Master your Cryptographic Infrastructure

If your business depends on cryptography, you need to know it's secure. Cryptosense is a new approach to identifying and controlling cryptographic security risks.

Use Cases

Users of Crypto

Banks, payment operators and other businesses who want to assess the security of their crypto infrastructure and put controls in place which can be monitored.

Securing applications, HSMs, smartcards, crypto libraries

Penetration Testers & Security Consultants

Who want to quickly and efficiently identify security risks related to the use of cryptography, leaving them more time to apply their expertise to their clients’ systems.

Finding flaws fast

Manufacturers of Cryptographic Devices

Who want to test their products for compliance and identify security issues early in the development cycle, to lower costs and time to market while increasing customer assurance.

Load, stress and compliance testing

About Cryptosense

Cryptosense software employs a unique mix of formal analysis, symbolic machine learning and cryptanalysis to find security flaws in cryptographic systems before your adversaries do. Our customers include banks and government security agencies. Read more about our solutions for users, developers, and testers of cryptography, our software suite and the Cryptosense team.

Cryptosense Software Suite

Cryptosense develops a complete solution for cryptographic security assessment and vulnerability management.

Cryptosense Analyzer is the core software offering of Cryptosense.

The Analyzer works by using a combination of a patent-pending symbolic machine learning algorithm and a custom developed model-checker. It learns a model of an HSM, Smartcard or software crypto interface under test, creates a model of the device in memory, and searches the model for flaws. Attacks found include cryptanalytic attacks, logical key management policy flaws, implementation errors, and combinations of these. All vulnerabilities found in the model can be tested directly on the device, eliminating false positives.

The full Cryptosense software package also includes Cryptosense MonitorCryptosense App Tracer and Cryptosense Simulator.

  


The attack methodology embodied in Cryptosense is unique.Technical Director
A European national security agency

  • Core Software
  • Analyzer
  • Users of Crypto
  • Penetration Testers
  • Device Manufacturers
  • One off audit
  • Quarterly licensing
  • Analyzer learns a model of an HSM, Smartcard or software crypto interface and searches the model for flaws
  • Analyzer specs

  • Add-on
  • App Tracer
  • Users of Crypto
  • Penetration Testers
  • One off audit
  • Quarterly licensing
  • In conjuction with analyzer, App Tracer can identify common crypto mistakes as well as more subtle key management errors
  • More on tracing

  • Add-on
  • Monitor
  • Users of Crypto
  • Quarterly licensing
  • Monitor makes regular configuration tests on HSMs and compares the results to a gold-standard configuration
  • Monitoring

  • Add-on
  • Simulator
  • Users of Crypto
  • Quarterly licensing
  • Cryptosense Simulator produces a stand-alone executable software-only HSM with the same behaviour as HSM firmware
  • Simulating HSMs

The Cryptosense Blog

Information and opinions on the latest developments in cryptographic security from our team of experts.

Cryptosense news, hacks, talks and conferences.

Read the latest

Security, crypto, HSMs, key management, hacking and more...

#HSMs     #PKCS11     #crypto     #RSA

 

Working for Cryptosense


Cryptosense is an equal opportunities employer always interested in hearing from talented and enthusiastic software developers and engineers. To find out more you can see our current vacancies or send your CV to moc.e1409599197sneso1409599197tpyrc1409599197@sboj1409599197.

Receive our PKCS#11 Whitepaper

Our free guide to securing PKCS#11 including attacks, mitigations, and what’s changing in version 2.40.

Privacy policy: no spam whatsoever, and we won’t share your address with anyone.

Your Name (required)

Your Email (required)

Cryptosense Analyzer is available for PKCS#11

Watch the demo video to see the Analyzer in action