FreeRTOS demonstrates meeting a set of security criteria for IoT platforms

FreeRTOS is now certified for the Security Evaluation Standard for IoT Platforms (SESIP) Assurance Level 2. With this certification, FreeRTOS libraries have demonstrated meeting a specific set of security criteria for IoT platforms. In addition, embedded developers writing FreeRTOS-based applications can achieve SESIP certification for their own applications more quickly because the underlying libraries have been tested for compliance. According to the technical standards organization GlobalPlatform, SESIP provides a common and optimized approach for evaluating the security of connected products that meets the specific compliance, security, privacy and scalability challenges of the evolving IoT ecosystem. SESIP is based on the industry-established Common Criteria framework.

The certification assessment was performed by Riscure, an independent security lab licensed by TrustCB, a commercial Certification Body conforming to international and industry standards. FreeRTOS 202012.00 LTS libraries including the FreeRTOS kernel and related IoT libraries were evaluated as part of the certification process. The certification tested for verification of platform identity and instance identity, firmware updates over-the-air (OTA), secure communications, software isolation capabilities, and cryptographic operations. You can learn more in the blog: Why SESIP Certification for FreeRTOS Matters.

FreeRTOS is an an MIT licensed open source, real-time operating system for microcontrollers that makes small, low-power edge devices easy to program, deploy, secure, connect, and manage. You can get started by downloading source code from FreeRTOS.org, GitHub, or the FreeRTOS console, and find more information on FreeRTOS libraries and demos on FreeRTOS.org.