atsec information security is an international, independent, standards-based Information
Technology security consulting, evaluation, and testing services company that combines a
business-oriented approach to information security with in-depth technical knowledge.
Through our presence in Europe, U.S. and Asia, we address commercial and government
sectors worldwide. Our colleagues are experts in various technologies, including operating
systems, databases, network devices, embedded systems, and many more.
Our laboratories evaluate and test commercial products against standards such as Common
Criteria, FIPS 140-3, O-TTPS, PCI, ISO/IEC 27001, and NESAS to assure users about the
security of products they buy and use. We have conducted many vulnerability assessments,
cryptographic tests, security audits, and independent assessments for customers of varying
sizes, including customers in the telecommunications, financial, energy, and defense
atsec is a leader and key contributor to the industry, as evidenced by our founding of the
annual International Cryptographic Module Conference (ICMC). We actively contribute to the
various Common Criteria working groups, the ISO working group that authors the standard
for cryptographic module validation, known as ISO/IEC 19790, to the GSMA security groups,
and to the European Cyber Security Act working groups.
Intertek Acumen Security is a worldwide leader in cybersecurity evaluation and certification, enabling you to get products into the hands of customers faster. Our team has extensive expertise in a diverse set of standards and certifications to meet your needs, including FIPS 140-2 and 140-3, Common Criteria, CSFC, UC APL, and more. While our security know-how is unrivaled, it’s our service and overall project management that truly sets us apart. Intertek Acumen Security is part of Intertek Group (“ITRK”), a FTSE 100 listed company on the London Stock Exchange with more than 40,000 employees across 1,000+ offices around the world.
The wolfSSL embedded TLS library is a lightweight, portable, C-language-based SSL/TLS library targeted at IoT, embedded, and RTOS environments primarily because of its size, speed, and feature set. It works seamlessly in desktop, enterprise, and cloud environments as well. wolfSSL supports industry standards up to the current TLS 1.3 and DTLS 1.3, is up to 20 times smaller than OpenSSL, offers a simple API, an OpenSSL compatibility layer, OCSP and CRL support, is backed by the robust wolfCrypt cryptography library, and much more.
The CMVP has issued FIPS 140-2 Certificates #3389 and #2425 for the wolfCrypt Module developed by wolfSSL Inc.
Keyfactor brings digital trust to the hyper-connected world with identity-first security for every machine and human. By simplifying PKI, automating certificate lifecycle management, and securing every device, workload, and thing, Keyfactor helps organizations move fast to establish digital trust at scale — and then maintain it. In a zero-trust world, every machine needs an identity and every identity must be managed.
Security and Connectivity for the IoT Edge – Allegro Software is a leading provider of IoT Edge security and connectivity software toolkits to manufacturers worldwide. Field-proven in 275M+ devices, our solutions enable OEMs in Energy, Healthcare, Military, Enterprise, and Consumer markets to create connected secure devices using TLS, SSH, FIPS 140 and more.
Learn more at http://www.allegrosoft.com
Lightship Security provides Certification at the Speed of Development.
PQShield is a world-leading cybersecurity company specializing in post-quantum cryptography (PQC). We are the only cybersecurity company that can deliver high-quality secure implementations of quantum-safe cryptography on chips, in applications, and in the cloud. Headquartered in Oxford, UK, with teams in the UK, EU, US and Japan, we started out as a modest Oxford University spin-out 5 years ago, but the company has grown rapidly to drive global awareness of the quantum threat. Our team includes the largest commercial-assembly of PQC cryptographers (20+) anywhere in the world. PQShield is a leading contributor to the NIST PQC-standardization project, with our researchers and advisory board co-authoring all the new standards announced by NIST in July 2022. Team PQShield also led the cryptographic extensions for RISC-V, alongside working with many other organisations like the WEF, IETF, ETSI, GSMA, NCCoE and GlobalPlatform. PQShield is also a leading authority on PQC side-channel attack (SCA) resistance, having built a dedicated SCA test lab verified by our partner, Riscure.
Crypto4A Technologies Inc. is a Canadian cybersecurity technology company providing industry leading, next-generation Quantum-Safe Hardware Security Modules (HSM) and Security Platforms. Its products and solutions provide processing capabilities for classic and quantum-safe cryptography that is built in, not bolted on. Crypto4A enables the cryptographic agility, mobility, and scalability needed by enterprises and government agencies to secure their digital assets and infrastructure while adapting to changing markets, standards, and requirements.
On the road, at work and at home – DEKRA’s skilled experts create increased safety and security across all the key areas of life. The company has a clear and ambitious vision of the future. The vision for the company’s 100th birthday in 2025 is to see DEKRA as the global partner for a safe and secure world.
Our broad service portfolio with qualified and independent expert services range from vehicle inspection and expert appraisals to claims services, industrial and building inspections, safety consultancy, testing, cybersecurity evaluation and certification and penetration testing of products and systems, as well as training courses and temporary work.
The Cybersecurity division of DEKRA is an internationally recognized leading Common Criteria IT security evaluation facility and FIPS 140-3 testing laboratory for cryptographic modules. Our lab is currently on the leading edge of the practical application of security evaluation and testing.
SafeLogic simplifies the procurement, implementation, and deployment of FIPS 140 validated encryption, the gold standard for the US Public Sector and regulated industries. Established in 2012, SafeLogic has an impressive roster of customers and partners, from major household names to tiny innovative startups, that turn to SafeLogic as a trusted partner for an extremely high leverage component. By developing the module, handling the FIPS 140 validation, and supporting both the software and the validation over time, SafeLogic has a more streamlined and valuable offering than companies can find combining vendors a la carte.
eShard is a cybersecurity specialist that develops and markets cyber testing solutions. eShard’s solutions allow industries to qualify their cyber protections in the face of the complexity of attacks. To date, eShard has 3 software product offerings to increase confidence in digital:
1/ Cyber test solution for chips (Chip Security): Evaluation of the resistance of chips (military, payment, IoT) to physical attacks in the most critical layers of the systems (cryptographic algorithms or the bootloader).
2/ Cyber testing solution for mobile applications (esChecker): Dynamic SaaS tool for analyzing the binary code of mobile applications both for Android and iOS.
3/ Cyber testing solution for Windows or Linux systems (esReven): Vulnerability analysis solution for Windows/Linux systems.
Australian-based QuintessenceLabs is a world-leading quantum cybersecurity company recognized for its advanced quantum-safe data protection capabilities extending from quantum-enabled key generation, crypto-agile encryption key, and policy management to ultra-secure quantum key distribution, helping global enterprises and government agencies build a quantum-resilient security posture.
The Common Criteria Users Forum (CCUF) was founded in 2012 and is a community based around those using the Common Criteria and ISO/IEC 15408 standards. The Common Criteria Users’ Forum mission is to provide a voice and communications channel between the CC community and the CC organizational committees, CC evaluation schemes, and policy makers. To join, go to http://www.ccusersforum.org/.
The Cryptographic Module User Forum (CMUF) mission is to provide a voice and communications channel between the community of UNCLASSIFIED cryptographic module (CM) and UNCLASSIFIED cryptographic algorithm developers, vendors, consultants, test labs and other interested parties, and the various national, international, and multi-lateral organizational committees, schemes, and policy makers. To Join the CMUF contact any CMUF Steering Committee member.
GlobalPlatform is a technical standards organization that enables the efficient launch and management of innovative, secure-by-design digital services and devices, which deliver end-to-end security, privacy, simplicity and convenience to users. It achieves this by providing standardized technologies and certifications that empower technology and service providers to develop, certify, deploy and manage digital services and devices in line with their business, security, regulatory and data protection needs.
OASIS is a nonprofit consortium advancing open standards and open source development on a global scale. We’re the home of KMIP, STIX, TAXII, OpenC2, PKCS#11, SAML and CACAO course-of-action playbooks. One of our largest open source projects is the Open Cybersecurity Alliance (OCA). OCA is building an open ecosystem where cybersecurity products interoperate without the need for customized integrations. OCA open project operates independently under industry-approved process and IPR policies. All are welcome to participate.
The PCI Security Standards Council (PCI SSC) leads a global, cross-industry effort to increase payment security by providing industry-driven, flexible, and effective data security standards and programs that help businesses detect, mitigate, and prevent cyberattacks and breaches. Connect with the PCI SSC on LinkedIn. Join the conversation on Twitter @PCISSC. Subscribe to the PCI Perspectives Blog.
Trusted Connectivity Alliance (TCA) is a global, non-profit industry association working to enable trust in a connected future. The organisation’s vision is to drive the sustained growth of a connected society through trusted connectivity which protects assets, end user privacy and networks.
TCA members are leaders within the global Tamper Resistant Element (TRE) ecosystem, and work collectively to define requirements and provide deliverables of a strategic, technical and marketing nature. This enables all stakeholders in our connected society to benefit from the most stringent secure connectivity solutions that leverage TCA members’ expertise in tamper proof end-to-end-security.