Our Approach

Rather than undertaking the effort of writing your own system from scratch, or pulling together open source cryptography libraries, certificate authority APIs, and monitoring solutions, the MedCrypt platform offers an integrated solution with an easy-to-use interface. The features our solution provides also happen to cover all of the FDA’s new recommendations for data security in medical devices. These recommendations place special emphasis on proper data encryption, signature verification, intrusion detection, and vulnerability monitoring.

The MedCrypt Platform consists of four main components:

• Overwatch: our device provisioning and data security configuration workflow system

• Guardian: our software library providing abstractions for trusted and secure transport of data

• Heimdall: our software vulnerability monitoring service

• Canary: our behavior monitoring service

MedCrypt Features:

• C/C++ library can be cross-compiled to various hardware targets (ARM, x86) and OSes such as Linux, QNX, BSD, Mac OS X, Windows, Android, iOS

• Support for popular open source cryptography libraries

• Options for root-of-trust control

• Configuration driven security guided by a best practices policy

• Data security configurations are signed by the root-of-trust

• Live threat assessment cross-referencing known library vulnerabilities with deployed assets

• Device behavior monitoring to detect anomalous behavior and alert the customer