Blog

Professionalizing Fault Injection

Professionalizing Fault Injection

Fault Injection can be a tedious task. In this whitepaper we explain how professional tools improve FI (Fault Injection) test results.
Automotive Security Checklist

Automotive Security Checklist

Our experts curated a list of the most essential considerations for better security of your automotive development.
Securing Embedded Devices: 9 Considerations for Success

Securing Embedded Devices: 9 Considerations for Success

We curated a list of the most essential security considerations that we recommend when beginning to incorporate security into your embedded devices. 
Exploring genomic sequence alignment for improving side-channel analysis

Exploring genomic sequence alignment for improving side-channel analysis

Abstract: Side-channel analysis (SCA) extracts sensitive information from a device by analyzing information that is leaked through side channels. These measurements are correlated with specific ...
Forgotten Essence Of The Backend Penetration Testing

Forgotten Essence Of The Backend Penetration Testing

At Riscure we have observed many severe security issues exploited by hackers even in previously certified solutions. In recent years, certification, which aims to minimize security risks, has ...
Whip the Whisperer: Blackhat 2022

Whip the Whisperer: Blackhat 2022

Cryptographic side channels are well-known and understood in the industry. There are also many countermeasures against side channels to reduce the leakage risk. However, many implementations in ...
Five things you should know to avoid the most common security errors

Five things you should know to avoid the most common security errors

For more than 20 years Riscure has been helping chip and device vendors to improve the security of their products. We have observed the ever-changing security landscape, adjusted to the evolving ...
3 Reasons Why Your Payment App Needs To Get EMVCo Certified

3 Reasons Why Your Payment App Needs To Get EMVCo Certified

Riscure worked together with Promon to define why mobile app providers should consider getting EMVCo Software-Based Mobile Payment (SBMP) certification.
Security certification considerations when choosing a secure product

Security certification considerations when choosing a secure product

Understanding Common Criteria and Evaluation Assurance Levels, and putting these into context when choosing secure products and services.
Gaming Consoles as a Frontier in Hardware Attacks

Gaming Consoles as a Frontier in Hardware Attacks

In this blog post we collected a number of notable examples of hardware exploits in gaming consoles over the years.
Security Highlight: The Potential Impact of Hardware Security Weaknesses

Security Highlight: The Potential Impact of Hardware Security Weaknesses

This security highlight discusses the recent NIST report on hardware weaknesses, relating to Riscure's experience in the field. 
My internship at Riscure: Daan de Heij

My internship at Riscure: Daan de Heij

In this blog post, Daan de Heij shares his internship journey at Riscure.
Security Highlight: The impact of the XZ backdoor. Can we still trust open source?

Security Highlight: The impact of the XZ backdoor. Can we still trust open source?

Marc Witteman talks about a recent attack on an open source package and evaluates the possibility of planting malicious functionality in hardware.
Security Highlight: Unveiling EM Eye – a new vulnerability in embedded cameras

Security Highlight: Unveiling EM Eye – a new vulnerability in embedded cameras

This security highlight discusses the recent EM Eye vulnerability discovery, its practical implications, challenges, and potential countermeasures.
Security Takes the Front Seat in Automotive

Security Takes the Front Seat in Automotive

Modern cars are becoming more reliant on complex computer systems, leading to shifts in business models and product lifecycles in the automotive industry.
How to Tame a Light Switch

How to Tame a Light Switch

In a recent publication, Riscure illustrated the analysis and testing of a commercially available smart light switch. By understanding the methods used to exploit these devices, we can take ...
The Power of Collaboration – Examining the Latest Hardware CWE Updates

The Power of Collaboration – Examining the Latest Hardware CWE Updates

In this podcast, members from the Special Interest Group (SIG) of CWE, representing Intel, MITRE, AMD, Cycuity, and Riscure, delve into the importance of the new CWEs and explore the ...
The Impact of Rust on Security Development

The Impact of Rust on Security Development

On February 26th, the White House Office of the National Cyber Director (ONCD) released a report endorsing memory-safety for future software development. In this blogpost, we’ll talk about the ...