Quality RTOS & Embedded Software

Articles in Code Quality and Security category

  • The FreeRTOS-Plus-TCP library is now more robust and secure
    While we work on the FreeRTOS Labs IPv6 project, we are continuing to improve the robustness, security, and modularity of the FreeRTOS-Plus-TCP library. To that end, today, we are excited to release the FreeRTOS-Plus-TCP V3.0.0 library. FreeRTOS-Plus-TCP V3.0.0 adds comprehensive unit test coverage for all lines and branches of code, and has undergone penetration testing […]
    Read more…
  • Introducing Three Featured FreeRTOS IoT Integrations for More Secure IoT Applications
    We are excited to announce three Featured FreeRTOS IoT Integrations developed in collaboration with our partners Espressif, NXP and STMicroelectronics. Each project demonstrates the use of the latest FreeRTOS and AWS Embedded C SDK Long Term Support (LTS) libraries, and the latest microcontroller architecture capabilities to raise the bar for the security and modularity of […]
    Read more…
  • Secure OTA Updates for Cortex-M Devices with FreeRTOS
    IoT devices are getting rapid adoption in every market segment and becoming a major target for cyberattacks. A significant proportion of attacks on IoT devices happens due to a lack of software updates once commissioned in the field or updates done insecurely. Cyber attackers often target vulnerabilities in outdated software components to take control of […]
    Read more…
  • Why SESIP™ Certification for FreeRTOS Matters
    FreeRTOS is now certified for the Security Evaluation Standard for IoT Platforms (SESIP™) Assurance Level 2. FreeRTOS is software that, in most cases, runs on embedded system processors. More than ever, developers are building FreeRTOS applications while participating in a growing community that has been working together for more than 18 years. Although the primary […]
    Read more…
  • Using Formal Methods to validate OTA Protocol
    AWS FreeRTOS is a real-time operating system designed to run on IoT devices to enable them to interact easily and reliably with AWS services. The Over the Air (OTA) update functionality makes it possible to update a device with security fixes quickly and reliably. The OTA Library, a part of the overall OTA functionality that […]
    Read more…
  • Security for Arm Cortex-M devices with FreeRTOS
    Securing microcontrollers is a challenge, hampered in part by lack of hardware enforced security domains. Creating two security domains typically requires two microprocessors each with a separate Memory Protection Unit (MPU). Arm TrustZone, introduced with the Armv8-M architecture, enables two security processing environments on a single Cortex-M processor (see Using FreeRTOS on Armv8-M Microcontrollers). Once […]
    Read more…
  • Ensuring the Memory Safety of FreeRTOS Part 2
    In Part 1, we discussed how FreeRTOS is addressing an important source of security issues --- buffer overflows --- by ensuring the memory safety of the TCP/IP, ARP, DHCP, DNS, and HTTPS header parsing in the FreeRTOS-Plus-TCP TCP/IP stack. We described how we're using an automated reasoning technique, software model checking, and how the level […]
    Read more…
  • Ensuring the Memory Safety of FreeRTOS Part 1
    FreeRTOS is a real-time operating system designed for resource-constrained devices, including devices in the Internet of Things (IoT).¬†Because these devices are resource-constrained, they do not provide all the hardware mechanisms richer operating systems utilize to protect the system from external adversaries.¬†On such small devices, security depends on simpler memory protection and execution privilege level hardware, […]
    Read more…
Copyright (C) Amazon Web Services, Inc. or its affiliates. All rights reserved.