| |
Solidcore S3 Control Embedded – Real-Time Change Control for Embedded Systems
"It is critical that we sustain availability and compliance of our multifunction printers across convenience store locations. Solidcore has become an instrumental partner in helping us lock-down our office automation printers and multifunction peripherals by preventing unauthorized access, unwanted software changes, and unapproved software installations on our systems."
Hiromu Yoshimoto,
Manager
Sharp Corporation |
Every industry from Retail to Healthcare and Finance is being revolutionized by technology, with a goal of creating a more rewarding and interactive customer experience. In the embedded systems world, which includes devices such as point-of-sale (POS) systems, self-checkout terminals, point-of-care medical modalities, ATM machines, thin-client computers and gaming systems, the market is being driven by the need for reduced time-to-market and the use of advances in hardware and software technologies to create a richer customer experience, while also keeping the total costs of ownership of the embedded system low.
Evolving Embedded System Landscape
While embedded systems of the past used specialized hardware running proprietary software, there has been a shift in recent times towards standardizations such as Unified Point of Sale (UPOS) in the retail industry. Standardization has enabled devices to become increasingly interconnected and has allowed for the use of off-the-shelf software on commoditized hardware running commercial or open operating systems such as Windows XP Embedded, WEPOS, and Linux. These standards and general purpose operating systems have provided greater flexibility for software selection, faster time to market, and mid-cycle adoption of new technologies. This flexibility has come at the expense of unwanted software changes, security breaches and compliance challenges for these difficult-to-service embedded systems. It has become increasingly difficult to answer the question: Will your device operate in the field as shipped?
"Solidcore for APTRA's innovative software and IT protection is an important component of NCR Secure, our holistic approach to self-service channel protection. At NCR, we're serious about continuing to help the industry anticipate, plan and implement best-in-class strategies that help maintain consumer trust in the ATM channel."
Bob Tramontano,
VP of Self-Service
NCR - Financial Solutions Division |
|
Today's Embedded System Challenges
Similar to a PC in a networked environment, today's embedded systems are susceptible to security risks, constant patching and the use of performance-draining anti-virus software applications. Embedded systems have also become vulnerable to unauthorized and inappropriate changes as they flow through a typical multi-party distribution channel, which often results in field breakage. These factors can lead to non-compliant devices as they operate in the field. And until recently, device manufacturers have not had control over what software is installed and by whom after the device leaves the manufacturing process, leaving no way to ensure the device will continue to work in the field as shipped.
Solidcore is the New Standard for Embedded System
Solidcore S3 Control Embedded™ software is installed as a foundation of the world's leading embedded systems, including those from Sharp, NEC, NCR, Neoware, Wyse Technologies, and many others. Solidcore controls what software can change, how, when, by whom. It also can dictate what software runs based on authorized change control policies and procedures. Solidcore's change control software is a low footprint, low overhead piece of software that runs transparently on an embedded system. It generally is installed and setup quickly with low initial and ongoing operational overhead, and is designed to lock-down or harden a device's gold base image that is certified by the device manufacturer. Change control allows device builders and manufacturers to dictate the degree of flexibility given to the distribution channel, which translates into greater control over what is installed on an embedded system once in production.
Why Embedded Manufacturers Choose Solidcore
Solidcore change control technology for embedded systems offers the capability to enforce what is installed, uninstalled, upgraded, or modified to the base software image of a networked device in production in two distinctworkflows. First, the software provides control as a device flows through its multi-stage manufacturing lifecycle and asvarious channel vendors attempt to install their ownsoftware. Second, it controls the state of a device once in production to ensure operational maintenanceand support is conducted in accordance with the device manufacturer's policies.
Say "Goodbye" to Anti-Virus
From a security perspective, Solidcore's change control also helps control what can run, providing protection against existing and any unknown zero-day polymorphic threats. By acting as a "concrete wrapper" around the gold base image of an embedded system, the change control software can ensure a device in production is secure and cannot be compromised. And because any changes attempted by malicious code or unauthorized users are prevented, the need for anti-virus and other security software packages is eliminated. This lock-down mode helps eliminate emergency patching, reduces the number and frequency of patching cycles, and enables more time for testing before patches are deployed to in-production systems.
"Embedding Solidcore into our POS systems gives us complete control and certainty over what changes on each device. The added control enables us to drastically reduce our support costs by preventing all out-of-policy changes and eliminating emergency patching procedures."
Hiroshi Komura,
General Manager
i-Appliance Division
NEC Infrontia |
Patch Embedded systems on Your Schedule
The runtime control element of change control software can also help reduce the cost of operations by reducing both planned patching and unplanned recovery downtime, thereby increasing device availability. This often becomes an ideal feature for difficult-to-service, remote and lower-margin devices running vulnerable commercial operating systems and applications. The capability can lower support costs by reducing the number of touch-points needed.
Solidcore Embedded News
| |
|
|
 |
|
Locking Down the Multifunction Printer
Dark Reading, January 14, 2008 |
| |
|
|
 |
| |
|
|
 |
|
Sharp adopts technology of Solidcore Systems(US) for reinforcement of MFP security
Nikkei Business, December 5, 2007
(Japanese version, registration required) |
| |
|
|
|
| |
|
|
 |
|
PCI Compliance Challenges: Keeping Point-Of-Sale Equipment Secure
Processor, November 2, 2007 |
| |
|
|
|
| |
|
|
 |
|
Change control: A new framework for embedded systems
Embedded Computing Design, August 2007 |
| |
|
|
|
| |
|
|
 |
|
Solidcore Partners with Neoware, Inks Deal with Opsware
Windows IT Pro, August 6, 2007 |
| |
|
|
|
| |
|
|
 |
|
Thin Clients Gain Change-Control Software
Windows for Devices, August 6, 2007 |
| |
|
|
|
| |
|
|
 |
|
Solidcore Systems Forms Embedded Change Control Advisory Council
EDA Geek, June 11, 2007 |
| |
|
|
|
| |
|
|
 |
|
Tip of the Week: Change control — ensure uptime of embedded devices and slash security costs
Network Systems DesignLine, April 23, 2007 |
| |
|
|
|
| |
|
|
| Press Release |
|
Solidcore Awarded Gold partner Status in Microsoft Windows Embedded Partner Program
Press Release, Apr. 2, 2007 |
| |
|
|
|
| |
|
|
| |
|
|
|
|
