Kontakt

Topic: Cryptography

Vypin Licenses Kudelski Security Technology to Enable Secure Tracking Solutions

Vypin Licenses Kudelski Security Technology to Enable Secure Tracking Solutions

Kudelski Security Provides Cryptography Services and Technology Specifically Designed for Low Power IoT Devices
PHOENIX and ATLANTA, April 30, 2018 – Kudelski Security, the cybersecurity division within the Kudelski Group (SIX:KUD.S) and trusted innovator for the world’s most security-conscious organizations, today announced a strategic agreement with Vypin, a provider of IoT solutions featuring sensor-based beacons and supporting management software. Through this partnership, Vypin has licensed power-efficient, anti-spoofing technology designed by Kudelski Security to extend the life span of Vypin’s beacons and IoT tags. Examples of these devices include reSeal™, an electronic seal for container integrity, and the recently launched safeTstrap™, a sensor-based strap that provides proactive firearm security. 
 
The challenge facing manufacturers of these types of tags is to design algorithms that not only provide robust security but are also power-efficient, to enable the tags to operate for up to five years without having to charge or change the battery. The security risk posed by IoT tags varies depending upon the customer and application, but if a tag can be ‘spoofed,’ the integrity of the information that it provides can legitimately be called into question. For Vypin, security and longevity were both primary concerns and they turned to Kudelski Security for a custom solution to a unique business problem.
 
“Cryptography is a core capability of Kudelski Security and a one of our key differentiators in the market,” said Rich Fennessy, chief executive officer, Kudelski Security. “Vypin had a unique security challenge where security and power efficiency were both important to their success. Our experts were able to analyze their devices, understand their requirements and create custom technology that enables Vypin to differentiate its products in the market through their longevity and security.” 
 
The Kudelski anti-spoof solution provides 128-bit security based on industry-standard algorithms. In addition, it prevents spoofing and tampering of beacons and optionally protects the confidentiality of the transmitted data. The solution is optimized for ease-of-integration and efficiency, relying on a BlueNRG-1 system-on-chip (SoC) but is also suitable for a wide range of systems. The solution is differentiated from other available Bluetooth low-energy (BLE) security protocols in that it requires no clock and therefore is more power efficient.
 
“Having efficient security designed by Kudelski Security and integrated in our products is a necessary and welcomed addition to our IoT solution sets,” said Mitch Bernet, chief executive officer, Vypin. “The fact that Kudelski Security was able to tailor its vast array of security offerings to our specific hardware helps us to maintain a competitive edge in the marketplace.”
 
 
About Kudelski Security
Kudelski Security is the premier advisor and cybersecurity innovator for today’s most security-conscious organizations. Our long-term approach to client partnerships enables us to continuously evaluate their security posture to recommend solutions that reduce business risk, maintain compliance and increase overall security effectiveness. With clients that include Fortune 500 enterprises and government organizations in Europe and across the United States, we address the most complex environments through an unparalleled set of solution capabilities including consulting, technology, managed security services and custom innovation. For more information, visit www.kudelskisecurity.com.
 
About Vypin
Vypin believes that the right technology is the best way to improve safety and security at work and home. Vypin’s IoT solutions and data services for real time operational visibility enabled by its unique, patented and patent-pending sensor technologies are delivered in a simple yet effective low-cost architecture. Vypin turns client operations into zones of interest, capturing asset identification, location, and state information through advanced sensors (asset status, environment status). More information is available at www.vypin.com.
 
Media Contact for Kudelski Security:
John Van Blaricum
Vice President, Global Marketing
+1 650 966 4320
 
Media Contact for Vypin
Brian Robbins
Vice President, Sales and Global Marketing
+1 888 498 6061 x102
 
Download Now

 

Download Press Release

Kudelski Security to Present on Automated Testing of Crypto Software at Black Hat USA 2017

 

Kudelski Security to Present on Automated Testing of Crypto Software at Black Hat USA 2017

Principal Security Engineer Jean-Philippe Aumasson and Research Engineer Yolan Romailler to Present a New Approach to Testing Cryptographic Software at Black Hat USA, BSides LV and DEF CON 25 Company Hosting Crypto Challenge With 10 Ether of Prizes and a Series of After Show Debriefs on Hot Industry Topics

 

CHESEAUX-SUR-LAUSANNE, Switzerland, and PHOENIX, July 17, 2017 Kudelski Security, the cybersecurity division within the Kudelski Group (SIX:KUD.S) and trusted innovator for the world's most security-conscious organizations, today announced that Jean-Philippe Aumasson, principal security engineer and Yolan Romailler, research engineer, will contribute their industry expertise in a session titled Automated Testing of Crypto Software Using Differential Fuzzing.The presentation takes place on Wednesday, July 26th in Las Vegas, Nevada at 2:40 pm PT at Black Hat USA 2017, again at 5:00 pm PT at BSides LV and a third time on Saturday, July 29th at 5:30 pm PT at DEF CON 25.

Experts from Kudelski Security will also dive into topics such as cloud security and orchestration, managed attacker deception, advanced threat intelligence, designing IoT security and cryptography during a series of Debriefing Sessions hosted at the Four Seasons Hotel.

Aumasson and Romailler’s presentation will focus on a new and efficient approach to systematic testing of cryptographic software: differential fuzzing. Unlike general purpose software fuzzing such as afl, differential fuzzing doesn't aim to find memory corruption bugs (although they might come as a by-product), but to find logic bugs. Compared to test vectors, differential fuzzing provides greater code coverage and compared to formal verification, differential fuzzing is easier to apply, both for testers and developers. Aumasson and Romailler will present this session at both Black Hat and BSides LV. Romailler will also present it at Crypto & Privacy Village within DEF CON 25.

While at Black Hat 2017, Kudelski Security will also be hosting a Crypto Challenge, a series of after show Debriefs Sessions and a party at the House of Blues’ Foundation Room within Mandalay Bay. Details include:

  • Crypto ChallengeFor Black Hat, Kudelski Security launched a new crypto challenge which started on July 6th and ends on July 25th at the House of Blues party. Prizes include five ether for first place, three ether for second and two ether for third. Rankings are determined by the time of submission. More information, including instructions, are available at  https://research.kudelskisecurity.com/2017/07/06/crypto-challenge-10-ether-of-prizes-2/
  • Thought Leadership Dinner on Enterprise Threat Intel: Features CISO veteran, Tony Spinelli, and occurs Monday, July 24th from 7:00 – 9:00 pm PT at Aureole Restaurant, Mandalay Bay.
  • Kudelski Security Debrief Sessions: Lead by Kudelski Security experts, these take place from 4:00 – 6:00 pm PT (see schedule below) at the Four Seasons Hotel. Click here to RSVP.
     
  • Sunday, July 23rd – “IoT Security; Cloud Protection and Orchestration.” These topics will be presented by Director of Research, Ryan Spanier and Chief Technology Officer, Andrew Howard.
  • Monday, July 24th – “Managed Attacker Deception.” Vice President, Global Managed Services, Alton Kizziah, will lead a discussion on honey pots versus attacker deception technology. He is joined by MSS Lead Architect, Francisco Donoso who worked on WannaCry response and will “unpack” what the June 22nd NSA disclosure means for the security community.
  • Tuesday, July 25th – “Cryptography.” Jean-Philippe Aumasson and Yolan Romailler will preceed their official Black Hat and BSidesLV presentations (taking place Wed. 26th, 2:40 pm and 5:00 pm) with a discussion on cryptography trends of note and an open Q&A session.
  • Wednesday, July 26th – “Threat Intel.” Managing Director of Global Threat Intelligence, James Pleger will share a comprehensive approach to threat intel based on the latest developments and personal experiences
     
  • Kudelski Security Anniversary Bash: Join Kudelski Security, clients and key partners at the House of Blues Foundation Room, Mandalay Bay, Tuesday, July 25th, 6:00 – 9:00 pm PT. Attendees will have a chance to win crypto currency. Click here to RSVP.

Media and analysts interested in meeting with Kudelski executives at the show should contact [email protected]

 

About Kudelski Security

Kudelski Security is the premier advisor and cybersecurity innovator for today’s most security-conscious organizations. Our long-term approach to client partnerships enables us to continuously evaluate their security posture to recommend solutions that reduce business risk, maintain compliance and increase overall security effectiveness. With clients that include Fortune 500 enterprises and government organizations in Europe and across the United States, we address the most complex environments through an unparalleled set of solution capabilities including consulting, technology, managed security services and custom innovation. For more information, visit www.kudelskisecurity.com.

 

Media Contact:

John Van Blaricum
Vice President, Global Marketing
Kudelski Security
+1 650 966 4320
[email protected]

Download Press Release

Kudelski Security’s Principal Engineer to Speak on Hunting for Signal Vulnerabilities at INFILTRATE 2017

CHESEAUX-SUR-LAUSANNE, Switzerland and PHOENIX, April  5th , 2017Kudelski Security, the cybersecurity division within the Kudelski Group(SIX:KUD.S) and trusted innovator for the world’s most security-conscious organizations, today announced its Principal Research Engineer, Jean-Philippe Aumasson, will speak at INFILTRATE 2017, a conference focused entirely on offensive security issues. Aumasson will join independent Security Researcher, Markus Vervier, in a presentation titled “Hunting for Vulnerabilities in Signal,” slated to take place Friday, April 7 at Fontainebleau Hotel in Miami.  

 

What: The presentation will focus on Signal, one of the most trusted secure messaging and secure voice applications. While the app employs strong cryptography and has solid system architecture, vulnerabilities have been discovered in its code base (later addressed by Open Whisper System, which maintains Signal)

Aumasson and Vervier will detail vulnerabilities discovered in the Signal Android client, the underlying Java libsigna library, as well as an example usage of the C libsignal library. Demos will illustrate how these can be used to crash Signal remotely, bypass the MAC authentication for certain attached files, as well as to trigger memory corruption bugs. Also to be discussed is the general architecture of Signal, its attack surface, tools for analysis, along with the general threat model for secure mobile communication apps.

More information about the session may be found here.

 

Who:   Aumasson is principal research engineer at Kudelski Security in Switzerland. He designed the popular cryptographic functions BLAKE2 and SipHash. Aumasson also initiated the Crypto Coding Standard and Password Hashing Competition that developed the Argon2 algorithm. He has been a speaker at Black Hat, DEFCON, RSA, CCC, SyScan and Troopers on topics such as applied cryptography, quantum computing and platform security. He is the author of “The Hash Function BLAKE” and is currently writing a second book on cryptography due out later this year.

Vervier is a highly regarded independent security researcher based in Germany. During the past 15 years he has gained professional experience in offensive IT security as a penetration tester and security consultant. He actively conducts security research and is responsible for the discovery of high profile vulnerabilities such as libotr heap overwrite.

 

When:  4:00 pm ET, Friday, April 7, 2017

 

Where:  Fontainebleau Hotel, Miami

 

          Media and analysts interested in meeting with Aumasson or Kudelski executives at the show should contact [email protected].

 

 

 

 

About Kudelski Security

Kudelski Security is the premier advisor and cybersecurity innovator for today’s most security-conscious organizations. Our long-term approach to client partnerships enables us to continuously evaluate their security posture to recommend solutions that reduce business risk, maintain compliance and increase overall security effectiveness. With clients that include Fortune 500 enterprises and government organizations in Europe and across the United States, we address the most complex environments through an unparalleled set of solution capabilities including consulting, technology, managed security services and custom innovation. For more information, visit www.kudelskisecurity.com.

 

Media Contact:

John Van Blaricum

Vice President, Global Marketing

Kudelski Security

1.650.966.4320

[email protected]

Download Press Release

Kontaktieren Sie uns