Attacks/Breaches

7/3/2018
08:40 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Trustonic Awarded Cybersecurity Certification By French Government

Mobile, IoT and application security specialist accredited federally and internationally

03 July 2018, Cambridge, UK – Trustonic has been awarded the new Security Visa by the French National Cybersecurity Agency. This prestigious stamp of approval is used by the Agence nationale de la sécurité des systèmes d’information (ANSSI) to help commercial businesses and government organizations make informed decisions about cybersecurity solutions.

The ANSSI Security Visa recognizes the most secure, reliable and robust solutions. This certification is based on extensive penetration testing and in-depth analysis which ensures compliance with stringent international standards.

“Security is a top priority for business and government and both recognize that app protection is central in the battle against malware, hacking and fraud,” says Christophe Colas, SVP Products & Licensing, Trustonic. “Together with the other international accreditations we already have, including FIPS and GlobalPlatform, this latest award based on the Common Criteria certification of our product, demonstrates the robustness and reliability of our platform against the very highest standards. It gives our customers the confidence that they are choosing a solution that has been evaluated and approved by the most rigorous bodies, a critical consideration for banking, payments, IoT, government and enterprise mobile app developers who want to protect sensitive data, IP, customer information and, ultimately, their reputation.”

The Trustonic platform is already embedded into more than 1.5 billion devices and combines hardware and software security with development tools that make building the most secure mobile apps easy for developers. Trustonic provides a Trusted Execution Environment (TEE), a hardware-based security technology that offers a secure operating system (OS) isolated from the normal device OS, utilizing a unique and distinct trusted identity embedded into devices during manufacture. This makes the device, and trusted applications running on it that have been developed using Trustonic’s SDK, highly protected against threats and enables enhanced security such as biometric authentication and secure PIN entry.

“Many app developers use software protection alone or OS-based security functions, but it is rarely robust or effective enough to protect sensitive apps,” adds Colas. “By using Trustonic Application Protection, they can easily build enhanced hardware-backed protected applications to deliver faster, richer and safer services to any device.”

Learn more about how Trustonic Application Protection can protect your mobile app.

 

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
WebAuthn, FIDO2 Infuse Browsers, Platforms with Strong Authentication
John Fontana, Standards & Identity Analyst, Yubico,  9/19/2018
Turn the NIST Cybersecurity Framework into Reality: 5 Steps
Mukul Kumar & Anupam Sahai, CISO & VP of Cyber Practice and VP Product Management, Cavirin Systems,  9/20/2018
NSS Labs Files Antitrust Suit Against Symantec, CrowdStrike, ESET, AMTSO
Kelly Jackson Higgins, Executive Editor at Dark Reading,  9/19/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: "I'm not sure I like this top down management approach!"
Current Issue
Flash Poll
The Risk Management Struggle
The Risk Management Struggle
The majority of organizations are struggling to implement a risk-based approach to security even though risk reduction has become the primary metric for measuring the effectiveness of enterprise security strategies. Read the report and get more details today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-17407
PUBLISHED: 2018-09-23
An issue was discovered in t1_check_unusual_charstring functions in writet1.c files in TeX Live before 2018-09-21. A buffer overflow in the handling of Type 1 fonts allows arbitrary code execution when a malicious font is loaded by one of the vulnerable tools: pdflatex, pdftex, dvips, or luatex.
CVE-2018-17358
PUBLISHED: 2018-09-23
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31. An invalid memory access exists in _bfd_stab_section_find_nearest_line in syms.c. Attackers could leverage this vulnerability to cause a denial of service (application crash) via a ...
CVE-2018-17359
PUBLISHED: 2018-09-23
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31. An invalid memory access exists in bfd_zalloc in opncls.c. Attackers could leverage this vulnerability to cause a denial of service (application crash) via a crafted ELF file.
CVE-2018-17360
PUBLISHED: 2018-09-23
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31. a heap-based buffer over-read in bfd_getl32 in libbfd.c allows an attacker to cause a denial of service through a crafted PE file. This vulnerability can be triggered by the executa...
CVE-2018-17361
PUBLISHED: 2018-09-23
Multiple XSS vulnerabilities in WeaselCMS v0.3.6 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to index.php because $_SERVER['PHP_SELF'] is mishandled.