Encryption
One Time pad solution
A one-time password (OTP) is a password that is valid for only one login session or transaction.
As opposed to static passwords, OTPs are not vulnerable to replay attacks because they are random
and ever-changing. For the increasing usage of mobile devices, the OTP software application can be used
to secure different applications such as online banking, customer log-on, payment validation,
ATM withdrawals or stock trading. Multi OTP technology can also be the answer for, not limited to,
application service providers (ASPs), using different OTPs for different applications. At CyberSOFONET we,
develop such one-time password software applications for access control.
Digital signatures
A digital signature is a kind of electronic signature which can be used to identify the entity sending
the information or the document signatory, and thus it is possible to guarantee that the information has
not undergone any changes since it was signed. Digital signatures cannot be copied and an element of time
can be incorporated in them. The receiver can verify that the digital certificate is in fact valid and
real by checking its contents.
The product portfolio includes desktop, portable, cloud, web and mobile solutions with new innovative
technologies incorporated, such as NFC in mobile signing and new tablet-based digital signature
solution for agent-client scenarios - for modern, secure, paperless service centres and point of sales.
At CyberSOFONET we develop such digital certificates for client –server infrastructure.
PKI projects for Strong Identification Management in Large Organisations
A digital signature is a kind of electronic signature which can be used to identify the entity sending
the information or the document signatory, and thus it is possible to guarantee that the information has
not undergone any changes since it was signed. Digital signatures cannot be copied and an element of time
can be incorporated in them. The receiver can verify that the digital certificate is in fact valid and
real by checking its contents.
The product portfolio includes desktop, portable, cloud, web and mobile solutions with new innovative
technologies incorporated, such as NFC in mobile signing and new tablet-based digital signature
solution for agent-client scenarios - for modern, secure, paperless service centres and point of sales.
At CyberSOFONET we develop such digital certificates for client –server infrastructure.
Penetration Testing
We provide solutions to prevent hackers from gaining access to organization’s information Systems since to
beat a hacker, you need to think like one. Therefore, we carry out the following:
Server side attacks, in identifying and exploiting vulnerabilities in web servers and applications
with powerful tools
Client Side Attacks, targets hosts systems. services include social engineering,
exploiting host system vulnerabilities, and attacking passwords as they are the most common means to secure host systems.
Attacking Authentication, we look at how users and devices authenticate to web applications.
we include targeting the process of managing authentication sessions, compromising how data is stored
on host systems, and man-in-the-middle attack techniques. we also work on SQL and Cross-Site Scripting attacks.
Web Attacks, we explore how to take advantage of web servers and compromise web applications
using exploits such as browser exploitation, proxy attacks, and password harvesting.
This also covers methods to interrupt services using denial of service techniques
Vulnerability Assessment
We uncover vulnerabilities in systems, explore their potential by using a variety of Threat Modelling Tools,
and then provide countermeasures/recommendations.
We analyze and strengthen an organization’s security posture including policies, network protection
infrastructure and end-user practices.
