Overview

Embedded devices, like edge IoT devices, cars, medical devices, and industrial infrastructure facilities, are increasingly becoming targets for security breaches. In response to the growing cyber security threats, MontaVista introduces MVSecure - an innovative service solution addressing security challenges in Linux embedded systems.

For over two decades, MontaVista has been a stalwart in providing long-term support and maintenance for Linux platforms, delivering CVE and bug fixes through our high-end QA testing infrastructure. Our deep expertise in embedded security and Linux is seamlessly integrated into MVSecure to offer a proactive approach to hardening embedded system security.

MVSecure is at the core of MontaVista’s “security-first” strategy across our Linux product line. This strategic focus responds to the growing cybersecurity demands in industrial IoT, robotics, medical, and smart infrastructure applications.

SECURITY CONSULTING AND CERTIFICATION

MVSecure provides a comprehensive suite of security consulting services tailored to meet the unique needs of your projects, from holistic assessments to system optimization, configuration, and implementation. MVSecure enables the evaluation of system security controls and facilitates the implementation of necessary enhancements to improve system security.

Our expertise spans across the implementation of production line security processes, integration of SELinux, ARM TrustZone, and TPM setup. Moreover, MVSecure addresses specific configuration standards, such as Security Technical Implementation Guide (STIG), IoT Security Foundation Framework (IOTSF), and other domain-specific or internal corporate security directives. MVSecure allows system developers to incorporate critical security features like secure boot, SELinux, and Linux integrity management.

MVSecure is evolving to provide streamlined consulting solutions for embedded system developers seeking compliance with the latest system security certifications, to name a few:

  • Common Criteria EAL-levels
  • ISO SIL-levels
  • The EU Cyber Resilience Act
  • The US Executive Order on Cybersecurity
  • The Federal Information Processing Standards (FIPS)

MVSecure also addresses market-specific certifications and regulatory requirements, like the FDA and the CIS Benchmarks.

MVSECURE STANDARD PROCESS

The following diagram presents the MVSecure service process:

MVSecure Overview

MVSecure standard process

MVSecure services are often deployed together with other MontaVista products, such as Carrier Grade eXpress (CGX) or MVShield, but can be provided as a stand-alone service.

If you would like to discuss your specific case, please get in touch today by sending an email to sales@mvista.com or leaving a contact request.