Riscure

“Uncover and mitigate vulnerabilities in connected devices before attackers exploit them.”

What is Riscure?

Riscure, now part of Keysight Technologies, is a specialized solution for device vulnerability analysis. It focuses on evaluating the security of embedded systems, IoT devices, mobile platforms, payment systems, and secure elements against a wide spectrum of attacks.

Unlike traditional IT security tools that focus on networks or applications, Riscure addresses the hardware, firmware, and software layers of devices, ensuring that the very foundation of the connected world is secure.

It combines automated test platforms, advanced side-channel analysis, fault injection tools, and expert services to identify vulnerabilities before production deployment and support compliance with global security standards.

Key Features

• Comprehensive Device Testing
  • Analyze the resilience of IoT, automotive ECUs, mobile devices, payment terminals, and secure chips.
  • Evaluate both hardware (boards, SoCs, chips) and firmware/software layers.
• Side-Channel & Fault Injection Attacks
  • Test exposure to power analysis, electromagnetic leakage, timing attacks.
  • Validate resilience against fault injection (laser, EM, voltage glitches).
• Application & Protocol Validation
  • Assess mobile payment apps, digital identity systems, and IoT protocols (BLE, Zigbee, Wi-Fi).
  • Identify cryptographic weaknesses or misconfigurations.
• Compliance & Certification Support
  • Align with standards such as Common Criteria, EMVCo, FIPS 140-3, GlobalPlatform, GSMA, Automotive ISO 21434.
  • Pre-certification testing reduces delays and certification costs.
• Expert Services
  • Access to Riscure’s security analysts with decades of expertise in device and hardware security.
  • Threat modeling and design review during early product lifecycle stages.

Benefits for the Client

• Protect brand reputation: prevent costly recalls or breaches caused by insecure devices.
• Accelerate certification: validate compliance early to reduce time-to-market.
• Future-proof devices: ensure resilience against evolving attack methods (side-channel, glitching, remote exploits).
• Critical infrastructure protection: safeguard IoT, medical devices, and automotive ECUs deployed in sensitive environments.
• Global trust: used by semiconductor vendors, OEMs, financial institutions, and government agencies.

Why Riscure is Different ?

• Deep expertise in device security: focused on hardware, firmware, and embedded systems where most other solutions stop at software.
• Advanced test techniques: fault injection, side-channel analysis, and hardware-level exploit simulation.
• Certification leadership: trusted by certification labs worldwide for pre-compliance testing.
• Part of Keysight: integrated into a broader test and visibility ecosystem, bridging device, network, and cloud assurance.

 Typical Use Cases

• Validate the security of IoT devices before large-scale deployment.
• Test payment systems and secure elements for EMVCo or Common Criteria certification.
• Ensure automotive ECUs comply with ISO 21434 and resist cyberattacks.
• Assess medical devices for resilience against tampering and data leakage.
• Benchmark semiconductors and chipsets against side-channel and fault injection attacks.

Services & Support (What We Offer)

• Device Security Assessments – full vulnerability testing of embedded hardware/software.
• Certification Preparation – align devices with regulatory standards.
• Fault Injection & Side-Channel Workshops – hands-on training for security engineers.
• Threat Modeling & Design Review – integrate security early in product lifecycle.
• Managed Device Security Testing – continuous validation of IoT fleets.