Is There a Way to Secure SystemLink to Validate Files Downloaded from ni.com Are Certified Installer?

Updated Aug 22, 2019

Reported In

Software

  • SystemLink

Issue Details

There are some security concerns on the NI download process, that we would like to look into before approving the internet access to SystemLink

Solution

The Linux RT feeds on ni.com are signed and the RT Targets will check the signature before downloading anything from it, however, ni.com does use SSL to encrypt and verify the authenticity via HTTPS

Additional Information

If you want to further mitigate a man in the middle attack you could replicate the feeds from ni.com to your local SystemLink Server using the Package Builder application and then only install from it after you have validated their integrity.

Also, you can even request the media for the software if you are interested and then replicate the feeds from the media to the SystemLink Server again using the NI Package Builder application and then only install software from your server and avoid using ni.com all together