Wind River
Security Services 

In a connected world, security is a nonnegotiable characteristic of every intelligent system, protecting hardware, software, data, and processes from attack.

 

The approaches to security are varied and complex — and dynamic, due to the ever-changing threat landscape and increasing regulatory requirements. Wind River® Professional Services has a deep understanding of the threat landscape that your device will encounter.

By 2025, 42 billion connected IoT devices will be active in our world (IDC, July 2020). The ability to safeguard intelligent edge devices and systems, along with the critical data they generate, is paramount. At the same time, changing threats and the unique requirements of embedded projects pose a daunting challenge for software engineering teams.

Why are we good at security?
Armed with almost 40 years of real-world experience in mission-critical systems, our experts have a deep understanding of the security needs of devices across industries. We take a systematic approach to securing your device throughout the entire lifecycle of your project.

What makes us unique in security services?
Our global team of embedded security experts can help you build a comprehensive cybersecurity plan for your product, with services including:

Wind River Security Framework: We base your security framework on the industry-standard CIA triad of confidentiality, integrity, and availability, the fundamental principles in protecting a device from an attack.

Security Assessment: We provide a detailed written assessment of how to secure your embedded system, including your design, hardware options, operating system, and the software components you plan to build or buy.

Security Response Team: Our best-in-class incident response process protects devices before and after deployment. Working with other leading security experts at Mitre and elsewhere, our team actively monitors the Common Vulnerabilities and Exposures (CVE) database, proactively notifies you of potential vulnerabilities impacting Wind River products, and offers resolution measures before the community is aware of the vulnerability.

FIPS 140-3 Certification: We will port the latest version of the OpenSSL FIPS Module to your platform and take your configuration through a Level 1 or Level 2 FIPS 140-2 certification, working closely with OpenSSL NVLAP to ensure success.

Security Training: To help your own team handle security, our Embedded Security Essentials training course covers a wide range of software security topics.

Think we might be a fit?

Take this brief survey to determine whether your business would benefit from our education services.

 

Services We Offer

Design Services Managed Services Safety & Certification Security Lifecycle Management Education Services