Connext DDS Secure

Connext DDS Secure is the trusted connectivity framework for developing and integrating secure, real-world systems. It protects systems through flexible, fine-grained security for optimal performance and efficiency, from device to cloud.

Overview

RTI Connext® DDS Secure is a connectivity framework that enables Industrial Internet of Things (IIoT) system architects to build secure and scalable systems of systems. Built on the Connext Databus, and fully compliant with the OMG® DDS Security Specification, Connext DDS Secure supports fine-grained security, providing the flexibility to implement capabilities required by their systems, such as authentication, encryption and access control without compromising performance.
Protecting mission-critical systems requires security that scales from edge to cloud, across systems and suppliers. Connext DDS Secure is used to design robust, reliable systems that safeguard without sacrificing real-time performance. It uses decentralized, peer-to-peer communications to provide authentication, access control, encryption, and logging.

Ensuring Security and Performance
Data-centric distributed architecture provides confidentiality, integrity and availability for optimal protection and performance.

Fine-Grained Security
Provides authentication, access control, cryptography and logging features that deliver flexible, secure data distribution.

Transport Flexibility
Supports UDP multicast for efficient data distribution to multiple authenticated subscribers. Securely transports data over UDP, TCP, shared memory, and other supported network types.

Standards Compliance
Customizable, flexible plugin framework that is compliant with the latest OMG® DDS Security specification.

Specification

  • Operates without centralized servers for high performance, scalability, and availability
  • Interoperability between DDS Security applications based on the system’s data model.
  • Pluggable and customizable
  • Protected Key Distribution
  • Control on individual objects and Quality of Service (QoS) via plugins
  • AES128-GCM and AES256-GCM for encryption
  • Log security events to a file or distribute securely over DDS
  • X.509 Public Key Infrastructure (PKI) with a preconfigured shared Certificate Authority (CA)
  • RSA or Elliptic Curve DSA (ECDSA) for authentication