80% of all Attacks Occur at the Software, Not Network Layer


Software is at the heart of the SCADA control systems, so securing software applications from the inside out is critical. We've worked with companies like Progress Energy, Northeast Utilities, and Spectra Energy to build internal application security expertise, identify vulnerabilities, and roll out a secure SDLC.

Security Innovation specializes in application security and crypto, we know how to protect data when it's most vulnerable - while applications are accessing it and during transmission.

IT System Attack Simulation

Energy and utility organizations often rely on 3rd party applications and COTS hardware, each of which can introduce risks that are well known to hackers: exploits in known applications, insecure default settings and configurations, poorly implemented crypto, and more.

Security Innovation can help you plug holes before they are exploited by an actual attacker. Our engineers will conduct perpetual attacks on your IT infrastructure to identify vulnerable areas that an attacker would exploit to bring your infrastructure offline or gain access to ciritical data including:

  • High-severity software vulnerabilities
  • Weak or default passwords
  • Misconfigured web and database servers
  • Unknown Internet facing applications or integration code
  • Systems that don’t have proper authentication controls or too high of privileges
  • Insecure communication channels and poorly implemented crypto

Software Assurance: Training & Assessments

For more than a decade, we've researched attack methods and provided software assessments for Fortune 500 and Federal Government Organizations – from small embedded systems to wide-scale deployment of mission-critical applications.

Our  training solutions are backed this real-world experience and reflect the most pressing (and current) software security issues.


Industry-Standard, High-performance Encryption


SSL

Our plug-and-play SSL libraries incorporate our IEEE-standard NTRU algorithm and deliver high-strength data encryption up to 200x faster than RSA.  They are ideal for constrained devices and embedded software.

ARM7/ARM9

Lightning fast, easy to implement security libraries that are optimized for ARM microcontrollers.