Obtaining Certificates, Certificate Formats

19: Security in Detail

through any number of intermediate authorities, ultimately to the agent that needs to prove its authenticity.

Obtaining Certificates

Signed certificates are typically obtained from well-known CAs, such as VeriSign. This is done by submitting a certificate request for a CA, typically for a fee. The CA will sign the certificate request, producing a certificate/key combo: the certificate contains the identity of the owner and the public key, and the private key is available separately for use by the owner.

As an alternative to acquiring a signed certificate from a CA, you can act as your own CA and create self-signed certificates. This is often done for testing scenarios, and sometimes for closed environments where the expense of a CA-signed root certificate is not necessary.

Self-Signed Certificates

A few utilities exist to generate self-signed certificates or sign certificate requests. The xSenso also has the ability to generate its own self-signed certificate/key combo. You can use XML to export the certificate in PEM format, but you cannot export the key. Hence the internal certificate generator can only be used for certificates that are to identify that particular xSenso.

Certificate Formats

Certificates and private keys can be stored in several file formats. Best known are PKCS12, DER and PEM. Certificate and key can be in the same file or in separate files. Additionally, the key can be either be encrypted with a password or left in the clear. However, the xSenso currently only accepts separate PEM files, with the key unencrypted.

Several utilities exist to convert between the formats.

OpenSSL

OpenSSL is a widely used open source set of SSL related command line utilities. It can act as server or client. It can also generate or sign certificate requests, and can convert from and to several different of formats.

OpenSSL is available in binary form for Linux and Windows. To generate a self-signed RSA certificate/key combo:

openssl req -x509 -nodes -days 365 -newkey rsa:1024 -keyout mp_key.pem - out mp_cert.pem

See www.openssl.org or www.madboa.com/geek/openssl for more information.

Note: Signing other certificate requests is also possible with OpenSSL but the details of this process are outside the scope of this document.

xSenso User Guide

110

XSENSO 2100, XSENSO 21A2, XSENSO 21R2 specifications

Lantronix, a leader in secure communications and IoT solutions, offers a range of innovative products that cater to various industrial and commercial needs. Among their impressive lineup are the XSENSO 21R2, XSENSO 21A2, and XSENSO 2100 devices, each designed for remote monitoring and control applications that require reliability and versatility.

The XSENSO 21R2 is a powerful device focused on advanced sensor management. It features multiple analog and digital inputs, enabling users to monitor a wide variety of environmental parameters such as temperature, humidity, and pressure. This model excels in applications requiring real-time data collection and analysis. Its robust construction ensures high performance in challenging environments, making it ideal for industrial settings. The XSENSO 21R2 also incorporates cloud connectivity options, allowing for seamless data transfer and integration with existing IoT infrastructures.

Similarly, the XSENSO 21A2 is designed for users who prioritize ease of use along with functionality. This device is equipped with a user-friendly interface that simplifies configuration and monitoring. It supports various communication protocols, ensuring compatibility with different systems and applications. The XSENSO 21A2 boasts a compact design, suitable for space-constrained installations, and provides options for local and remote access to data, enhancing user flexibility.

The XSENSO 2100 stands out with its high-performance processing capabilities, making it suitable for complex monitoring tasks. Its enhanced computing power allows it to run sophisticated analytics directly on the device, thereby reducing latency and bandwidth consumption. The XSENSO 2100 is especially useful in scenarios that require extensive data processing at the edge, such as predictive maintenance and machine learning applications. It is equipped with advanced security features, ensuring that sensitive data remains protected during transmission and storage.

All three models embody Lantronix's commitment to innovation, incorporating the latest technologies such as wireless connectivity options, cloud integration, and support for various industry standards. Their scalability makes them suitable for projects of all sizes, from small businesses to large enterprises. These devices not only enhance operational efficiency but also empower businesses to make data-driven decisions, ultimately leading to improved performance and cost savings. With Lantronix’s XSENSO devices, organizations can take a significant step towards realizing their IoT aspirations.

Lantronix XSENSO 21A2 manual Obtaining Certificates, Self-Signed Certificates, Certificate Formats

Models: XSENSO 2100 XSENSO 21A2 XSENSO 21R2