SharkTrustX - IoT & HTTPS Behind Firewall

SharkTrustX transforms the way you handle SSL certificates! This advanced software automatically manages your server's SSL certificate renewal and hot reloading, making certificate management effortless and efficient.

Furthermore, SharkTrustX can optionally IoT enable your existing local web user interface, transforming it into a fully-fledged IoT solution. SharkTrustX provides cost-effective, secure remote access to your IoT edge devices, simplifying end-user device management and facilitating remote access for service partners.

SharkTrustX addresses the challenges outlined in the tutorial Why You Need Automatic Certificate Management for Intranet Web Servers by offering simple configuration options and programmer-friendly APIs for automating X.509 certificate management.

SharkTrustX provides the following benefits:

  • Automates Intranet web server X.509 certificate management
  • Simplifies remote access; no need for VPN, port forwarding, and other cumbersome solutions
  • Eliminates open ports, the primary internet attack surface of IoT devices
  • Manage, maintain, and supervise products used by your customers
  • Simplifies building Single Sign-On (SSO) solutions using Microsoft Azure AD for Intranet Web Servers
  • The free SharkTrustX source code can be downloaded from GitHub
IoT & HTTPS Behind Firewall

Figure 1: Trusted & Secure External and Local Access with SharkTrustX


Trusted Certificates Signed by Let's Encrypt

SharkTrustX simplifies obtaining and maintaining trusted SSL certificates for your Intranet web servers. It eliminates the need for manual certificate management. With SharkTrustX, you can ensure that your web server-enabled products have trusted SSL certificates, which helps secure your customers' data and protect your product from cyber threats. The following figure shows how a local Intranet web server communicates with Let's Encrypt using the ACME protocol (RFC 8555) and with the online SharkTrustX portal.

Let's Encrypt for Intranet servers

Figure 2: Intranet server with embedded BAS library communicates with Let's Encrypt and the SharkTrustX Portal.

Why are trusted certificates such a big deal?

To find out why, check out the article Why You Need Automatic Certificate Management for Intranet Web Servers. The ESP32 video starting at 4:30 shows how to install a trusted certificate on an embedded device.


How SharkTrustX Works

SharkTrustX is a product that provides trusted and secure local access when accessing the web server locally and optionally enables secure remote access. It does this by automating the process of trusted server certificate management and by eliminating the need for a VPN.

SharkTrustX is operated as an online or on-premises portal providing secure connection bridges to any number of Intranet web servers. SharkTrustX is an extended version of SharkTrust that has been designed exclusively for Barracuda App Server powered Intranet products, including embedded devices. SharkTrustX has been designed with extension capabilities in mind and can be used as a base for additional IoT functionality that your solution may require.

SharkTrustX is the ultimate solution for securely connecting to your Intranet web servers. Whether you choose to run it online or on-premises, SharkTrustX is incredibly flexible and can be installed on any cloud platform, including AWS and Microsoft Azure. And the best part? SharkTrustX is free to use, with the source code available on GitHub for your convenience. You can even have Real Time Logic handle the installation and maintenance for you if you prefer. Don't miss out on this incredible opportunity to secure your connections and take your product to the next level with SharkTrustX.

The following screenshot shows our SharkTrustX deployment for our demo site "local.makoserver.net". The user interface can be customized and extended with additional features. One SharkTrustX server can manage any number of domains. For example, company.com may have two products, X34 and ZR22. The SharkTrustX instance may then be set up to manage the two products via two domains: x34.company.com and zr22.company.com.

Web Server VPN Tunnel Dashboard

Figure 3: The Online SharkTrustX Demo Service

To gain an understanding of how SharkTrustX operates, check out the following presentation, which shows our Xedge development environment when installed on an ESP32 microcontroller. Since Xedge is a development environment, we provide installing a certificate as an option. With SharkTrustX, you can program the API to install and update the device certificate automatically without user intervention.

Get Started with SharkTrustX

Real Time Logic's SharkTrustX demo portal lets you easily connect any Barracuda App Server-powered product, such as the ready-to-run Mako Server, to the portal.

Get started in 20 minutes:

See the Mako Server tutorial Secure Remote Access.


Use Our Services or Do It Yourself

SharkTrustX is a powerful tool that can significantly enhance your connections' security, but it requires some expertise to set up and configure properly. That's where Real Time Logic comes in - we're here to provide the initial consultation and support you need to get SharkTrustX up and running smoothly. Contact us to schedule your consultation and get started with SharkTrustX today! And if you're an experienced Linux administrator with Ansible experience, you can find brief installation instructions on the SharkTrustX Installer GitHub page. Trust SharkTrustX to keep your connections secure and your business moving forward.

Download SharkTrustX from GitHub