SafeZone Software

Highlights

• Field-proven security middleware that provides robust certificate and cryptographic support for security-sensitive applications
• Integration with trusted security hardware SafeXcel IP - Trusted Module provides most complete HW/SW security system
• Enables mobile VPN, DRM, m-commerce applications
• Ensures seamless platform portability through API compatibility

Wireless carriers, handset vendors, and mobile application developers demand solutions that allow for flexible and seamless integration of robust security into mobile applications to protect revenues and meet compliance requirements in the mobile, consumer entertainment, and enterprise markets.

SafeZone Software is an integrated security middleware layer that provides generic certificate and cryptographic support for security-sensitive applications such as digital rights management (DRM), platform integrity applications such as secure bootloader and OTA download protection, m-commerce, anti-fraud solutions as well as VPN solutions for enterprise applications and dual-mode handsets. Application-specific security algorithms such as RSA-PSS for OMA DRM or C2 for CPRM are provided in dedicated security toolkits that build on SafeZone Software’s generic algorithms.

Deployed in either software-only or hardware-supported mode, SafeZone Software provides the standard security protocols and algorithms essential for next-generation applications, while ensuring API compatibility and seamless upgradeability to future generations of processors and devices. With SafeZone Software, software developers can take full advantage of sophisticated security mechanisms—while developing robust and future-proof mobile applications that are optimized for the resource-constrained mobile environment.

Based on Field-Proven, Reliable and FIPS Certifiable Libraries
SafeZone Software builds on 20 years of cryptographic excellence. At the heart of the SafeZone Software code are SafeNet’s CGX and Certificate Toolkit libraries. Both libraries are used in hundreds of millions of widely deployed SafeNet and third party security products, including SafeNet’s remote access technology that is licensed by 35 of the 50 leading OEM vendors. SafeNet’s market leading QuickSec VPN Toolkits are licensed by the likes of Nokia, Siemens, Lucent, Ericsson and many other leading companies.

Maximum Security Through Hardware-Based Trusted Execution Environments
While SafeZone Software performs well in software-only mode or when combined with discrete cryptographic hardware accelerators, its true power is only unveiled when used in conjunction with a hardware based Trusted Execution Environment (TEE) such as SafeNet’s SafeXcel IP – Trusted Module. The Trusted Execution Environment’s security barrier, in concert with SafeZone Software’s key management and secure storage modules, ensure that sensitive materials such as keys and credentials never leave the hardware security perimeter and are therefore never exposed to the potentially unsafe host environment.

Maximum Performance Through Hardware-Based Security
When deployed in conjunction with hardware-based security engines, SafeZone Software can utilize the processor’s cryptographic accelerators to increase security performance and offload security operations from the host processor, thereby significantly improving application performance. SafeZone Software also provides key partitioning to enforce key ownership so that applications cannot access each others keys.

Flexible Digital Rights Management – Robust Content Protection with OMA DRM and CMLA
In order to protect wireless content from unauthorized access and copying, OMA DRM puts strong security requirements on handsets. However, the DRM scheme is only as strong as the protection of the keys that encrypt the DRM rights objects and content. SafeZone Software provides the security environment necessary to protect the keys and DRM rights objects that are at the root of the DRM scheme. SafeZone Software is designed to provide the security, flexibility, and interoperability required to integrate OMA DRM and CMLA compliant solutions.

SafeZone Software has been integrated into Philips LifeVibes Trust, one of the most advanced DRM client solutions in the market, to provide a robust security foundation for OMA DRM compliant digital rights management and enable rapid adoption across various platforms in the market. In addition to OMA DRM, SafeZone Software supports additional DRM schemes to provide robust content protection across a wide range of applications and platforms.

Seamless Integration and Platform Portability
SafeZone Software has been designed to ensure complete API compatibility and seamless upgrades to future generations of processors, operating systems, and devices.

SafeZone Software enables carriers, device manufacturers and software vendors to deploy advanced applications that require robust software security today, while having the ability to seamlessly migrate to hardware-supported security in the future. This built-in portability provides a seamless and risk-free migration path to the most powerful security solution without the need to re-write applications or middleware code.

Fast Time to Market
SafeZone Software allows developers to quickly design and build security into a wide range of mobile applications and platforms. By encapsulating underlying device security functions, SafeZone Software provides developers with an intuitive, high-level security API. This dramatically accelerates the development of security functions required in today’s mobile applications - without the hassle of having to learn, build, and test complex chip-level security interfaces.

Integrated Security Solution
SafeZone Software allows applications to be quickly integrated into an established ecosystem of security solutions, ensuring quick adoption of mobile applications in the marketplace. The world’s leading mobile technology vendors such as Texas Instruments, Samsung, ARM and AMD trust SafeNet with their cryptographic security technology needs and have commercially deployed SafeNet’s SafeZone IP in a variety of processors. Texas Instruments, for example, embedded SafeZone security engines into its OMAP1610, OMAP73x, OMAP171x, OMAP24x0 and other mobile application processors.

SafeNet is committed to providing security solutions that are tightly integrated with products from the leading vendors in the industry. Integrating embedded security solutions from SafeNet—a recognized and trusted leader in the security market—gives you a significant advantage. It provides you with the most advanced security solutions available, lowers your total cost of ownership, increases the value of your product, and significantly accelerates time to market.

SafeNet is the only security vendor that provides complete OEM security systems providing integrated hardware and software solutions supplied to a broad range of commercial and government markets.

Benefits

• Complete embedded security solution
• Enables OMA DRM v2
• Secure Key Management
• Support for hardware-based security
• Maximum application performance
• Small footprint for efficient implementation
• Seamless platform portability
• Fast time to market
• Lower total cost of ownership
• Integrated with third party DRM solutions
• Support for broad range of processors and operating systems
• Minimized deployment risk
• World-class support
• Proven technology

Features

Supported cryptographic functions*

• Public Key Algorithms
  • RSA
  • DSA
  • ECC
  • Diffie-Hellman
• Key Management
• Digital Signatures
• True Random Number Generation
• Hashing
  • SHA-1
  • MD5
• Encryption/Decryption
  • AES
  • DES & 3DES
  • ARC4
*Other algorithms can be supported upon request

Operating system support

• Linux, Symbian, Windows CE
• Additional OS upon request

Enabled Security Protocols

• IPSec/IKE
• SSL/TLS
• WAP WTLS
• sRTP

Components and Developer Support

• Test applications
• Example Applications
• User Documentation
• World-class developer support
• Training