Solutions for Software Publishers

As famous computer scientist Donald Knuth once quipped, "software is hard." Security specialist Ross Anderson added further: "security is hard." What of security software? It is a bad idea to have non-specialized developers writing secure and/or cryptographic code - even specialists get it wrong sometimes. We intend to address this by taking the matter into our own hands - we have the know-how required to not only implement, but also audit cryptographic and protection code, to assess its security and correct behavior.

At Kryptos Logic, we know how easy it is to "get it wrong." For this reason, we offer software implementation services for sensitive routines that simply cannot fail security-wise. We implement custom secure software solutions at several levels: we can assist developers integrating our copy protection systems in their own application, as this is often a non-trivial task that is easy to get wrong. We can also help integrations of other copy protection schemes, e.g., dongles.

Cryptographic software, in particular, is very sensitive to bad implementations. Implementation flaws have plagued RSA and other public key schemes for years. Naive AES implementations are vulnerable to cache-timing attacks. Cryptographic random number generators are another big can of worms. Generally, side-channel attacks aren't easy to thwart, and are applicable to both AES, RSA and Elliptic Curve cryptosystems. We offer fast and secure side-channel resistant implementations for a multitude of platforms at the customer's request.