To reduce the complexity and costs of its expanding networking and security needs, the U.S. federal government has published Federal Information Processing Standard (FIPS) 140-2 Security Requirements for Cryptographic Modules. In this paper we describe how the QNX Neutrino RTOS and the Certicom Security Builder Government Security Edition (GSE) cryptographic library can help ease the burden of building and delivering FIPS 140-2 compliant software.
Yi Zheng is the product manager responsible for the safety product certified to IEC 61508 SIL3 and security product certified to Common Criteria EAL4+ at QNX Software Systems. She also manages the QNX Neutrino RTOS and the QNX Momentics tool suite. Prior to joining QNX, Yi worked at Entrust Technologies, Autodesk and Nortel Networks, designing a wide range of software applications. She holds a Bachelor's in Computer Science from Carleton University, a Master's in Business Administration from Queen’s University, and is a Certified Management Accountant.
Rick Pitz is responsible for security toolkit product management at Certicom. He has over 30 years' experience in the data and telecommunications industries, in both engineering and product management roles. His background includes working on various network protocols and products at Apple, Fujitsu and Wind River. For the past ten years Rick has been involved in security protocol development for a broad range of security applications, including mobile devices, enterprise software, government, defense and military/aerospace, casino gaming, network equipment, and smart energy.
07/01/11
Yi Zheng
Rick Pitz