Flexibility and security in the Cloud

Security Professional Services

 

Our professional security experience helps you get the most from your current systems, control costs, improve performance and productivity and reduce risks across your enterprise. We combine professional expertise with project management competence and have proven our proficiency in many successful projects and products.

Identity & Access Management

 

We offer identity management solutions to help you efficiently manage user identities across multiple systems and applications. You want to mitigate the impact of security breaches to avoid data loss and business disruption, implement strong policies and controls that help address information security compliance requirements, and maintain customer trust.

From Hardware to Software Solutions

 

We design and develop hardware and software solutions which integrate new technologies into your current architecture: embedded solutions, secure device drivers ranging from card readers, smart cards, mass storage, HIDs, USBs and secure APIs.

Biometric ePassport
Solution
  • Chip-based integration of biometrics in passports and travel documents
  • ePass Key Management solution

 

Challenges
  • Process definitions for card management in collaboration with the customer
  • Definition of processes and interfaces between card management, card production and certification body

 

Achievements
  • Risk analysis and design of the overall safety of the involved systems for card management, card production and cryptographic components
  • Conception, development and implementation of the solution
  • Ensure compliance with ICAO specifications and international compatibility
EU WiserBAN
Solution
  • Secure medical remote control for an insulin pump
  • Development of an Android SDK for the European project WiserBAN

 

Challenges
  • Work in a team in charge of the remote application and the pump firmware
  • Definition of processes, interfaces between remote control and process control

 

Achievements
  • Conception, development and implementation of the solution
  • Support Android device form factor and version
  • Ensure compliance with EU guidelines
Secure Printer & Scanner Driver
Solution
  • Multiplatform printer and scanner driver
  • Secure Windows universal printer driver
  • Secure OSX and Linux CUPS driver
  • Secure WIA, STI, TWAIN scanner driver

 

Challenges
  • ICM profile for color space transformation
  • Microsoft RIP with halftone pattern
  • Language Monitor for bidirectional communication
  • UI using default Microsoft or full UI replacement
  • Macro print, watermark, QR code with document ID
  • WHQL driver signature

 

Achievements
  • Conception, development and implementation of the driver
  • Use same image processing code for Windows and CUPS
HSM PKCS#11 interface
Solution
  • Unix and Windows PKCS#11 interface for Primus HSM product suite

 

Challenges
  • Design and implement a cross-platform PKCS#11 v2.4 driver library for HSM
  • Achieve secured high-throughput and fail-safe driver library to HSM
  • Design and implement a cross-platform integration test framework for the interface

 

Achievements
  • Conception, development and implementation of the driver library
  • Support & maintenance
  • Integration with Oracle TDE
  • Integration with OpenSSL
  • Integration with Apache SSL
IoT Public Key Infrastructure
Solution
  • Public Key Infrastructure (PKI)
  • Automatic provisioning of IoT Devices
  • Device authentication and communication channel encryption

 

Challenges
  • Integration with existing Cloud IT environment
  • World wide provisioning of IoT devices

 

Achievements
  • Conception, development and implementation of the solution
  • Support & maintenance, ongoing consulting
RSA Key Management
Solution
  • RSA Key Management for military environment
  • Centralized Management

 

Challenges
  • Integration with military IT networks, environment and applications
  • RSA key management across secure military networks
  • RSA key management involving more than 16’000 servers and components

 

Achievements
  • Conception, development and implementation of the solution
  • Support & maintenance, ongoing consulting
  • Ensuring compliance with military policies and guidelines
  • Risk analysis and design of the overall safety of the involved systems and cryptographic components
Public Key Infrastructure
Solution
  • Public Key Infrastructure (PKI)
  • ZertES & ETSI conformity
  • HSM & Smart Card Management
  • Authentication, Digital Signature and Encryption

 

Challenges
  • Integration with IT environment and applications (Messaging, RAS, VPN, Gateways, 2 Factor Authentication)
  • Digital Certificates on Smart Cards for all employees

 

Achievements
  • Conception, development and implementation of the solution
  • Support & maintenance, ongoing consulting
  • Development of a full PKI suite including Card Staging Solution
EU Certification Authority
Solution
  • Drivers, policemen, workshops and trucking companies are equipped with smart cards to digitally sign travel data

 

Challenges
  • Process definitions for card management in collaboration with the cantonal road traffic offices and the trucking company
  • Definition of processes, interfaces between card management, card production and certification body

 

Achievements
  • Risk analysis and design of the overall safety of the involved systems for card management, card production and the cryptographic components in an environment with a high potential for fraud
  • Conception, development and implementation of the Country Signing Certification Authority for the certification of the driver, police, workshop and business cards
  • Support & maintenance, ongoing consulting
  • Ensuring compliance with the EU and the international compatibility specifications in cooperation with the ERCA
Card Management
Solution
  • Card Management and Production line

 

Challenges
  • Process definitions for card management in collaboration with customer
  • Definition of processes, interfaces between card management and process control

 

Achievements
  • Conception, development and implementation of the automated production line
  • Support & maintenance, ongoing consulting
  • Ensuring compliance with government & military PKI policies
  • Risk analysis and design of the overall safety of the involved systems for card management, card production and the cryptographic components in an environment with a potential for fraud
eTierversuche
Solution
  • Securely track research projects involving live animals in private industries and universities in Switzerland

 

Challenges
  • Process definitions in collaboration with customers (Hermes 5)
  • Definition of processes, interfaces, front end and server components

 

Achievements
  • Hermes 5 conception, development and implementation of the solution
  • Ensuring compliance with the Swiss laws on live animal research
  • Support & maintenance, ongoing consulting
Public Key Infrastructure
Solution
  • Public Key Infrastructure (PKI)
  • Hardware Security Module
  • Authentication, Digital Signature and Encryption
  • Corporate solution for Unix, Kubernetes and Microsoft
  • ACME Automation, Kerberos SSO and support for Public Trust Certificates

 

Challenges
  • Integration with IT environment and applications
  • Digital Certificates for machines, systems and users

 

Achievements
  • Conception, development and implementation of the solution
  • Support & maintenance, ongoing consulting
  • Integration with corporate service interfaces
Finance Card Service
Solution
  • Anonymization of credit card information used in fraud detection model

 

Challenges
  • Conceive a strong ‘Anonymizer’ algorithm
  • Integrate with an existing fraud detection model regrouping up to 35 financial organizations

 

Achievements
  • Design, implement and integrate with real time fraud detection infrastructure
  • Ensuring compliance with the Finance Card Service requirements and compatibility