Services

In close relationship with our customers, our services range in 4 categories:

CYBERSECURITY ANALYSIS

We perform risk and threat analysis of cloud services, with a focus on end-points. We assist service providers and manufacturers to write the  requirements for internal development and integration teams and for suppliers.   

We perform security reviews of functional solutions and architectures of systems and products, and we deliver design recommendations to meet industry standards and best practices. 

We support our customers to maintain the security level of their systems and products after deployment. We provide vulnerability monitoring services and impact analysis. 

 

APPROVALS & CERTIFICATES

We help preparing the evaluation and certification of products and systems such as smartcards, trusted execution environment (TEE), chipsets and devices.
 
We provide advisory services for building certification strategies, e.g. over a family of products. Pre-evaluation audits. Technical writing. Project management and coaching of in-house teams.
 
We manage the relationship with evaluation labs and certification bodies.
 
We turn Common Criteria, GlobalPlatform or any other standard or custom scheme into operational action plans for developers, manufacturers and integrators.

KNOWLEDGE DEVELOPMENT

We study technical solutions, we analyse security architectures and properties, and we build with our customers effective methods to reach the target security level.
 
We organize certification workshops. Examples include gap analysis of solutions with regard to a set of requirements, and the integration of certification constraints in products’ roadmaps.
 
We deliver introductory and in-depth trainings on certification, evaluation methodologies, and security requirements. Examples: Common Criteria, GlobalPlatform, Protection Profiles, Security Guidelines.
 
 

CERTIFICATION PROGRAMS

We build certification programs for products and systems from threat analysis to the definition of the technical and organizational security requirements and the associated evaluation methodologies.
 
We define evaluation, certification and lab licensing processes and rules.
 
We operate certification services, such as lab audit and assessment of product evaluation.
 
We support Common Criteria or custom programs, ISO17025 and ISO17065 compliance.