Hide Notes 

Slide 1: DSF for Android DEVICE SECURITY FRAMEWORK ™ Mocana’s comprehensive, open standards-based security suite for developers building on the Android Mobile Platform Features & Benefits Brings security features to Android that enterprises and consumers demand Open-standards, RFC compliant Greatly speeds security development Very high performance Micro memory footprint FIPS-validated cryptographic implementations Easy to install and use Full source code Perfect for securing netbook or handset products World-class development & technical support Mocana’s Device Security Framework for Android is the latest release of our comprehensive developers security solution (aka “NanoPhone”) for Google’s revolutionary open mobile platform. Providing essential data security features will be paramount to Android’s success. To move to new Android-based netbooks and phones, enterprises and consumers are looking for six fundamental security features: • A secure browser • Virtual Private Network clients to secure data communications between the device and corporate network • FIPS validated crypto • Malware and virus protection • Scalable and secure firmware updating and secure boot capabilities • Robust certificate handling features to authenticate devices, network services, and individuals to each other Android developers must balance security functionality, application performance and battery life effectively without introducing new security holes into the platform. Mocana’s DSF for Android is the first and only open standards-based software package enabling developers to quickly and easily build the security features that enterprises and savvy consumers demand. It was designed in a modular framework allowing developers to pick and use only what they need at the time, while allowing them the flexibility to add more functionality later. Using DSF for Android, developers can quickly add much-needed firewall, VPN, and encryption features to Android handsets without compromising the performance, throughput or battery life of the platform. Using DSF for Android, developers can quickly add much-needed firewall, VPN, and encryption features to Android handsets and netbooks without compromising the performance, throughput or battery life of the platform. Device Security Framework for Android Free source code evaluation at www.mocana.com/ evaluate.html 3rd Party Application Mocana NanoDefender Protected Application 3rd Party Application Mocana NanoDefender Protected Application NanoCert Certificate Mgt Client NanoSSL SSL Client NanoSSH SSH Client NanoSec IKEv1/v2 & MOBIKE NanoDTLS DTLS XML Based Configuration and Patch Management Agent Mocana Corporation 350 Sansome Street Suite 1010 San Francisco, CA 94104 415-617-0055 Phone 866-213-1273 Toll Free info@mocana.com www.mocana.com Copyright © 2008 – 2009 Mocana Corp. NanoSec IPSec Mocana FIPS Certified Crypto Algorithms NanoUpdate NanoWireless WPA2™ Other Data Access Technologies Android Mobile Platform NanoBoot Android’s open nature and tremendous flexibility make it the perfect platform for Netbooks. WPA2 is a mark of the Wi-Fi Alliance. Mocana DSF for Android - Device Security Framework v4.2, revised March 2009. TM 1
Slide 2: The DSF for Android modular components include: Mocana FIPS Certified Crypto Libraries Standard in all configurations of the DSF for Android, your fully-stocked cache of state-ofthe-art crypto algorithms, including ultraoptimized implementations of RSA, AES, Blowfish, Diffie-Hellman, 3DES, DSA and dozens of others. NanoBoot™ Provides all the tools and firmware source code needed to perform pre-boot verification. NanoBoot uses strong cryptography to validate the BIOS, firmware, and boot loader images and can run in memory-constrained environments (depending on cryptographic configuration), requiring less than 8 KB uncompressed firmware space and less than 2 KB of RAM. NanoCert™ Leverages mature technologies such as the Public Key Cryptography Standards (PKCS), specifically PKCS #10 and PKCS #7 . Mocana internal HTTP implementation code provides the client-server transport protocol. Certificate management utility functions in the Mocana crypto library provide extremely efficient key generation and management, certificate parsing, encoding and decoding, and certificate store functions. NanoDefender™ Mocana’s patent-pending new anti-malware product, is a device-based Free source code evaluation at www.mocana.com/ evaluate.html alone and pass thru authentication modes and acts as a framework and transport mechanism for AAA (Authentication, Authorization, and Accounting) protocols. NanoSec™ (Client): Designed from the ground up for use with IP connected devices, it also includes support for IKEv2. IPsec is a standard for securing (IP) Internet Protocol communications by encrypting and/ or authenticating all packets at the network layer. The Client is standards-based and interoperates with IPsec enabled devices on the network. NanoSSH™ (Client): Designed for logging into and executing commands on a networked computer and provides secure encrypted communications between two untrusted hosts over an insecure network. The SSH Client is standard-based and interoperates with SSH Servers. NanoSSL™ (Client): Provides endpoint authentication, protecting against eavesdropping, message forgery and interference. The Client is standards-based and interoperates with any SSL Server. Both are commonly used for securing remote device management via a web browser. NanoWireless™ Mocana delivers a standards-based, full featured, IEEEcompliant WPA2 client software solution that is easy to use. The Mocana NanoWireless solution is uniquely architected with an asynchronous core to fully leverage hardware acceleration, is portable and has a small footprint. NanoUpdate™ An easy to use, high performance Secure Firmware Update solution. Mocana NanoUpdate enables firmware images and other messages to be securely delivered to devices in the field automatically, therefore eliminating the need for insecure, user-intensive methods, like email, TFTP FTP HTTP and CD/DVD. , , , intrusion detection system that is designed to instantly detect and shut down malware or viruses before they have a chance to spread throughout the network or hijack data — and it does so while eliminating “false positives. ” NanoDTLS™ (Client): Mocana delivers an open, standards-based, full featured, RFC Mocana Corporation 350 Sansome Street Suite 1010 San Francisco, CA 94104 415-617-0055 Phone 866-213-1273 Toll Free info@mocana.com www.mocana.com Copyright © 2008 – 2009 Mocana Corp. compliant Embedded DTLS Client that is easy to use. Mocana NanoDTLS is uniquely architected with an asynchronous core to fully leverage hardware acceleration, is portable and small footprint. It is ideally suited to securing voice and video. NanoEAP™ (Client): Includes 14 different authentication methods and supports stand Mocana DSF for Android - Device Security Framework v4.2, revised March 2009. TM 2
Slide 3: DSF for Android Features and Benefits We know that developers working on mobile platforms like Android are on ultra- compressed development cycles. You don’t have a lot of time to think about, let alone implement, security features that have been optimized to maximize performance and battery requirements for Linux-based handsets. That’s why we’ve built DSF for Android. Now, you don’t need to be a crypto expert to make the design decisions required to build high-performing security applications in these embedded environments. The components share a common API and crypto library that hides the complexity of cryptography and reduces the risks of inexperienced developers introducing new security holes into their own code. Dramatically Reduce Time to Market With development cycles cut in half, don’t waste valuable time building security from scratch. The DSF for Android is the culmination of six years of development work backed by our decades of experience in the security industry. We’ve already done all the painstaking optimization work for you, resulting in DSF for Android’s incredibly small footprint and best-in-class performance. Our implementations of protocols like IPSec and SSL can run in less than 50KB of memory, yet are 2x-4x faster than open source implementations — and they’re exhaustively tested for interoperability. Now, you can focus on what’s important to your business — getting your killer Android apps to market, first! No Need to Sacrifice Performance for Security Consumers and corporate users need Free source code evaluation at www.mocana.com/ evaluate.html an asynchronous, event-driven architecture, cryptographic jobs are easily offloaded to different CPU cores or silicon channels, fully enabling today’s multi-core processors to do your application’s work in parallel. At the heart of the NanoPhone Suite is an asynchronous core that leverages our patented Mocana Acceleration Harness™ — a software layer that virtualizes and manages crypto offload from software to hardware speeding up crypto operations by as much as 400%, depending on the hardware platform to allow the best power and performance. Tested and Supported by Actual Humans. When it comes to security, you can’t cut corners. But with Mocana, you can significantly reduce your testing efforts because we’ve done a significant amount already. DSF for Android is pre-optimized and exhaustively tested so you can focus on what’s important — getting to market ahead of your competitors. We’ve invested an enormous amount of money into our testing infrastructure that runs 24x7 against thousands of code scripts so you don’t have to. Another benefit of choosing Mocana is our built-in verification process. While other programs only have one error code, “-1” our , developer suite ships with over 1,000 unique code errors built-in so you can pinpoint bugs instantly. Because we’ve done the rigorous testing and our support organization is available 24/7/365, you can have enterprise grade security in weeks, not months. security but they expect true 3G or 4G performance in an elegantly designed handset. So you don’t want to let computationally-intensive crypto operations suck all the Wow! factor or batter power out of your Android device or applications. Competing device security architectures Mocana Corporation 350 Sansome Street Suite 1010 San Francisco, CA 94104 415-617-0055 Phone 866-213-1273 Toll Free info@mocana.com www.mocana.com Copyright © 2008 – 2009 Mocana Corp. are synchronous, which severely limits the number of cryptography jobs that can be offloaded to silicon at any one time. Synchronous architectures also severely limit the way that completed cryptography jobs can be propagated back up the stack. Because Mocana’s DSF for Android features Mocana DSF for Android - Device Security Framework v4.2, revised March 2009. TM 3
Slide 4: About Mocana Mocana provides management solutions and embedded security tools for consumer electronics manufacturers, datacom companies, telecom carriers, industrial automation applications and the enterprise. Mocana’s industry-leading infrastructure software solutions ensure that wired and wireless devices, networks and their services all scale securely. The company sells a portfolio of 18 product offerings and claims more than 90 major customers, including Cisco, Freescale, Philips, Dell, Nortel Networks, Honeywell and Aruba, Other Mocana Solutions Super-small SSL client Secure firmware updates High-performance SSH client Device-optimized IPsec, IKEv1/v2, MOBIKE EAP supplicant and 802.11 extensions Certificate managment for client devices Embedded DTLS client Intrusion detection for devices among others. Mocana was founded in 2002, is privately held, and headquartered in San Francisco. The company was recently named one of Red Herring’s “Top 100 Privately-Held Companies Globally” for 2008 and also won Frost & Sullivan’s Technology Innovation of the Year award. NanoSSL TM NanoUpdate NanoSSH TM TM Awards and Certifications NanoSec TM NanoEAP TM NanoCert TM NanoDTLS TM NanoDefender TM Free source code evaluation at www.mocana.com/ evaluate.html Mocana Corporation 350 Sansome Street Suite 1010 San Francisco, CA 94104 415-617-0055 Phone 866-213-1273 Toll Free info@mocana.com www.mocana.com Copyright © 2008 – 2009 Mocana Corp. Mocana DSF for Android - Device Security Framework v4.2, revised March 2009. TM 4