Embedded Software Security

Embedded Security FrameworkEmbedded Security Framework

The Embedded Security Framework (ESF) developed by TELEGRID is a structured collection of encryption and authentication modules designed to accelerate the design and development of secure embedded systems. It is based on TELEGRID’s 30+ years of experience in embedded software security particularly in the fields of voice and data encryption, secure unified communications and management of networked encryptors. 

The ESF helps Government Engineers design STIG compliant embedded systems quickly. The Framework includes all relevant documentation (e.g., FIPS 140-2 certificate, STIG questionnaire, etc.) to speed the certification process. By incorporating embedded software security early in the development cycle product designers can eliminate late-stage redesigns thereby reducing cost and development time. Click for more information

FIPS 140-2 Encryption

Public Key Infrastructure (PKI)

  • CAC/PIV credential-enabling
  • LDAP Integration with Active Directory
  • PKI certificates for mutual authentication
  • Certificate loading and installation for upload into a DoD Certificate Authority (CA)
  • Configuration of a root of trust/ trust anchor to support chained certificate validation
  • Revocation checking – Online Certificate Status Protocol (OCSP) or Certificate Revocation Lists (CRL)

Centralized Authorization

  • System access validation via RADIUS, TACACS+ and Diameter

Developed in line with DISA STIGs

  • Reduces late-stage redesigns for non-STIG compliant encryption and authentication
  • Includes relevant documentation to speed certification