Now protecting even more of your crypto infrastructure
Until now, Cryptosense has only been available for the PKCS#11 API used in crypto hardware.
However, in summer 2015 we will be providing versions of our software for the widely-used OpenSSL (libcrypto), Java JCE/JCA and MS CAPI/CNG APIs on limited release.
This will include powerful support for auditing the use of crypto by applications using these interfaces.
Sign up to get the latest on release dates.
How Cryptosense Works
A compliant cryptography provider is the first step towards a secure solution. Try our compliance tester for PKCS#11 APIs.
Vulnerabilities arise when commands that are individually secure, are used in combination. Cryptosense configuration software finds these combinations.
Once the configuration is secure, the application has to make use of the interface in a secure way. Cryptosense App Tracer analyses the calls made to the crypto interface.
Cryptosense Monitor continually checks configurations and key usage, sending alerts if out-of-standard configurations are found and providing reports for audits.
Cryptography is used to secure a business’ core assets in case of a breach, so it’s vital that it works as it should. Cryptosense software allows you to:
- Identify security risks in your crypto infrastructure: Hardware Security Modules, smartcards and software crypto providers.
- Security-audit enterprise applications that use crypto for security: both key management and use of cryptographic operations
- Select optimal configurations for your infrastructure to minimize risk
- Monitor your crypto applications and providers to signal anomalies and pass audits easily.
Our Compliance Tester is based on well-typed smart fuzzing. Paying attention to types ensures that test cases are meaningful.
Cryptosense Simulator constructs a logical model of the operation of each API function using our symbolic machine learning algorithm.
The model-checker uses a mixture of control-flow abstraction techniques and results from years of academic research to analyze system configuration, discovering and preventing attacks.
Cryptosense Compliance Tester for PKCS#11. Make sure your PKCS#11 implementation covers every detail.
Cryptosense Analyzer. Our software imitates an intelligent attacker to find and prevent attacks on your specific installation.