Blockchain Security Services

Security Audit, Assessment, and Validation

How can I identify and address security flaws in my blockchain solutions?

Unfortunately, just like any other IT solution, blockchain architecture is not inherently secure. Strong security and cryptographic protocols must be built in from the start. When this doesn’t happen, blockchain solutions are just as susceptible to attack and abuse as any other piece of code, database, or in-house written application.

Solution

Just like a peer review for scientific studies, having your blockchain solutions audited for security is an essential part of the development process.

 

For software solutions, we use a combination of manual code review and automated techniques such as fuzzing and dynamic code testing to validate a blockchain application’s countermeasures against an untrusted computing base. Once our testing is complete, we provide you with a full cryptographic gap analysis and thorough breakdown of security and logic flaws in protocols, applications, and software-based crypto storage.

 

The Kudelski Blockchain Security Center also undertakes comprehensive audits to identify security vulnerabilities in hardware solutions such as crypto wallets, crypto-exchanges, hardware security modules (HSMs) and any other custom hardware in the trusted computing base. Our experts highlight security flaws present in microchips and other embedded hardware in order to determine their overall level of security and identify possible improvements. Techniques include fault injection, side channel, photonic emission, invasive circuit editing, and HW/SW reverse engineering.

 

Finally, once all flaws have been uncovered, we help your security developers apply appropriate fixes to your platforms, protocols, apps, and networks. Once the process is complete, you’ll see a dramatic improvement in the security and scalability of your blockchain solutions.

Why Us

Since our inception, Kudelski Security has built a reputation on providing world-class security assessments. Our blockchain security center is staffed by leading security and cryptography experts, and we’ve developed rigorous methodologies for detecting hardware and software vulnerabilities in blockchain technologies.

To find out more about our blockchain security services, or to arrange a consultation, contact us today.

Blog

  • CurveBall: Microsoft Windows CryptoAPI Spoofing Vulnerability Webcast
    by Francisco Donoso on January 21, 2020 at 2:00 pm

      Kudelski Security’s Francisco Donoso, Director – Global Security Strategy, provides a brief webcast overview of CurveBall, the Microsoft Windows cryptographic API vulnerability.  Today, we’ll be talking about CurveBall, a Microsoft Windows cryptographic API vulnerability. We’ll give you a brief overview of Curveball as the vulnerability is called, talk a little bit about the potential […]

  • SECURITY ADVISORY: Multiple Critical Vulnerabilities On Windows Systems
    by Francisco Donoso on January 16, 2020 at 6:11 pm

    On January 14th, 2020 (Patch Tuesday), Microsoft released patches for a severe vulnerability Window’s cryptographic subsystems and critical vulnerabilities in Windows Server Remote Desktop (RDP) Gateway. These Microsoft vulnerabilities are considered critical and the Cyber Fusion Center strongly recommends applying these patches as soon as possible. Kudelski Security expects active exploitation in the near future. […]

  • CVE-2020-0601: the ChainOfFools/CurveBall attack explained with PoC
    by Yolan Romailler on January 16, 2020 at 1:21 am

    On Tuesday the 14th of January 2020, in the frame of their first Patch Tuesday of 2020, Microsoft addressed a critical flaw discovered by t […]

  • Decoding Lecroy oscilloscope traces with sigrok
    by sylvain on January 8, 2020 at 3:42 pm

    Sigrok is an open source signal analysis software suite which is very helpful for the analysis of hardware protocols. The two main tools provided by […]

  • The Security Challenges of Industrial IoT
    by Andrew Howard on January 3, 2020 at 3:00 pm

    The Internet of Things (IoT) is fast turning into an intrinsic part of the digital transformation for industries such as utilities, transportation or manufacturing. The market is expected to reach a value of $922.62 billion by 2025, becoming one of the biggest catalysts for new emerging technologies. Although Industrial IoT (IIoT) adoption offers benefits ranging from automating and […]

In the Press

Let's Talk