Enterprise Applications Security, Embedded SSH, Embedded SSL, Embedded SSH, Embedded IPSEC and OpenSSH/OpenSSL Alternatives, FIPS certified, FIPS certification, FIPS 140-2 - Device Security Framework
Mocana Corporation - Securing Devices, Applications & the Enterprise.
NEWSLETTER   
Newsletter Sign Up contactus
  • About


Secure Shell (SSH) encrypts communications between hosts over an insecure network, and it’s great for logging into and executing commands remotely. It’s also useful for port forwarding (sometimes called SSH Tunneling) which allows you to securely tunnel arbitrary TCP connections and for secure file transfers using the SFTP protocol.

Unfortunately, most SSH toolkits are designed for networked computers, not devices. That means that they can be somewhat unwieldy in memory-constrained device environments... and the performance of typical commercial or open-source SSH offerings can be pretty disappointing, as well.

NanoSSH™ is the answer.

NanoSSH is Mocana’s super-fast, super- small SSH client/server solution with support for X509.v3 Certificate based authentication and comes with RADIUS client, specifically designed to speed product development while providing best-in-class device security services for resource-constrained environments. It’s royalty-free and surprisingly affordable: the NanoSSH total cost of ownership is almost always less than that of open source. NanoSSH provides a holistic approach for securing networked devices and services, and is ideally suited for resource-constrained devices as well as high-traffic enterprise and federal environments where performance is critical. NanoSSH is open-standards-based, extensible, extremely small footprint, platform-agnostic and features an optional government-certified FIPS 140-2 level-1-validated crypto core. It even supports NSA Suite B crypto algorithms so your product can securely link civilian and classified government networks with a common cryptographic scheme.
Mocana NanoSSH
[enlarge]
Untitled Document
 
Supported processor platforms:
Processor Platforms

Awards and Certifications
Awards and Certifications
Nominations
2010 Spiffy Awards Nominee

Sales | Support | Library Info | Contact

Privacy Policy | FAQs | Site Map | Referral Program
Copyright © 2010 Mocana Corporation
  • Features


NanoSSH™ Features

Mocana’s NanoSSH™ secures communications between devices, or between a devices and a back-end SSH management console (or SFTP Server). The suite is a very small, very fast open standards-based solution that enables secure communications to any device on a network. The suite also includes a built-in client for RADIUS, aka Remote Authentication Dial In User Service. (RADIUS is often used in embedded devices in conjunction with SSH, because it eliminates the need to store sensitive user information (like passwords) locally on the device itself.) RADIUS is a “triple-A” protocol used for network access and mobility applications. The RADIUS client inside NanoSSH enables SSH to authenticate users with a central server, and log their access to systems or services.

Very High Performance
NanoSSH, like all of Mocana’s device security solutions, is designed with an asynchronous core to fully leverage hardware acceleration. NanoSSH throughput typically outperforms open source packages by a factor of 2x or better, depending on the platform.

Ultra-Small Size
With its highly modular design, NanoSSH doesn’t need a lot of memory. It’s optimized for stack and heap memory usage and performs well in resource-constrained environments. Just by changing the compile time flags, you can build a NanoSSH client that fits in as little as 70KB memory. That’s less than one-fifth the size of the typical open source client.

Government-Certified FIPS 140-2 Level 1 Cryptographic Engine
The cryptographic engine at the heart of NanoSSH has undergone rigorous testing and government certification to assure that Mocana’s cryptography is appropriate for the most sensitive applications.


SSH IETF RFC Implementations Included: RADIUS Client and IETF RFC Implementations Included: Rich Algorithmic Support Symmetric Cryptography Message Digest Authentication Untitled Document
 
Supported processor platforms:
Processor Platforms

Awards and Certifications
Awards and Certifications
Nominations
2010 Spiffy Awards Nominee

Sales | Support | Library Info | Contact

Privacy Policy | FAQs | Site Map | Referral Program
Copyright © 2010 Mocana Corporation
  • Benefits


NanoSSH™ Benefits

Works Where Others Won’t
NanoSSH fits into tiny memory footprints where other implementations simply can’t... and open-source packages can’t match Mocana’s throughput performance.

FIPS Certified with NSA Suite B Support
All government agencies and most contractors require FIPS-certification of cryptographic engines—a difficult certification to achieve. NanoSSH’s core cryptographic engine is available to you in source, or as a government-certified FIPS 140-2 Level 1 validated binary. Both source and binary versions include full support for NSA’s Suite B algorithms, providing secure communications between high-assurance (classified) and basic-assurance systems.

Complete Solution
There are a lot of other SSH packages out there. But almost all of them are incomplete—missing critical standards, algorithms or code that you’ll need to finish your SSH implementation. Only NanoSSH offers everything you need together in one package, to get the job done right—and fast. Guaranteed.

GPL-Free Code
NanoSSH is usually less expensive than “free” open source code, especially when engineering, testing and support costs are factored in. Since we guarantee that NanoSSH contains absolutely no GPL code, you can be confident your intellectual property won’t accidentally become public domain because of “GPL contamination”—something open source projects can’t do.

Platform Independent
NanoSSH, like all of Mocana’s device security toolkits, is CPU-architecture and platform independent. NanoSSH is immediately available for over 30 operating systems and 70 processors. Platforms supported out-of-the-box include Linux, Monta Vista Linux, VxWorks, OSE, Nucleus, Solaris, ThreadX, Windows, MacOS X, (ARC) MQX, pSOS, and Cygwin. NanoSSH is endian-neutral, and can be used without an RTOS if required.

No Crypto Expertise Required
NanoSSH features an extremely powerful, but simple and easy-to-use API. You don’t need to be a crypto expert, because NanoSSH hides all of the complexity of the cryptography. You can focus on your development project, and let NanoSSH worry about the security. Plus Mocana’s developer support team is always available to answer your questions about our products,or embedded development in general.

Dramatically Speeds Your Development Cycle
NanoSSH is a ready-made, pre-optimized and exhaustively tested SSH solution that frees your in-house development resources to focus on what’s really important: the functionality of your project. NanoSSH allows you to develop proprietary systems while giving you the freedom to substitute in the commercially available components you choose.
Untitled Document
 
Supported processor platforms:
Processor Platforms

Awards and Certifications
Awards and Certifications
Nominations
2010 Spiffy Awards Nominee

Sales | Support | Library Info | Contact

Privacy Policy | FAQs | Site Map | Referral Program
Copyright © 2010 Mocana Corporation
  • Editions


Which NanoSSH™ Edition is Right for You?



SSH Client Yes no Yes
SSH server no Yes Yes
Suite B support Yes Yes Yes
FIPS binaries available Yes Yes Yes
X.509 v3 Certificate Management Client (SCEP) no no Yes
On-Line Certificate Status Protocol checking (OCSP) no no Yes
RADIUS support no no Yes
  • Architecture


NanoSSH™ Architecture

NanoSSH is part of the Mocana Device Security Framework™, designed to secure all aspects of any connected device. All components of the Device Security Framework are built on a common architecture and share a common API and code base. As a device designer, you can choose only the components you need for your particular project... or standardize company-wide on the DSF, future-proofing your investment with this broad, cross platform, flexible and extensible security architecture.

NanoSSH Architecture
[enlarge]
Untitled Document
 
Supported processor platforms:
Processor Platforms

Awards and Certifications
Awards and Certifications
Nominations
2010 Spiffy Awards Nominee

Sales | Support | Library Info | Contact

Privacy Policy | FAQs | Site Map | Referral Program
Copyright © 2010 Mocana Corporation
Mocana products are built for developers, OEMs and ISVs. DSF for Android, NanoSSH and other products are delivered as ANSI-C source code and are not finished security applications usable by IT personnel or end users.
Please fill out the form below. All fields are required.
First Name
Last Name
Company
Job Title
Phone
State
Email

Your Privacy

Country
Sorry, we can only send trial software to valid business email addresses..
When is your project starting?


How did you find us?



I'd like to receive email updates and news from Mocana*

I have read the Mocana Terms and Conditions
Malware Free!
COST COMPARISON:
Mocana vs Open Source
Cost Comparision: Build vs Buy Button
Features & Benefits

Small footprint, high performance.
FIPS 140-2 Level 1 validated (optional).
Complete solution includes certificate and RADIUS support that other packages lack.
Dramatically speeds integration & testing of SSH functionality.
NSA “Suite B” cryptography included.
Guaranteed “GPL-Free” code protects your intellectual property.
Zero-threaded, asynchronous architecture.
RTOS neutral and transport agnostic.
Expert development support from Mocana engineers.