Device Security Bulletin | Issue 80
Keysight Device Security Testing
Riscure Security Solutions, a Keysight Technologies device security research lab
Security Highlight: Is AI ready for finding security vulnerabilities?
Fuzzing tools are invaluable for testing open source code, but they aren’t foolproof. The recent SQLite vulnerability, found by Google’s Big Sleep AI, underscores the challenges of fuzzing large search spaces. Big Sleep's breakthrough in discovering an SQLite vulnerability demonstrates how AI can reduce the opportunity window for attackers, marking a new era in vulnerability research.
Read the full security highlight here
The Latest Updates
Upcoming Webinar: PCI MPoC 1.1 - Key Changes and Impacts
Join us on February 6th at 5 PM CET / 11 AM EDT for an informative session on the changes in the PCI Mobile Payments on COTS (MPoC) Standard version 1.1. Discover how these changes impact security evaluations and the certification process. This session will guide (potential) MPoC vendors through the implications of the changes for MPoC certifications.
Side Channel Webinar: PQC Edition
On November 7th we hosted the Riscure Side Channel webinar focusing on the advancements in Post-Quantum Cryptography (PQC) and Riscure's solutions for security testing.?
Side Channel Webinar: Automotive Edition
On November 27th, we hosted the latest edition of the Side Channel webinar series focusing on the advancements in Post-Quantum Cryptography (PQC) and Keysight's solutions for security testing.?
New Publication - PCI MPoC: Build it or Use it?
Learn about the strategic choices businesses face with the PCI MPoC standard, from building solutions to market entry strategies. Align your technological approach with your business goals effectively.
Blog Post - Strengthening Post-Quantum Cryptography: Keysight and Fox IT Address XMSS Vulnerability
Post-quantum cryptography (PQC) is a critical frontier in cybersecurity, demanding collaboration and innovation. Our team's recent PQC collaboration with Fox IT identified a vulnerability in the XMSS library. Addressing this vulnerability ensures a stronger XMSS implementation for developers and security experts worldwide.
Industry Updates
Handbook for Quantum-Safe Cryptography
Riscure Security Solutions contributed to the renewed handbook for quantum-safe cryptography, a collective effort led by the Dutch organizations Algemene Inlichtingen- en Veiligheidsdienst - AIVD (AIVD), Centrum Wiskunde & Informatica (CWI), and TNO (Netherlands Organization for Applied Scientific Research). Critical insights from our post-quantum cryptography research were provided to the handbook by our experts, Durga Ramachandran and Bar?? Ege .
About Us
Riscure Security Solutions is a Keysight Technologies device security research lab. We evaluate?the security of software, chip technology and embedded/connected devices that are meant to operate securely in any environment. Riscure Security Solutions is an international market leader in providing test equipment for side channel and fault injection robustness of chip technology. Our security testing equipment is used by manufacturers, government agencies and security test laboratories around the world.
Join us on Twitter and LinkedIn
In addition to monthly newsletters, we regularly share updates on our social networks. If you are not subscribed already, check out our accounts on Twitter and LinkedIn.