Home
Download Center 

Meeting Security Certification Requirements with Certicom and QNX




July 2011
8 pages
Meeting Security Certification Requirements with Certicom and QNX

To reduce the complexity and costs of its expanding networking and security needs, the U.S. federal government has published Federal Information Processing Standard (FIPS) 140-2 Security Requirements for Cryptographic Modules. In this paper we describe how the QNX Neutrino RTOS and the Certicom Security Builder Government Security Edition (GSE) cryptographic library can help ease the burden of building and delivering FIPS 140-2 compliant software.

Contents

Introduction — COTS and Security — A Solid Foundation — FIPS 140-2 — FIPS 140-2 Validation — Market Entry Barriers and Issues — Conclusion [+]





Download Now
Download



Author
Rick Pitz
rpitz@certicom.com

Rick Pitz

Rick Pitz is responsible for security toolkit product management at Certicom. He has over 30 years' experience in the data and telecommunications industries, in both engineering and product management roles. His background includes working on various network protocols and products at Apple, Fujitsu and Wind River.

For the past ten years Rick has been involved in security protocol development for a broad range of security applications, including mobile devices, enterprise software, government, defense and military/aerospace, casino gaming, network equipment, and smart energy.



Author
Yi Zheng
yzheng@qnx.com

Yi Zheng

Yi Zheng is the product manager responsible for the safety product certified to IEC 61508 SIL3 and security product certified to Common Criteria EAL4+ at QNX Software Systems. She also manages the QNX Neutrino RTOS and the QNX Momentics tool suite.

Prior to joining QNX, Yi worked at Entrust Technologies, Autodesk and Nortel Networks, designing a wide range of software applications. She holds a Bachelor's in Computer Science from Carleton University, a Master's in Business Administration from Queen’s University, and is a Certified Management Accountant.

See Also...

Protecting Applications Against Heisenbugs

Using an IEC 61508-Certified RTOS Kernel for Safety-Critical Systems

Building Functional Safety into Complex Software Systems, Part I

Building Functional Safety into Complex Software Systems, Part II

Secure by Design: Using a Microkernel RTOS to Build Secure, Fault-Tolerant Systems


Other whitepaper topics: Recent, Automotive, German Whitepapers, HMI + Graphics, Industrial, Medical, Multimedia + Acoustics, Networking, Operating Systems, Security + Defense, Safe Systems, Tools