenSSL API calls, changes the arguments, and passes them onto Mocana’s cryptographic engine without requiring any application code changes.
Mocana’s device security solution facilitates compliance with cybersecurity standards, such as the NIST FIPS 140-2, IEC 62443, NIST 800-63, and CIP-007. Mocana and Unified Automation are members of the OPC Foundation.
About Mocana Corporation
Founded in 2002, Mocana provides mission-critical IoT security solutions for embedded systems, industrial controls and the Internet of Things (IoT). Our proven cybersecurity software goes beyond traditional security approaches by making IoT and ICS devices trustworthy and enabling secure device-to-cloud communications.Learn More
Did you enjoy this great article?
Check out our free e-newsletters to read more great articles..Subscribe