IAR Systems and Secure Thingz launch shrink-wrapped solution for organizations targeting EN 303645 compliance for secure IoT applications
The new Compliance Suite enables developers to rapidly implement critical components of the IoT Security Foundation Compliance Framework
Cambridge, United Kingdom / Uppsala, Sweden—March 2, 2021—Secure Thingz, an IAR Systems® Group company, today announced Compliance Suite, a set of tools and training specifically targeted to provide embedded developers with a simplified path to building applications that are compliant with the European EN 303645, UK & Australian 13 Best Practices, and the evolving US Cybersecurity Improvement Act (NISTIR 8259).
Compliance is a challenge for every organization working in the fast-moving Internet of Things domain; given that most applications are unique, and that formal certification methodologies are both costly and time consuming. To this end the IoT Security Foundation, a non-profit industry association, developed their IoT Security Compliance Framework, enabling organizations to build a self-certification methodology that meshes with the 13 Best Practices captured in UK and European Secure by Design guidelines. The Compliance Suite from IAR Systems and Secure Thingz includes a set of development tools and Preconfigured Security Contexts that enables developers to rapidly implement core aspects of the guidelines, such as moving from passwords to certificate-based identification; the implementation of update policies; and the use of advanced device specific security enclaves to protect provisioned information. Coupled with these tools is a set of training and support resources linking the functional requirements with the certification requirements identified in the IoT Security Foundation Compliance Questionnaire, ensuring a rapid implementation that meets international requirements.
“We are excited to enable our customers to meet the best practice certification provided by the IoT Security Foundation Compliance Framework,” said Haydn Povey, CEO, Secure Thingz. “We believe that compliance with these best practices is critical in enabling IoT to be successful, in ensuring interoperability based on trust, and ensuring customer confidence.”
Compliance is a great step towards formal 3rd party certification, such as Global Platform Security Evaluation Standard for IoT Platforms (SESIP), and the Arm® PSA requirements. By implementing the IoT Security Foundation Compliance Framework, developers are aligning their organizations with the best-in-class methodologies, enabling them to achieve and surpass the evolving industry requirements.
“Helping the design community to implement good security for connected products is at the heart of the IoTSF’s mission and we are very pleased to see organizations such as IAR Systems and Secure Thingz embrace our Compliance Framework”, said John Moor, Managing Director of the IoT Security Foundation. ”The ability to link advanced development tools directly into the framework is a further boost that ensures developers can achieve robust security functionality, while enabling them to focus on their core application requirements.”
The Compliance Suite from IAR Systems and Secure Thingz delivers a set of security development tools to extend the development toolchain IAR Embedded Workbench. The Suite includes the security development tool C-Trust, plus a set of Preconfigured Security Contexts for both mainstream microcontrollers and advanced security devices. It importantly also includes a suite of training covering secure implementation to achieve compliance and organizational vulnerability disclosure. More information about IAR Systems’ security offering is available at www.iar.com/security.
IAR Systems is participating in embedded world digital, March 1-5, 2021, to showcase its latest technology.
Editor's Note: IAR Systems, IAR Embedded Workbench, Embedded Trust, C-Trust, C-SPY, C-RUN, C-STAT, IAR Visual State, IAR KickStart Kit, I-jet, I-jet Trace, I-scope, IAR Academy, IAR, and the logotype of IAR Systems are trademarks or registered trademarks owned by IAR Systems AB. All other product names are trademarks of their respective owners.
About IAR Systems
IAR Systems supplies future-proof software tools and services for embedded development, enabling companies worldwide to create the products of today and the innovations of tomorrow. Since 1983, IAR Systems’ solutions have ensured quality, reliability and efficiency in the development of over one million embedded applications. The company is headquartered in Uppsala, Sweden and has sales and support offices all over the world. Since 2018, Secure Thingz, the global domain expert in device security, embedded systems, and lifecycle management, is part of IAR Systems Group AB. IAR Systems Group AB is listed on NASDAQ OMX Stockholm, Mid Cap. Learn more at www.iar.com.
About Secure Thingz
Secure Thingz is the global domain expert in device security, embedded systems, and lifecycle management. In 2018, the company was acquired by IAR Systems Group AB, the future-proof supplier of software tools and services for embedded development. Secure Thingz is focused on delivering advanced security solutions into the emerging industrial Internet of Things, critical infrastructure, automotive and other markets. The Secure Deploy™ architecture has been developed to solve the major security issues challenging the IoT. Secure Thingz solutions ensure a cost-efficient root of trust in low-cost microcontrollers to deliver a core set of critical services through the product lifecycle, alongside secure deployment, production and update infrastructure. Secure Thingz is a founding member and Executive Board member of the Internet of Things Security Foundation (www.iotsecurityfoundation.org), the leading global organization for IoT Security.
IAR Systems/Secure Thingz Contacts
AnnaMaria Tahlén, Media Relations & Content Manager, IAR Systems
Tel: +46 18 16 78 00 Email: firstname.lastname@example.org
Tora Fridholm, CMO, IAR Systems
Tel: +46 18 16 78 00 Email: email@example.com