wolfSentry is a universal, dynamic, embedded IDPS (intrusion detection and prevention system). At its core, it features an embedded firewall engine (both static and fully dynamic), with optimally efficient lookups. wolfSentry is dynamically configurable, and can arbitrarily associate user-defined events with user-defined actions, contextualized by connection attributes, tracking the evolution of the network transaction profile.
wolfSentry integrates into the wolfSSL library, wolfMQTT, and wolfSSH, with optional in-tree call-ins and callbacks that give application developers turnkey IDPS across all network-facing wolfSSL products, with a viable zero-configuration option.
The wolfSentry engine is dynamically configurable programmatically through an API, or from textual inputs supplied to the engine.
Features:
- wolfSentry is designed to integrate directly with network-facing applications/libraries to block bad traffic, and it can optionally integrate with host firewall facilities, via plugins
- Support for running on bare metal, in which case the firewall functions can be directly integrated into the network stack of the application via patched-in call-ins, or callbacks installed using host environment interfaces
- Fully extensible
- Dynamically configurable logic hub
- User-defined rules link app-defined events with app-defined actions via plugins
- Plugins can be filters, decision logic, and/or orchestration logic
- Hub and plugins are mainly keyed on network attributes, and track current status
- Plugins can also track and use fully app-defined data for each network association
- Fully integrated into wolfSSL, wolfMQTT, and wolfSSH
- Zero-development IDPS across all network-facing wolfSSL products, using bundled COTS plugins
- Zero-configuration option
- Simple --enable-wolfsentry configure options in wolfSSL sibling products
- Dynamically configurable
- Programmatically through an API
- Textual human-readable configuration files, loadable/reloadable at any time
- Bundled plugins for remote logging, commands, and status queries, secured with TLS
- MQTT
- Syslog
- SMTP
- Embedded web server with RESTful API
- Supports systems to fulfill UN R155 requirements
- Detects and recovers from a denial of service attacks
- Security controls are applied to systems that have remote access
- Access control techniques and designs are applied to protect system data/code
- Prevents and detects unauthorized access
- Measures to detect malicious internal messages or activity are considered
- LwIP full firewall integration support
対応製品 | STM32,STSAFE-A110 |
Software Function | Secure |
ミドルウェア | Cryptography |
提供タイプ | ソース |
ライセンス・タイプ | Commercial with free trial version |
サイト |