Attacks/Breaches

7/3/2018
08:40 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Trustonic Awarded Cybersecurity Certification By French Government

Mobile, IoT and application security specialist accredited federally and internationally

03 July 2018, Cambridge, UK – Trustonic has been awarded the new Security Visa by the French National Cybersecurity Agency. This prestigious stamp of approval is used by the Agence nationale de la sécurité des systèmes d’information (ANSSI) to help commercial businesses and government organizations make informed decisions about cybersecurity solutions.

The ANSSI Security Visa recognizes the most secure, reliable and robust solutions. This certification is based on extensive penetration testing and in-depth analysis which ensures compliance with stringent international standards.

“Security is a top priority for business and government and both recognize that app protection is central in the battle against malware, hacking and fraud,” says Christophe Colas, SVP Products & Licensing, Trustonic. “Together with the other international accreditations we already have, including FIPS and GlobalPlatform, this latest award based on the Common Criteria certification of our product, demonstrates the robustness and reliability of our platform against the very highest standards. It gives our customers the confidence that they are choosing a solution that has been evaluated and approved by the most rigorous bodies, a critical consideration for banking, payments, IoT, government and enterprise mobile app developers who want to protect sensitive data, IP, customer information and, ultimately, their reputation.”

The Trustonic platform is already embedded into more than 1.5 billion devices and combines hardware and software security with development tools that make building the most secure mobile apps easy for developers. Trustonic provides a Trusted Execution Environment (TEE), a hardware-based security technology that offers a secure operating system (OS) isolated from the normal device OS, utilizing a unique and distinct trusted identity embedded into devices during manufacture. This makes the device, and trusted applications running on it that have been developed using Trustonic’s SDK, highly protected against threats and enables enhanced security such as biometric authentication and secure PIN entry.

“Many app developers use software protection alone or OS-based security functions, but it is rarely robust or effective enough to protect sensitive apps,” adds Colas. “By using Trustonic Application Protection, they can easily build enhanced hardware-backed protected applications to deliver faster, richer and safer services to any device.”

Learn more about how Trustonic Application Protection can protect your mobile app.

 

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
New Cold Boot Attack Gives Hackers the Keys to PCs, Macs
Kelly Sheridan, Staff Editor, Dark Reading,  9/13/2018
Yahoo Class-Action Suits Set for Settlement
Dark Reading Staff 9/17/2018
RDP Ports Prove Hot Commodities on the Dark Web
Kelly Sheridan, Staff Editor, Dark Reading,  9/17/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Flash Poll
How Data Breaches Affect the Enterprise
How Data Breaches Affect the Enterprise
This report, offers new data on the frequency of data breaches, the losses they cause, and the steps that organizations are taking to prevent them in the future. Read the report today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-17182
PUBLISHED: 2018-09-19
An issue was discovered in the Linux kernel through 4.18.8. The vmacache_flush_all function in mm/vmacache.c mishandles sequence number overflows. An attacker can trigger a use-after-free (and possibly gain privileges) via certain thread creation, map, unmap, invalidation, and dereference operations...
CVE-2018-17144
PUBLISHED: 2018-09-19
Bitcoin Core 0.14.x before 0.14.3, 0.15.x before 0.15.2, and 0.16.x before 0.16.3 and Bitcoin Knots 0.14.x through 0.16.x before 0.16.3 allow a remote denial of service (application crash) exploitable by miners via duplicate input. An attacker can make bitcoind or Bitcoin-Qt crash.
CVE-2017-3912
PUBLISHED: 2018-09-18
Bypassing password security vulnerability in McAfee Application and Change Control (MACC) 7.0.1 and 6.2.0 allows authenticated users to perform arbitrary command execution via a command-line utility.
CVE-2018-6690
PUBLISHED: 2018-09-18
Accessing, modifying, or executing executable files vulnerability in Microsoft Windows client in McAfee Application and Change Control (MACC) 8.0.0 Hotfix 4 and earlier allows authenticated users to execute arbitrary code via file transfer from external system.
CVE-2018-6693
PUBLISHED: 2018-09-18
An unprivileged user can delete arbitrary files on a Linux system running ENSLTP 10.5.1, 10.5.0, and 10.2.3 Hotfix 1246778 and earlier. By exploiting a time of check to time of use (TOCTOU) race condition during a specific scanning sequence, the unprivileged user is able to perform a privilege escal...