Automated Crypto Security Audit
Cryptosense software eliminates vulnerabilities in the use of cryptography.
No more broken crypto
Use Cryptosense Analyzer to test your applications and infrastructure, understand your crypto landscape, and optimise remediation resources.
Find all the flaws
Cryptosense is unique in treating vulnerabilities caused by flaws in crypto libraries,
and misuse of libraries by applications.
Statistics from Why Does Cryptographic Software Fail? Lazar et al., APSec’14
Automate crypto vulnerability assessment
Quickly understand the vulnerability landscape of an application or HSM without painstaking manual analysis. Track crypto KPIs, reduce time spent on remediations, and ensure that correct policy is being followed.
Faster, more cost effective audits
Efficiently prepare for audits by eliminating vulnerabilities in advance. Optimise crypto expertise resources by only treating real findings – not false positives.
Migrate sensitive applications securely
Understand the cartography of the crypto in your application. Ensure security is maintained as you rearchitect, switch libraries, or deploy applications in the cloud.
“SAST does not go as far as Cryptosense in the detailed analysis of crypto calls. The value is in the relevance of findings. One can see many more things with Cryptosense than with SAST.”
International PKI Software Company
How we’re different
1. Trace Analysis
Cryptosense trace analysis allows us to see 100% of calls to crypto libraries, without needing access to source code. To test libraries, we replace the application with our fuzzer.
2. Unique Rule Base
Traces are run through our proprietary analysis algorithms and checked against our unique rule base. Rules are continually updated in line with academic results.
3. Few False Positives
On average <1 false positive out of 800+ instances per report. Reports include links to stacktraces for fast debugging and compliance analysis.
A unique rule base, proprietary algorithms and a patent-pending analysis method.
Cryptosense software is based on technology developed by one of the world’s leading applied crypto labs. Our rules and algorithms are constantly updated thanks to internal R&D and partnerships with labs in the research community.
Based in Paris, France, Cryptosense provides its solutions to the financial services industry, government agencies, and software and hardware producers. To arrange a test on your applications, contact email@example.com or call us on +1 646-893-7657.