Blockchain is Not

Inherently Secure

Blockchain and Digital Ledger Technology (DLT) provide a foundation for disruptive innovation across all sectors and industries. Its success, however, likely depends on whether security is assured at all stages of the solution lifecycle.

While records on a blockchain are well protected through cryptography, the code and cryptography underpinning blockchain architectures are often complex, with undiscovered flaws.  For many projects, security has taken a back seat as enterprises or inventors rush to become first to market. Flaws in the design or implementation of blockchain networks leave them open to exploitation. Passwords and keys can be appropriated and misused. The distributed nature of infrastructure, clouds, and trust relationships have been exploited.

Kudelski Security empowers enterprise adopters to build security and encryption into their blockchain solutions from the start, making integration of highly secure components seamless and straightforward. With over three decades of cryptography expertise, and some of the world’s foremost blockchain thought leaders, we will help you succeed at every stage of your blockchain implementation — from inception and design to architecture review and training.

Blockchain/DLT

Security Services

Security Audit, Assessment, and Validation

Security Architecture Review

Security Design and Implementation

Security Training

Case Studies

Blog

  • CurveBall: Microsoft Windows CryptoAPI Spoofing Vulnerability Webcast
    by Francisco Donoso on January 21, 2020 at 2:00 pm

      Kudelski Security’s Francisco Donoso, Director – Global Security Strategy, provides a brief webcast overview of CurveBall, the Microsoft Windows cryptographic API vulnerability.  Today, we’ll be talking about CurveBall, a Microsoft Windows cryptographic API vulnerability. We’ll give you a brief overview of Curveball as the vulnerability is called, talk a little bit about the potential […]

  • SECURITY ADVISORY: Multiple Critical Vulnerabilities On Windows Systems
    by Francisco Donoso on January 16, 2020 at 6:11 pm

    On January 14th, 2020 (Patch Tuesday), Microsoft released patches for a severe vulnerability Window’s cryptographic subsystems and critical vulnerabilities in Windows Server Remote Desktop (RDP) Gateway. These Microsoft vulnerabilities are considered critical and the Cyber Fusion Center strongly recommends applying these patches as soon as possible. Kudelski Security expects active exploitation in the near future. […]

  • CVE-2020-0601: the ChainOfFools/CurveBall attack explained with PoC
    by Yolan Romailler on January 16, 2020 at 1:21 am

    On Tuesday the 14th of January 2020, in the frame of their first Patch Tuesday of 2020, Microsoft addressed a critical flaw discovered by t […]

  • Decoding Lecroy oscilloscope traces with sigrok
    by sylvain on January 8, 2020 at 3:42 pm

    Sigrok is an open source signal analysis software suite which is very helpful for the analysis of hardware protocols. The two main tools provided by […]

  • The Security Challenges of Industrial IoT
    by Andrew Howard on January 3, 2020 at 3:00 pm

    The Internet of Things (IoT) is fast turning into an intrinsic part of the digital transformation for industries such as utilities, transportation or manufacturing. The market is expected to reach a value of $922.62 billion by 2025, becoming one of the biggest catalysts for new emerging technologies. Although Industrial IoT (IIoT) adoption offers benefits ranging from automating and […]

In the Press

Let's Talk