default banner

Software Security Risk Assessment

Increase your cyber security with software assessment tools

Assessing the security of software is as important as assessing the security of hardware. Software is complex and can sometime be easily breached. That is why risk assessment is a must when evaluating the security of a software implementation.

Laboryzr

There are two levels of security verification of the software flow with fast connection:

  • Static Analysis which examines security leakages at an early stage before the code is compiled.
  • Dynamic Analysis which is used to evaluate security leakages at the instruction level when the software code is executed by a processor.

 

Typically, a software risk assessment tool is used to check the software architecture or application design to ensure that it is resistant to side-channel attacks and that there is no risk to the architecture.

 

Software Risk Assessment with CatalyzrTM

Catalyzr

 

CatalyzrTM is a software tool that aims at assessing the security of a software implementation.

CatalyzrTM provides an end-to-end workflow that starts with a design input and ends with the generation of a security report. The design input is a pure software code that can be written in C or in Assembly (ASM).

Software

 

The tool includes several advantages such as:

 

Software Risk Assessment

  • White box and black-box evaluation.
    • Gain in terms of evaluation cost, due to time acquisition and fabrication process cost.
  • Security life-cycle automation
  • Security verification layer
  • Key Modules
    • Control-flow analysis
    • Data-flow Analysis
    • Fault Analysis
  • Fully compliant with ISO/IEC 17825, 20085
  • Seamless integration in design workflow and security testing framework
    • GUI or Command Line Interface
    • Script support for full automation
  • Interactive mapping between leakage trace and code
    • ASM/C source code support
  • Out of the box processor support: Intel x86 and x64, RISC-V, ARM
    • Tunable for other processors
    • Custom Analysis Modules

Security for every step in design life-cycle

CatalyzrTM is a tool which is part of a larger solution called LaboryzrTM specifically designed to support companies through all the security stages of the design life-cycle.

Secure-IC tools can be used to detect Hardware Trojans and also for Black-Box analysis of devices.

 

Secure-IC can also provide services for security evaluation and penetration testing.

Contact