Rti Datasheet Connext Dds Secure

Download as pdf or txt
Download as pdf or txt
You are on page 1of 2

DATASHEET

RTI Connext DDS Secure


FIRST CONNECTIVITY SOFTWARE DESIGNED FOR ARCHITECTING
AND SECURING SYSTEMS OF SYSTEMS

RTI Connext® DDS Secure is a software


connectivity framework that enables
HIGHLIGHTS system architects to build secure and
Fine-grained security to defend against unauthorized scalable systems of systems. Built on
access, tampering and replay the Connext databus and fully compliant
with the Object Management Group®
Pluggable design to protect your application with
minimal-to-no changes
(OMG®) DDS Security™ specification,
Connext Secure supports fine-grained
Provides authentication, authorization, confidentiality security, providing the flexibility to
and integrity
implement required capabilities such
Operates without centralized servers for high
as authentication, encryption and
performance, scalability and availability access control without compromising
performance.
NEW! Connects securely across WAN and LAN
environments with Real-Time WAN Transport

SECURING AUTONOMOUS SYSTEMS • Optimized security and performance by authenticating


and encrypting only sensitive data.
Securing autonomous systems – such as those in medical,
energy, transportation and defense industries – requires • Automatic discovery of each participant for trusted
careful architecting of the entire distributed system. These peer-to-peer communications.
systems often include diverse technology components from
Connext Secure is built upon and supported by RTI’s un-
different project teams or third-party suppliers. As a result,
paralleled expertise in architecting, developing and deploying
these systems tend to offer different levels of trust and
intelligent distributed systems.
performance. One option is for OEMs to write and maintain
the integration code to connect these complex devices.
CAPABILITIES DELIVERED WITH BUILT-IN
However, complex systems are constrained to the most
SECURITY PLUGINS
stringent low-latency, highly reliable and scalable data
communication requirements. Therefore, finding the right
Fine-grained security
balance between securing the systems and preserving the
Choose between non-secured, signed and encrypted topics
most reliable performance across these heterogeneous
to meet your security requirements and use cases, while
environments is vital.
optimizing performance. Not only can select topics be
protected, but they can be protected at varying levels of
Connext Secure takes a data-centric approach to securing
granularity. Fine-grained security allows architects to:
data including:
• Sign/encrypt the entire RTPS message
• Interoperability between DDS security applications
based on the system’s data model. • Sign/encrypt select RTPS sub messages

• Sign/encrypt the serialized user data

rti.com
DATASHEET • RTI CONNEXT DDS SECURE

• Control over ability to join DDS Domains and Partitions


RTPS Secure SubMessage RTPS Secure SubMessage and Reading or Writing Topics

RTPS SubMessage
RTPS Header

RTPS SubMessage RTPS SubMessage


• Control on individual objects and Quality of Service
Secured Data Secured Data (QoS) via plugins
SerializedData SerializedData
Cryptography
• AES-GCM in GMAC mode with 128-, 192- and 256-bit
keys for data integrity
RTPS Message
• AES-GCM with 128-, 192- and 256-bit keys for data
Pluggable and customizable confidentiality and integrity
The Connext platform enables fast, flexible changes.
Minimal-to-no changes are required for existing DDS • AES-GCM in GMAC mode with 256-bit key for data
applications when using built-in plugins. The plugins only source authentication
need to be configured via XML to enable security. An optional
software development kit is available for custom plugins, Logging
crypto modules, support for custom hardware such as crypto • Designed to support auditing of all DDS security-
accelerators or TPMs or logging integration. relevant events, increasing system visibility

• Log security events to a file or propagate securely


APPLICATION over DDS

Transport agnostic
Authentication
Since security is implemented above the transport layer,
Access Control CONNEXT any Connext transport can be used securely, including UDP,
LIBRARY TCP, shared memory and the new Real-Time WAN Transport.
Cryptography
Support for UDP multicast (both reliable and best effort)
Logging enables efficient data distribution to multiple authenticated
subscribers to the same data.
TRANSPORT
(e.g. UDP, TCP, RWT,
multicast, shared memory)
NEW NETWORK SUPPORT
Built-in plugins accelerate DDS application development
Connext Secure now offers enhanced support for geo-
Authentication graphically dispersed systems, including those that span
• X.509 Public Key Infrastructure (PKI) with Certificate diverse networks:
Authorities (CA), and support for certificate chaining
and certificate revocation lists Real-Time WAN Transport
With this feature, users can communicate reliably across
• RSA or Elliptic Curve DSA (ECDSA) for authentication Wide Area Networks (WANs), including geographically
distributed systems; traverse NATs; and maintain consistent
• Diffie Hellman (DH) or ECDH in ephemeral mode for communication as endpoints move or IP addresses change.
perfect forward secrecy for shared secret agreements

Access Control Cloud Discovery Service


• Configured by domain using a shared Governance file When used with Real-Time WAN Transport, this add-on
signed by shared CA product enables users to create performant, scalable systems
that span diverse networks. It’s also available as an add-on to
Connext® DDS Professional.
ABOUT RTI

Real-Time Innovations (RTI) is the largest software framework company for autonomous systems. RTI Connext® is the world’s
leading architecture for developing intelligent distributed systems. Uniquely, Connext shares data directly, connecting AI
algorithms to real-time networks of devices to build autonomous systems.

RTI is the best in the world at ensuring our customers’ success in deploying production systems. With over 1,700 designs,
RTI software runs over 250 autonomous vehicle programs, controls the largest power plants in North America, coordinates
combat management on U.S. Navy ships, drives a new generation of medical robotics, enables flying cars, and provides
24/7 intelligence for hospital and emergency medicine. RTI runs a smarter world.

RTI is the leading vendor of products compliant with the Object Management Group® (OMG®) Data Distribution Service™ (DDS)
standard. RTI is privately held and headquartered in Sunnyvale, California with regional offices in Colorado, Spain and Singapore.

Download a free 30-day trial of the latest, fully-functional Connext software today: https://www.rti.com/downloads.
RTI, Real-Time Innovations and the phrase “Your systems. Working as one,” are registered trademarks or trademarks of Real-Time Innovations, Inc. All
other trademarks used in this document are the property of their respective owners. ©2021 RTI. All rights reserved. 10018 V10 0521 2 • rti.com

CORPORATE HEADQUARTERS
rti.com company/rti
232 E. Java Drive, Sunnyvale, CA 94089
Telephone: +1 (408) 990-7400 rti_software connextpodcast
Fax: +1 (408) 990-7402
rtisoftware rti_software
[email protected]

You might also like