Risk Analysis      and Security Architecture

It is of prime importance to conduct a thorough risk analysis before launching a sensitive service - such as mobile payment - in order to identify  weaknesses and their impact on overall security. Bypassing this phase might leave unexpected doors open to attackers, compromising the system's integrity.

• Building on its security skills, Trusted Labs has developed and validated a systematic methodology to perform comprehensive risk analyses.
• Trusted Labs is also an expert in the industry-recognized EBIOS method.

Description of the service offer

Trusted Labs offers three types of complementary services for a full security analysis.

Service Objective Task description Define the security status of: - a specific product - a product category - a service - a system - a technology - a standard.   Identify sensitive assets and associated threats Define the generic security requirements to meet a specific security level e.g. building a security evaluation process  To cover the identified risks, Trusted Labs derives requirements for: - features & architecture (e.g. key management) - management (e.g. life cycle, administration) - use (use cases) Help the customer implement the security requirements - Specific security improvements of the specifications or the high-level design architecture - Customized recommendations for countermeasures

Trusted Labs' services help you:
 prepare specifications with security concerns in mind
 control quality of suppliers
 evaluate adherence to specifications, etc.

Who benefits?

Product issuers and service providers (smart card vendors, terminal vendors, mobile operators, security product issuers, etc.).

Download "Risk Analysis" flyer.

For more information, contact us at contact[@]trusted-labs[.]com.

Next page: A Strong Experience in Security Analysis

Back to the top