The new generation of devices ranging from smart phones, medical devices to smart meters and cars, introduce new attack vectors. It is vital to ensure these devices maintain security properties that assure confidentiality, integrity and availability. Our extensive experience with product vendors, network operators and application providers ensures that products, applications and services align with industry standards and best security practices.
Palindrome performs complete life-cycle security assurance evaluation of emerging products and services. The security assurance process framework is modular with focused analysis on specific areas such as SaaS implementations, hardware, mobile applications, provisioning and management systems.
The framework is based on evaluating products using a multi-dimensional approach that includes security verification of Hardware (e.g., PCB, JTAG, UART, GPIO), Firmware (e.g., Secure Boot), Software (e.g., OS, Libraries), Signaling and Control Protocols (e.g., call-flow analysis of protocols such as SIP, AAA, NAS, HTTP and others) and Applications or Services (e.g., Internet Multimedia applications, VoIP, VoLTE, M2M).