Skip to main content
Accueil > Outils > Sécurité

Platform Security

End-to-end secure architecture

At every level—from business to personal—cybersecurity is paramount. A data breach or leak can have very high costs and lasting effects, making it vital to put your trust in partners that value security as much as you do. From software to hardware, Ergotron is dedicated to being your trusted partner for end-to-end secure architecture.

FIPS Explained

FIPS Explained thumbnail

End-to-end architecture that’s secure

FIPS stands for Federal Information Processing Standard. With a cryptographic module embedded in software and medical carts, Ergotron has achieved official FIPS Validation, making our end-to-end architecture secure.

The top challenges of managing a connected fleet are concerns around cybersecurity.  ~ 3rd-party survey of 400+ IT decision‑makers
FIPS validation sets the benchmark for security, and this validation is proof of our commitment to it. ~ Arlow Farrell, Director of Software Engineering, Ergotron
Among reasons that validation matters to our partners are risk mitigation and regulatory compliance. ~ Jessica Grenwis, Sr Director of Product Mgmt, Ergotron

Ergotron Protects Your Data

Our RhythmConnect™ cloud-based fleet management software is designed with strong security features.

  • Encryption of data at rest and in transit
  • Regular and quick-to-release security updates
  • Industry-standard secure authentication methods
  • No software is installed on PCs or on-prem of RhythmConnect-ready workstations, minimizing vulnerability
  • Ergotron’s proprietary BLE mesh technology reduces the need for wireless network connectivity on Ergotron devices
  • RhythmConnect does not collect, store or process your protected information
  • Your data remains fully separate from the fleet management system, providing an additional layer of protection for sensitive information
  • RhythmConnect software and RhythmConnect-ready assets include the FIPS-validated Ergotron Cryptographic Module

Learn More

How RhythmConnect Provides Data Protection

Secure Communication

RhythmConnect-ready assets communicate securely via HTTPS. Data is sent in packets under 1KB to Ergotron’s cloud servers hosted on Microsoft Azure. The only required open ports are HTTPS (443) and a proprietary port for OTA updates (22222). All communication are initiated by the device’s power and control system; no software is installed on customer images, PCs or servers.

A typical fleet of 100 workstations uses less bandwidth than loading a single web page. Ergotron’s proprietary BLE Mesh technology reduces the need for wireless network connectivity on Ergotron devices. Outbound connections are initiated solely by assets; Ergotron cannot initiate direct connections.

Secure cloud-based technology

Network & Authentication

Both RhythmConnect software and RhythmConnect-ready assets support all modern network types and authentication methods, including:

  • Open
  • WEP
  • WPA
  • WPA2 Mixed (WPA2 TKIP+AES)
  • WPA2-Personal or WPA2-PSK
  • WPA2-Enterprise (RADIUS) - PEAP/MSCHAPV2
  • WPA3
  • EAP-TLS or EAP-TTLS
  • PEAP (Username/Password)
  • Client/server certication
Network and authentication support

FIPS 140-3 Validated

The Ergotron Cryptographic Module provides services needed to securely support the Federal Information Processing Standard (FIPS 140-3), a security benchmark certification mandated by the U.S. federal government that protects sensitive but unclassified information using cryptography.

View Certificate FIPS Explained

FIPS 140-3 Validated

Contactez-nous

Contactez un représentant d'Ergotron pour une démonstration de l'efficacité de RhythmConnect et découvrez comment il peut être adapté à votre structure.