prpl @ Microchip MASTERs 2016

U.S. MASTERs 2016prpl Foundation, along with our members Imagination Technologies and Seltech, were excited to participate in Microchip MASTERs conference in Phoenix last week.

MASTERs is known as the “premier technical training conference for embedded control engineers”. We were thrilled to showcase our latest developments for this group: the porting of the prplSecurity™ framework to Microchip’s PIC32MZ controllers sporting the MIPS M5150 core.

The prplSecurity™ demo shows three separate bare-metal applications, each running in its own virtual machine. The prplHypervisor™ enforces hardware-level separation of CPU and memory and secure access to I/O peripherals.

The MIPS M5150 version of the prplHypervisor™ implements MIPS VZ extensions to provide a lightweight isolation layer for Microchip Technology’s PIC32MZ microcontrollers. The prplSecureInterVM™ API provides secure communications across the three security domains. The Intrinsic-ID implementation of the prplPUF™ API authenticates incoming requests to secure Internet connections.

A virtualized implementation of Altran’s picoTCP provides a complete TCP/IP stack optimized for resource constraint IoT devices.

CqFv0vNW8AAjUAO.jpg:large

The demo received excellent feedback from the Microchip community. Many individuals mentioned their interest in bringing multi-domain security to the silicon level; the prospect of freedom from binary security – a.k.a. secure / non secure world – obviously resonated with the group!

We welcome Microchip interest in prpl and hope they will join the big prpl family soon: their curiosity about experimenting new technologies will make them a terific addition to our open source efforts in the IoT space.

IoT Evolution Wrap Up

UPDATE : Application Note posted at https://prpl.works/application-note-july-2016/

Last week, the prpl Foundation took to the stage at IoT Evolution Expo in Las Vegas to present a workshop on the prpl Security Framework, during which we revealed a demonstration of the framework in practice. It was a series of firsts, as the use of the prplHypervisor™ was put into practice as well as prplPUF™ and prplSecureInterVM™.

Cesare Garlati, chief security strategist at prpl Foundation demonstrated the prplHypervisor™ on Thursday July 14th at 9AM, as part of a prplSecurity™ workshop on the IoT Developer track. The demo was a joint development effort of three key prpl members: Intrinsic-ID, Altran and the Pontifical Catholic University of Rio Grande do Sul (PUCRS).

Garlati showed three virtual machines connecting to the Internet and securely controlling a robotic arm. A MIPS M5150 CPU powers the PIC32 microcontroller to run the prplDSC_5023 hypervisor and thus securely isolates each application in its own virtual machine (VM). VM #1 receives commands from the Internet via Altran’s picoTCP listener, VM #2 authenticates the request via Intrinsic-ID’s implementation of the prplPUF™ API, and then relies authenticated valid command to VM #3, which is responsible for the real time control of the robotic arm via USB. The three VMs are completely separated and communicate within the system via the prplSecureInterVM™ communications APIs.

Continue reading

prpl Foundation Adds Carrier Interest Group to Shape the Future of Smart Home Technology

New Group Borne out of Former Home Gateway Initiative to Meet Needs of Major International Carriers for the Digital Home and IoT

SANTA CLARA, CA — The prpl Foundation, the open-source, community-driven, collaborative, non-profit foundation with a focus on enabling next-generation datacenter-to-device portable software and virtualized architectures, has announced the formation of its first Carrier Interest Group (CIG). The charter of the CIG is to ensure that the technical needs of major international carriers are represented and communicated to the wider prpl community and contribute to prpl’s coordinated response to new regulations put forth by government agencies, such as the FCC in the US, which potentially limit the use of open source software.

The new group will also help define possible new enhancements for OpenWrt software and hardware with the aim to produce carrier-grade, commercial standards for improving the security of home gateway, home network and smart home devices.

Continue reading

prpl Foundation Unveils the First Open Source Hypervisor for the Internet of Things

Debut of the prplHypervisor™ to occur at the IoT Evolution Expo in Las Vegas

SANTA CLARA, CA–The prpl Foundation today announced the upcoming debut of the prplHypervisor™ at the IoT Evolution Expo in Las Vegas. The prplHypervisor™ is an industry-first light-weight open source hypervisor specifically designed to provide security through separation for the billions of embedded connected devices that power the Internet of Things.

A principle set out in the Security Guidance for Embedded Computing published by prpl in early 2016, security through separation is key to fixing the fatal security flaws plaguing the IoT. “From theft of personal information and financial data to remote takeover of devices which could bring harm to the public, it’s in the interest of every stakeholder in the connected device supply chain to ensure that these devices are designed first for security,” said Art Swift, president, prpl Foundation. Continue reading

IoT Innovation in the Spotlight as prpl Foundation Continues to Grow

prpl Foundation adds four new members: ADB, Baikal, SoftAtHome, and Intrinsic-ID

7 Thursday July 2016 – SANTA CLARA, CA

prpl Foundation, the open-source, community-driven, collaborative, non-profit foundation supporting the next gen connected devices industry, has today announced the addition of four new members that will help steer the future of the Internet of Things (IoT). The companies joining consist of ADB, the Swiss connected solutions specialist; Russian semiconductor firm Baikal Electronics; SoftAtHome, the French embedded software for the digital home company; and Intrinsic-ID, a specialist in Physical Unclonable Functions (PUF) for securing connected devices, who will also be helping with the advancement of a prpl PUF project.

“This is a really exciting time for the prpl Foundation,” said Art Swift, president of the prpl Foundation. “With the addition of these innovative companies from around the world that represent some of the best in their fields, we can continue our cutting edge projects and work that will ultimately make IoT more open, interoperable and secure – three facets that are currently missing from many of today’s connected devices.”

One such new and exciting project is working with Intrinsic-ID and other PUF technology specialists to create an open source initiative called prpl PUF. The aim for the initiative is to establish strong a hardware-based root of trust across potentially billions of devices. Using PUF technology, IoT applications can greatly simplify the provisioning and management of cryptographic keys to authenticate, and protect data across the network.

Continue reading

Open source and virtualization provide a powerful combination for wireless routers

By , Imagination Technologies

Back in March 2015, the Federal Communications Commission (FCC) – a government agency tasked with regulating interstate communications in the United States – issued a security document that included a series of provisions related to the use of wireless devices that operate in the U-NII radio bands.

In essence, the FCC wanted the manufacturers of routers and other networking equipment to provide tightly defined access paths to all wireless transmission devices. Unfortunately, the FCC proposal is likely to result in OEMs locking down the whole firmware of their routers and thus preventing consumers from installing the open source operating system or software of their choice (e.g. OpenWrt or DD-WRT.)

Continue reading