atsec information security is an international, independent, standards-based Information
Technology security consulting, evaluation, and testing services company that combines a
business-oriented approach to information security with in-depth technical knowledge.
Through our presence in Europe, U.S. and Asia, we address commercial and government
sectors worldwide. Our colleagues are experts in various technologies, including operating
systems, databases, network devices, embedded systems, and many more.
Our laboratories evaluate and test commercial products against standards such as Common
Criteria, FIPS 140-3, O-TTPS, PCI, ISO/IEC 27001, and NESAS to assure users about the
security of products they buy and use. We have conducted many vulnerability assessments,
cryptographic tests, security audits, and independent assessments for customers of varying
sizes, including customers in the telecommunications, financial, energy, and defense
sectors.
atsec is a leader and key contributor to the industry, as evidenced by our founding of the
annual International Cryptographic Module Conference (ICMC). We actively contribute to the
various Common Criteria working groups, the ISO working group that authors the standard
for cryptographic module validation, known as ISO/IEC 19790, to the GSMA security groups,
and to the European Cyber Security Act working groups.
A global leader in applied safety science, UL Solutions transforms safety, security, and sustainability challenges into opportunities for customers in more than 100 countries. UL Solutions delivers testing, inspection and certification services, together with software products and advisory offerings, that support our customers’ product innovation and business growth.
wolfSSL provides lightweight, embedded security solutions that prioritize speed, size, portability, features, and standards compliance. Backed by the robust wolfCrypt, our cryptography library supports TLS 1.3 and DTLS 1.3 and is up to 20 times smaller than OpenSSL. It features a simple API and an OpenSSL compatibility layer for seamless integration. Join the over 2 billion connections secured by wolfSSL and experience reliability, compatibility, and exceptional support. Our best-tested cryptography is paired with the largest team of dedicated cryptography software engineers on the market. Choose open-source licensing to examine the underlying technology, empowering users with choice and flexibility while fostering a community-driven approach to security innovation. Alternatively, opt for wolfSSL’s commercial support, available 24/7 with a dedicated engineer, and benefit from vulnerability fixes in less than 36 hours. Designed to meet a wide range of security needs, wolfSSL boasts a strong track record in FIPS 140-3 and Common Criteria support. It also offers complete RTCA DO-178C level A certification for avionics and MISRA-C capabilities for automotive. This unique approach ensures robust and adaptable solutions for diverse security challenges. Join us at ICMC and ask us about our FIPS-140-3 certification.
Amazon Web Services (AWS) is the world’s most comprehensive and broadly adopted cloud, offering over 200 fully featured services from data centers globally. Millions of customers—including the fastest-growing startups, largest enterprises, and leading government agencies—are using AWS to lower costs, become more agile, and innovate faster.
Security and Connectivity for the IoT Edge – Allegro Software is a leading provider of IoT Edge security and connectivity software toolkits to manufacturers worldwide. Field-proven in 275M+ devices, our solutions enable OEMs in Energy, Healthcare, Military, Enterprise, and Consumer markets to create connected secure devices using TLS, SSH, FIPS 140 and more.
Intertek Acumen Security recognizes that product certifications are business enablers. Our goal is to evaluate and help you get your products certified in the most time- and cost-efficient manner. With unparalleled expertise in cybersecurity and cryptography, we’ll position you to best meet challenging government security requirements. Our familiarity and understanding specific to the CSfC capability packages along with knowledge of required CSfC selections of appropriate NIAP Protection Profiles, we can ensure your Common Criteria evaluation can be seamlessly leveraged for CSfC qualification. Expert services include gap analysis and strategy workshop, documentation development, and post-certification support. Learn more at www.intertek.com/cybersecurity
Keyfactor brings digital trust to the hyper-connected world with identity-first security for every machine and human. By simplifying PKI, automating certificate lifecycle management, and securing every device, workload, and thing, Keyfactor helps organizations move fast to establish digital trust at scale — and then maintain it. In a zero-trust world, every machine needs an identity and every identity must be managed.
Lightship Security provides Certification at the Speed of Development.
Lightship Security is an accredited Common Criteria and FIPS 140 laboratory that specializes in accelerating Protection Profile conformance for the NIAP Product Compliant List (PCL). We use our industry leading test automation platform that codifies our extensive experience to drive certification results for speed, thoroughness and quality that previously hasn’t been possible.
OpenSSL is an open-source software library used for secure communication over computer networks. It provides robust cryptographic functions, including encryption, decryption, and certificate handling, essential for implementing secure internet protocols like TLS (Transport Layer Security) and SSL (Secure Sockets Layer). OpenSSL supports various cryptographic algorithms, such as AES, RSA, and SHA, ensuring data confidentiality, integrity, and authentication. Additionally, OpenSSL includes a FIPS 140 (Federal Information Processing Standard) mode, which ensures compliance with stringent security standards required for government and regulated industries. This makes OpenSSL a critical tool in cybersecurity, protecting sensitive information across diverse applications and systems.
PQShield is a world-leading cybersecurity company specializing in post-quantum cryptography (PQC). We are the only cybersecurity company that can deliver high-quality secure implementations of quantum-safe cryptography on chips, in applications, and in the cloud. Headquartered in Oxford, UK, with teams in the UK, EU, US and Japan, we started out as a modest Oxford University spin-out 5 years ago, but the company has grown rapidly to drive global awareness of the quantum threat. Our team includes the largest commercial-assembly of PQC cryptographers (20+) anywhere in the world. PQShield is a leading contributor to the NIST PQC-standardization project, with our researchers and advisory board co-authoring all the new standards announced by NIST in July 2022. Team PQShield also led the cryptographic extensions for RISC-V, alongside working with many other organisations like the WEF, IETF, ETSI, GSMA, NCCoE and GlobalPlatform. PQShield is also a leading authority on PQC side-channel attack (SCA) resistance, having built a dedicated SCA test lab verified by our partner, Riscure.
On the road, at work and at home – DEKRA’s skilled experts create increased safety and security across all the key areas of life. The company has a clear and ambitious vision of the future. The vision for the company’s 100th birthday in 2025 is to see DEKRA as the global partner for a safe and secure world.
Our broad service portfolio with qualified and independent expert services range from vehicle inspection and expert appraisals to claims services, industrial and building inspections, safety consultancy, testing, cybersecurity evaluation and certification and penetration testing of products and systems, as well as training courses and temporary work.
The Cybersecurity division of DEKRA is an internationally recognized leading Common Criteria IT security evaluation facility and FIPS 140-3 testing laboratory for cryptographic modules. Our lab is currently on the leading edge of the practical application of security evaluation and testing.
Founded in 2012, SafeLogic is a premier provider of cryptographic solutions that enable enduring privacy and trust in the ever-changing digital world. SafeLogic’s CryptoComply FIPS 140-3 validated cryptographic software modules support a broad range of platforms, programming languages, and operating environments. With its FIPS Validation-as-a-Service offering, SafeLogic expedites the delivery of FIPS 140-3 certificates for its CryptoComply customers. It then keeps those certificates active over time via a unique white-glove managed service that provides both software support and certification maintenance. CryptoComply is also the basis for SafeLogic’s post-quantum cryptography (PQC) capabilities, which include PQC algorithms, cryptoagility, discovery and hybrid deployments.
Teron Labs is a FIPS 140 laboratory based in Australia. We are also a Common Criteria (CC) laboratory under the Australian Information Security Evaluation Program (AISEP). Our CC evaluations are regularly cross-posted the NIAP PCL. Our goal is to help organisations around the world to gain certifications in a timely and predictable manner. We understand that delays in the certification process can result in a loss of sales for your business, therefore, we are able to work with you closely throughout the product development and evaluation processes to make sure that your product is able to be certified without encountering any roadblocks. Unlike other laboratories, which are embedded within large multinational and general cyber security services organisations, the focus of Teron Labs is security testing of ICT products, specialising in FIPS 140 and Common Criteria. This focus, together with a simpler business structure and low overheads, provides Teron Labs with a competitive edge in delivering personalzied consulting and testing solutions.
Crypto4A’s mission is to pioneer and deliver crypto-agile and quantum-safe cryptographic solutions, ensuring the fundamental trust expected from our digital infrastructures in the upcoming quantum era. Emerging trends in identity management, cloud, edge computing, AI, IoT, blockchain, IT/OT convergence, and the adoption of new post-quantum cryptographic standards demand innovative approaches to next-generation trust infrastructures. Our HSM products and solutions are built on crypto-agile and quantum-safe foundations from the ground up, ensuring we stay ahead of rapid technological advancements. This allows us to guarantee true ownership of cryptographic material without vendor lock-in and support flexible, cloud-scale deployment architectures.
Quantinuum provides the strongest and most easily integrated quantum random number generator (QRNG) in the market. As the world’s leading quantum computing company, Quantinuum works with cybersecurity vendors to rapidly strengthen and differentiate their products with quantum technology. Our Quantum Origin QRNG offers the strongest foundation for cryptographic products and is the world’s only source of provable quantum randomness. Its unique software-based deployment allows our customers to scale security in physical and virtual environments, without connecting back to a cloud service. Speak to our experts to learn how to enhance your cyber products with QRNG technology today.
Australian-based QuintessenceLabs is a world-leading quantum cybersecurity company recognized for its advanced quantum-safe data protection capabilities extending from quantum-enabled key generation, crypto-agile encryption key, and policy management to ultra-secure quantum key distribution, helping global enterprises and government agencies build a quantum-resilient security posture.
ShapeShift® Ciphers provides data encryption technologies that stalemate all algorithmic decryption attacks, including Quantum Computing, classical, Artificial Intelligence, and Machine Learning attacks. Unlike traditional and PQC methods based on complex mathematics that present attackers with difficult to solve challenges, ShapeShift® Ciphers encryption methods are based on long-standing Deterministic Chaos principles and present mathematically irreducible, computationally incompressible challenges with no closed form solutions. Deterministic Chaos’s Quantum Qubit Superposition Emulation transcends encryption convention and provides provably unsurpassed encryption strength, encryption performance, Shannon Information Entropy, crypto-agility, scalability, ciphertext compactness, sustainability, antifragility, simplicity, testability and standards compatibility within NIST PQC hybrid configurations.
The Common Criteria Users Forum (CCUF) was founded in 2012 and is a community based around those using the Common Criteria and ISO/IEC 15408 standards. The Common Criteria Users’ Forum mission is to provide a voice and communications channel between the CC community and the CC organizational committees, CC evaluation schemes, and policy makers. To join, go to http://www.ccusersforum.org/.
The Cryptographic Module User Forum (CMUF) mission is to provide a voice and communications channel between the community of UNCLASSIFIED cryptographic module (CM) and UNCLASSIFIED cryptographic algorithm developers, vendors, consultants, test labs and other interested parties, and the various national, international, and multi-lateral organizational committees, schemes, and policy makers. To Join the CMUF contact any CMUF Steering Committee member.
GlobalPlatform is a technical standards organization that enables the efficient launch and management of innovative, secure-by-design digital services and devices, which deliver end-to-end security, privacy, simplicity and convenience to users. It achieves this by providing standardized technologies and certifications that empower technology and service providers to develop, certify, deploy and manage digital services and devices in line with their business, security, regulatory and data protection needs.
OASIS is a nonprofit consortium advancing open standards and open source development on a global scale. We’re the home of KMIP, STIX, TAXII, OpenC2, PKCS#11, SAML and CACAO course-of-action playbooks. One of our largest open source projects is the Open Cybersecurity Alliance (OCA). OCA is building an open ecosystem where cybersecurity products interoperate without the need for customized integrations. OCA open project operates independently under industry-approved process and IPR policies. All are welcome to participate.
The PCI Security Standards Council (PCI SSC) leads a global, cross-industry effort to increase payment security by providing industry-driven, flexible, and effective data security standards and programs that help businesses detect, mitigate, and prevent cyberattacks and breaches. Connect with the PCI SSC on LinkedIn. Join the conversation on Twitter @PCISSC. Subscribe to the PCI Perspectives Blog.
Trusted Connectivity Alliance (TCA) is a global, non-profit industry association working to enable trust in a connected future. The organisation’s vision is to drive the sustained growth of a connected society through trusted connectivity which protects assets, end user privacy and networks.
TCA members are leaders within the global Tamper Resistant Element (TRE) ecosystem, and work collectively to define requirements and provide deliverables of a strategic, technical and marketing nature. This enables all stakeholders in our connected society to benefit from the most stringent secure connectivity solutions that leverage TCA members’ expertise in tamper proof end-to-end-security.
Women in Security and Privacy (WISP) is a nonprofit organization committed to advancing women and underrepresented communities to lead the future of privacy and security. WISP offers scholarships, training, networking, leadership development and mentoring for privacy and security professionals around the world. WISP local groups also bring together professionals in cities and communities around the world to connect and support each other. Learn more at www.wisporg.com.