Arm Bolsters IoT Security Testing

MICHAEL VIZARD | February 26, 2019

article image
Arm, in collaboration with a variety of testing partners, has announced a series of certifications intended to make sure internet of things (IoT) platforms built using its processors are secure.In 2017 Arm created the Platform Security Architecture (PSA), a framework that guides organizations through the process of building a secure connected device. That framework includes instructions and principles as well as Threat Models and Security Analyses documentation, hardware and firmware architecture specifications, open source Trusted Firmware (TF-M) and application programming interface (API) test kits. Working with with Brightsight, CAICT, Riscure, UL and Prove&Run, Arm is now launching PSA Certified, a set of tools designed to certify which of the four levels of the PSA framework any IoT device meets. The level of cybersecurity certification that needs to be achieved is determined by its function—a temperature sensor, for example, doesn’t need to have the same level of cybersecurity defenses in place as an IoT gateway.

Spotlight

Xantrion

Xantrion was founded in 2000 to provide enterprise-grade IT services to midsized businesses in the San Francisco Bay Area. Our focus has never wavered. We continually refine our services to meet the needs of the organizations we serve. As a result, our tailored solutions, in-depth cybersecurity expertise, and superior service have made us one of the top 10 managed service providers in California.

OTHER ARTICLES

Virtualization Leader Cuts IT Delivery Costs by 20% with HyperFlex

Article | February 20, 2020

IT is at the center of rapid innovation in today’s world where data is everywhere. To keep up with the data, companies worldwide are looking for the simplicity of hyperconvergence from core to edge and multicloud. One such company faced with data center challenges was Malicis. A boutique consulting firm specializing in desktop and systems virtualization, Montréal, Canada-based Malicis was tackling issues such as: simplifying data center operations, improving the performance and stability of IT services, and integrating service offering with third-party solutions. With challenges of the pace of modernization at hand, founder and CEO Marc-André Lapierre had to be judicious with prospective customers and make sure their workload would fit the company’s environment. While his firm’s virtual desktop and disaster recovery services have always been in high demand, they used to come with limitations.

Read More

Researchers Explore Details of Critical VMware Vulnerability

Article | April 17, 2020

Researchers have published the details of an investigation into CVE-2020-3952, a major vulnerability in VMware's vCenter that was disclosed and patched on April 9. The flaw was given a CVSS score of 10. CVE-2020-3952 exists in VMware's Directory Service (vmdir), which is a part of VMware vCenter Server, a centralized management platform for virtualized hosts and virtual machines. Through vCenter Server, the company says, an administrator can manage hundreds of workloads. The platform uses single sign-on (SSO), which includes vmdir, Security Token Service, an administration server, and the vCenter Lookup Service. Vmdir is also used for certificate management for the workloads vCenter handles.

Read More

Security concerns hampering adoption of containers and Kubernetes

Article | February 19, 2020

Enterprises are having significant problems with security when it comes to Kubernetes and container deployments, according to a new survey from security company StackRox. In the winter 2020 edition of its State of Container and Kubernetes Security Report, StackRox researchers found that 94% of respondents experienced a security incident in their Kubernetes and container environments during the last 12 months. This very high number of security incidents led to about 44% of organizations delaying or outright halting application deployment into production.Researchers spoke with more than 540 IT professionals, the majority of whom work for tech companies or organizations involved in financial services.

Read More

VMware Tanzu Service Mesh, built on VMware NSX is Now Available

Article | March 11, 2020

VMware marked its entry into the service mesh space with the announcement of VMware NSX Service Mesh. Today, we have some exciting developments to share. First, VMware NSX Service Mesh is now VMware Tanzu Service Mesh. This new brand aligns with the VMware Tanzu Portfolio for modern applications that we launched today. Second, and more importantly, we are announcing that Tanzu Service Mesh, built on VMware NSX is now available for purchase. Tanzu Service Mesh provides consistent connectivity and security for microservices – across all your Kubernetes clusters and clouds – in the most demanding multi-cluster and multi-cloud environments. Tanzu Service Mesh can be installed in Tanzu Kubernetes Grid (TKG) clusters and third-party Kubernetes-conformant clusters, and used with clusters managed by Tanzu Mission Control (i.e., Tanzu-managed clusters) or clusters managed by other Kubernetes platforms and managed services.

Read More

Spotlight

Xantrion

Xantrion was founded in 2000 to provide enterprise-grade IT services to midsized businesses in the San Francisco Bay Area. Our focus has never wavered. We continually refine our services to meet the needs of the organizations we serve. As a result, our tailored solutions, in-depth cybersecurity expertise, and superior service have made us one of the top 10 managed service providers in California.

Events