MontaVista Carrier Grade Edition 7

MontaVista CGE 7 delivers reliable, secure, and serviceable Linux to interconnected embedded devices and high performance net-works. Read more...

MontaVista Carrier Grade Express

MontaVista® Linux® Carrier Grade eXpress (CGX), delivers Carrier Grade Linux reliability, security, and serviceability to embedded Internet
of Things (IoT) devices along with high configurability and flexibility. Read more...

MontaVista DevRocket

Turn you project start into a project launch with DevRocket and MontaVista's completely pre-integrated tool suite.  Don't burn through months hacking together a development environment, when there is one available to get your team productive on day one. Read more...

Securing embedded designs with “CIA”

Smart, inter-connected devices are chaining worldwide networks into configurable services. However, this new avenue is prone to security and trust challenges, leaving the chain as good as its weakest link.

To make an embedded product safe from malicious attacks the hardware and software present in the device must work together to enable robust security countermeasures.

This solution brief tries to
  • Propose Challenges and Approach for delivering proactive security to withstand known and zero-day attacks.
  • Define Architecture, Security, and Device Maintenance for an ARM 64 based secure gateway reference design (Cybersecurity @edge) using Cavium™ Octeon Tx (81xx) SoC and MontaVista’s Carrier Grade eXpress (CGX) Linux.

MontaVista Carrier Grade eXpress provides necessary software tools and supports to help custom designs, by:
  • Confidentiality: Enabling “Root of Trust”, with “Secure Boot” & “Secure Update” using Hardware (TrustZone TEE, TPM) for encryption key management. Network Security features (SSH, IPSEC, Firewalls & DPI including platform-specific Hardware Off-loads) and/or “Block Level” encryption using dm_crypt rootFS.
  • Integrity: Integrity here means not just unchanged, but "unchangeable", or "immutable" and it requires a system-wide “Root of Trust” to ensure this. Linux Kernel security subsystem provides for an Integrity Measurement Architecture (IMA), which focuses on the validation of file integrity before these files are loaded (and perhaps executed). Alongside IMA is the Extended Verification Module (EVM) subsystem, which provides protection against tampering the hashes themselves
  • Access-Control: Linux Kernel Security (SELinux vs AppArmor vs Grsecurity) provide a mechanism for supporting access control security policies, including Mandatory Access Control (MAC). In addition, MontaVista CGX incorporates continuous Vulnerability (CVEs) tracking and updating to ensure a hardened Linux distribution that is regularly maintained.
Read more...

User-Space Network I/O : Taking Data Path on Hyper-drive

Next generation networks are characterized by a much higher native flexibility and programmability for all non-radio network segments including SDN, NFV and IoT Networks. MontaVista continues to participate in the way networks are created and behave by providing necessary software, tools and support to help reduce Capex and improve Opex. This is being achieved by transitioning from Physical Network Function (PNF) (i.e. on a single purpose hardware & software platform) to a Virtual Network Function (VNF) that is deployable on a wide variety of general purpose hardware and software combination. The promises of cost reductions from virtualizing a network can only be realized if packet throughput and I/O response times can be achieved and predicted. Linear scalability in performance by the CPU core in a virtualization server environment can be unpredictable. This is because generic Operating systems are not optimized for networking in a virtual environment. However, it is possible to deliver hardware line rates in a virtualized environment through the use of certain architectures and development kits like the Data Plane Development Kit (DPDK) and Open Data Plane (ODP). MontaVista is able to provide the optimized architecture used to run a high performance, optimized product. There is an increasing trend to use such userspace access to the network I/O in host and guest, as a popular way to work-around the native performance challenges of the OS networking stack.

This solution brief gives an overview of the packet processing architecture in Linux and available optimization techniques. It includes some use cases to measure the performance of the optimized solution that better meets such I/O performance special needs. Read more...

Virtualized Network Functions (VNFs): Works on Arm™

Multicore processing and virtualization are rapidly becoming ubiquitous in software development. They are widely used in the commercial world, to reduce Capex and improve Opex. This is being achieved by transitioning from Physical Network Function (PNF) (i.e. on a single purpose hardware & software platform) to a Virtual Network Function (VNF) that are deployable on a wide variety of general purpose hardware and software combination. But as the use cases evolve i.e. say industrial control, medical etc. the need for solutions that are more lightweight & efficient has emerged. This solution brief gives an overview of some of these changes. It includes some use cases where MontaVista offers an optimized solution offering on Arm hardware that better meets such special needs. Read more...

Deliver Flexibility, Reliability & Security for the 5G Wireless Network

“Network” for “Things” : MontaVista CGX®+ 5G Application Service Intelligent devices have revolutionized the way we experience the world and have created a limitless platform for innovation. The infrastructure that enables and powers these intelligent devices, the network, is in need of its own revolution. MontaVista participates in the way next generation (5G) networks are created and deliver appli-cations that require omnipresent scalable.... Read more...

Connecting "Things" to the “Cloud” Secure IoT Gateway : Cavium Octeon TX® + MontaVista CGX®

As IoT (Internet of Things) device market grows into billions of connected devices, one of the most critical components of future Internet of Things systems may be the "IoT gateway". An IoT gateway aggregates sensor data, translates between sensor protocols, processes sensor data before sending it onward and more. Read more...

Carrier Grade Linux for Military and Aerospace Secure IoT Gateway: Cavium Octeon Tx + MontaVista CGX

MontaVista CGE 7 delivers reliable, secure, and serviceable Linux to interconnected embedded devices and high performance networks.
Read more...

Connecting "Things" to the cloud Secure IoT Gateway Prototype

As IoT device market grows into billions of connected devices, one of the most critical components of future Internet of Things systems may be the "IoT gateway". An IoT gateway aggregates sensor data, translates between sensor protocols, processes sensor data before sending it onward and more. Read more...

MontaVista Professional Services bridges the gap between general purpose technology and your specific use case and architecture

MontaVista Technology is deployed globally and in over 100 million devices in the marketplace ranging from cell phones to automobiles to medical devices. Our domain expertize spans the gamut from consumer devices (high change, fast development, short life devices) to the automotive industry (large projects involving... Read more...

Yocto Project and MontaVista: Simplify Open Source Software Development

Commercial embedded software development often has competing needs for higher flexibility with source control along with timely, cost-effective and stable releases. Using Yocto Project™, MontaVista® Linux, offers an ideal platform for developers who want to leverage the flexibility of a true open source development platform, as well as the ability to achieve rapid time to market. Read more...