16: Security Settings

The xSenso device supports Secure Shell (SSH) and Secure Sockets Layer (SSL). SSH is a network protocol for securely accessing a remote device. SSH provides a secure, encrypted communication channel between two hosts over a network. It provides authentication and message integrity services.

Secure Sockets Layer (SSL) is a protocol that manages data transmission security over the Internet. It uses digital certificates for authentication and cryptography against eavesdropping and tampering. It provides encryption and message integrity services. SSL is widely used for secure communication to a web server. SSL uses certificates and private keys.

Note: The device supports SSLv3 and its successors, TLS1.0 and TLS1.1. An incoming SSLv2 connection attempt is answered with an SSLv3 response. If the initiator also supports SSLv3, SSLv3 handles the rest of the connection.

SSH Settings

SSH is a network protocol for securely accessing a remote device over an encrypted channel. This protocol manages the security of internet data transmission between two hosts over a network by providing encryption, authentication, and message integrity services.

Two instances require configuration: when the xSenso is the SSH server and when it is an SSH client. The SSH server is used by the CLI (Command Mode) and for tunneling in Accept Mode. The SSH client is for Action Connect Mode.

To configure the xSenso as an SSH server, there are two requirements:

Defined Host Keys: both private and public keys are required. These keys are used for the Diffie-Hellman key exchange (used for the underlying encryption protocol).

Defined Users: these users are permitted to connect to the xSenso SSH server.

SSH Server Host Keys

The SSH Server Host Keys are used by all applications that play the role of an SSH Server. Specifically Tunneling in Accept Mode. These keys can be created elsewhere and uploaded to the device or automatically generated on the device.

If uploading existing keys, take care to ensure the Private Key will not be compromised in transit. This implies the data is uploaded over some kind of secure private network.

Note: Some SSH Clients require RSA Host Keys to be at least 1024 bits in size.

 

Table 16-1 SSH Server Host Keys

 

 

RSS Settings

Description

 

 

Private Key

Enter the path and name of the existing private key you want to upload. In

 

WebManager, you can also browse to the private key to be uploaded. Be sure the

 

private key will not be compromised in transit. This implies the data is uploaded over

 

some kind of secure private network.

 

 

xSenso User Guide

85

Page 84 Page 86
Page 85
Image 85
Lantronix XSENSO 2100, XSENSO 21R2, XSENSO 21A2 manual Security Settings, SSH Settings, SSH Server Host Keys, Private Key
Page 84 Page 86

XSENSO 2100, XSENSO 21A2, XSENSO 21R2 specifications

Lantronix, a leader in secure communications and IoT solutions, offers a range of innovative products that cater to various industrial and commercial needs. Among their impressive lineup are the XSENSO 21R2, XSENSO 21A2, and XSENSO 2100 devices, each designed for remote monitoring and control applications that require reliability and versatility.

The XSENSO 21R2 is a powerful device focused on advanced sensor management. It features multiple analog and digital inputs, enabling users to monitor a wide variety of environmental parameters such as temperature, humidity, and pressure. This model excels in applications requiring real-time data collection and analysis. Its robust construction ensures high performance in challenging environments, making it ideal for industrial settings. The XSENSO 21R2 also incorporates cloud connectivity options, allowing for seamless data transfer and integration with existing IoT infrastructures.

Similarly, the XSENSO 21A2 is designed for users who prioritize ease of use along with functionality. This device is equipped with a user-friendly interface that simplifies configuration and monitoring. It supports various communication protocols, ensuring compatibility with different systems and applications. The XSENSO 21A2 boasts a compact design, suitable for space-constrained installations, and provides options for local and remote access to data, enhancing user flexibility.

The XSENSO 2100 stands out with its high-performance processing capabilities, making it suitable for complex monitoring tasks. Its enhanced computing power allows it to run sophisticated analytics directly on the device, thereby reducing latency and bandwidth consumption. The XSENSO 2100 is especially useful in scenarios that require extensive data processing at the edge, such as predictive maintenance and machine learning applications. It is equipped with advanced security features, ensuring that sensitive data remains protected during transmission and storage.

All three models embody Lantronix's commitment to innovation, incorporating the latest technologies such as wireless connectivity options, cloud integration, and support for various industry standards. Their scalability makes them suitable for projects of all sizes, from small businesses to large enterprises. These devices not only enhance operational efficiency but also empower businesses to make data-driven decisions, ultimately leading to improved performance and cost savings. With Lantronix’s XSENSO devices, organizations can take a significant step towards realizing their IoT aspirations.
Top Page Image Contents