Attacks/Breaches

7/3/2018
08:40 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Trustonic Awarded Cybersecurity Certification By French Government

Mobile, IoT and application security specialist accredited federally and internationally

03 July 2018, Cambridge, UK – Trustonic has been awarded the new Security Visa by the French National Cybersecurity Agency. This prestigious stamp of approval is used by the Agence nationale de la sécurité des systèmes d’information (ANSSI) to help commercial businesses and government organizations make informed decisions about cybersecurity solutions.

The ANSSI Security Visa recognizes the most secure, reliable and robust solutions. This certification is based on extensive penetration testing and in-depth analysis which ensures compliance with stringent international standards.

“Security is a top priority for business and government and both recognize that app protection is central in the battle against malware, hacking and fraud,” says Christophe Colas, SVP Products & Licensing, Trustonic. “Together with the other international accreditations we already have, including FIPS and GlobalPlatform, this latest award based on the Common Criteria certification of our product, demonstrates the robustness and reliability of our platform against the very highest standards. It gives our customers the confidence that they are choosing a solution that has been evaluated and approved by the most rigorous bodies, a critical consideration for banking, payments, IoT, government and enterprise mobile app developers who want to protect sensitive data, IP, customer information and, ultimately, their reputation.”

The Trustonic platform is already embedded into more than 1.5 billion devices and combines hardware and software security with development tools that make building the most secure mobile apps easy for developers. Trustonic provides a Trusted Execution Environment (TEE), a hardware-based security technology that offers a secure operating system (OS) isolated from the normal device OS, utilizing a unique and distinct trusted identity embedded into devices during manufacture. This makes the device, and trusted applications running on it that have been developed using Trustonic’s SDK, highly protected against threats and enables enhanced security such as biometric authentication and secure PIN entry.

“Many app developers use software protection alone or OS-based security functions, but it is rarely robust or effective enough to protect sensitive apps,” adds Colas. “By using Trustonic Application Protection, they can easily build enhanced hardware-backed protected applications to deliver faster, richer and safer services to any device.”

Learn more about how Trustonic Application Protection can protect your mobile app.

 

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Veterans Find New Roles in Enterprise Cybersecurity
Kelly Sheridan, Staff Editor, Dark Reading,  11/12/2018
Empathy: The Next Killer App for Cybersecurity?
Shay Colson, CISSP, Senior Manager, CyberClarity360,  11/13/2018
Understanding Evil Twin AP Attacks and How to Prevent Them
Ryan Orsi, Director of Product Management for Wi-Fi at WatchGuard Technologies,  11/14/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Flash Poll
Online Malware and Threats: A Profile of Today's Security Posture
Online Malware and Threats: A Profile of Today's Security Posture
This report offers insight on how security professionals plan to invest in cybersecurity, and how they are prioritizing their resources. Find out what your peers have planned today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-18519
PUBLISHED: 2018-11-19
BestXsoftware Best Free Keylogger 5.2.9 allows local users to gain privileges via a Trojan horse "%PROGRAMFILES%\BFK 5.2.9\syscrb.exe" file because of insecure permissions for the BUILTIN\Users group.
CVE-2018-19355
PUBLISHED: 2018-11-19
modules/orderfiles/ajax/upload.php in the Customer Files Upload addon 2018-08-01 for PrestaShop (1.5 through 1.7) allows remote attackers to execute arbitrary code by uploading a php file via modules/orderfiles/upload.php with auptype equal to product (for upload destinations under modules/productfi...
CVE-2008-7320
PUBLISHED: 2018-11-18
** DISPUTED ** GNOME Seahorse through 3.30 allows physically proximate attackers to read plaintext passwords by using the quickAllow dialog at an unattended workstation, if the keyring is unlocked. NOTE: this is disputed by a software maintainer because the behavior represents a design decision.
CVE-2018-19358
PUBLISHED: 2018-11-18
GNOME Keyring through 3.28.2 allows local users to retrieve login credentials via a Secret Service API call and the D-Bus interface if the keyring is unlocked, a similar issue to CVE-2008-7320. One perspective is that this occurs because available D-Bus protection mechanisms (involving the busconfig...
CVE-2018-19351
PUBLISHED: 2018-11-18
Jupyter Notebook before 5.7.1 allows XSS via an untrusted notebook because nbconvert responses are considered to have the same origin as the notebook server. In other words, nbconvert endpoints can execute JavaScript with access to the server API. In notebook/nbconvert/handlers.py, NbconvertFileHand...