Skip to main content

Cyber Resilience

CyResLab

ESI CEE, is a long-time partner of the Software Engineering Institute (SEI) and its CERT division (Computer Emergency Readiness Team) at the Carnegie Mellon University, USA, the CMMI Institute and many others.

In 2013 ESI CEE created the CyResLab in order to increase competitiveness of digital enterprises and the resilience of digital ecosystems by making available various resources and services, designed to aid IT, software and information security improvement.

The CyResLab team has expertise in various aspects of information security - cryptology, secure architectures, secure software development, threat modelling and others. Our laboratory has real-world experience in heterogeneous technologies and complex IT systems security, including, but not limited to: Endpoint security (Linux, Android, Windows), Server security (Linux), Application Security (PHP, .NET, JavaScript), Cryptography (Homomorphic encryption, Searchable encryption, etc.) and many others.

We strongly believe in a holistic approach to security, both in the cyber and physical domain. Our methodology is based on industry and government-recognized systematic approaches like the Resilience Management Model (RMM), the Capability Maturity Model Integration (CMMI) and their continuation for critical infrastructure - Cyber Resilience Review (CRR).

Our particular strengths

  • Web security
  • Cloud security (AWS, OpenStack)
  • Secure DevOps (SecDevOps) - Ansible, Chef, Vagrant
  • Linux server hardening
  • Practical cryptography in software development and operations
  • Mobile application security (iOS, Android)
  • Secure application design

Our experience

Successful projects, completed by the laboratory include (limited further information available upon request):

  • A security solution for ICS/SCADA systems, used in oil platforms
  • IT security monitoring and improvement services for insurance and non-banking fintech companies 
  • International cyber shockwave exercises in energy domain 

Our research topics

We are doing research in: 

  • Systems systems - research and analysis of the cyber-dependencies of different types of architectures, interoperability levels and vulnerability models of "aggregated" systems and processes;
  • Investigation of ICS (SCADA), ERP - Classification of Types of Vulnerabilities and Threats;
  • Cybersecurity and secure applications of block technologies

Cyber Resilience Trainings and Services

Top 10 Web Threats for QA

By popular demand, CyResLab has developed a version of the "Top 10 Web Threats" course for QA specialists. The course shifts focus from secure coding and programming countermeasures to security defect detection and analysis (a.k.a. triage), as well as the tools that are needed to master this process.

Introduction to the CERT Resilience Management Model

This three-day course introduces a model-based process improvement approach to managing operational resilience using the CERT® Resilience Management Model (CERT-RMM) v1.2. CERT-RMM is a maturity model that promotes the convergence of security, business continuity, and IT operations activities to help organizations actively direct, control, and manage operational resilience and risk.

Introduction to practical cryptography

The “Introduction to practical cryptography for software specialists” course will provide you with the necessary, but quite commonly overlooked foundations, of information security, and in particular, cryptography. Together, we will examine different cryptographic primitives along with strategies on where and how to apply them. Moreover, this course will provide you with a strong foundation on symmetric and asymmetric cryptography, cryptographic hashes and establish the baseline on their proper application and combination.

Cyber Security and Business Resilience

This is a 2-day course on how to manage operational risk, stay productive under stress and disruption, assess and improve our readiness to ‘handle the unknown’. Based on the new Resilience Management Model of CERT at the Software Engineering Institute (CERT/SEI, Carnegie Mellon University) - a comprehensive and complete reference model and framework helping organizations maintain security, IT operations and business continuity in a converged manner and without additional bureaucratic burden.

Client-side Web Crypto

With the introduction of wide-ranging and impactful legislation and requirements for privacy and data security (like GDPR), a radical, yet powerful cryptography-based solution is gaining traction and relevance. The “Untrusted Server” model assumes the Web application backend will never have access to customers’ data in plaintext, thereby negating almost all impact of data breaches – as the server is unable decrypt users’ data, so is the attacker.

Top 10 Web Threats

Various sources identify that between 20% and 60% of websites have each at least one serious vulnerability. A serious issue is the diversity of threats on Web platforms – different types of attacks can shut down entire services, steal valuable data, impersonate legitimate sites, intercept data on-the-fly, forge user actions, etc.

Cyber Resilience Consultancy

What is “resilience”…

 

The CERT Resilience Management Model (CERT-RMM) is the foundation for a process improvement approach to operational resilience management. It defines the essential organizational practices that are necessary to manage operational resilience. You can use CERT-RMM to determine your organization's capability to manage resilience, set goals and targets, and develop plans to close identified gaps. By using a process view, CERT-RMM can help your organization respond to stress with mature and predictable performance.

 

Email Security Test

The significance of email communication in the modern business world cannot be overstated - hundreds of email messages are sent and received daily by even the smallest companies, containing confidential or personal information such as clients' data, competitive advantages, financial data or just private information. Despite this significance, email security is often overlooked, as demonstrated by the 2016 DNC email leak, which significantly impacted the 58th Presidential Elections in the USA.

Web Security Test

This test has CyResLab security researchers combine a multitude of automated testing tools with a manual follow-up testing of the client website with focus on key functionality and taking into account the client’s security needs.
The automated tools include both well-known open-source tools (e.g. Nmap, OpenVAS, Nikto) and proprietary CyResLab tools developed specifically for such tests.

Mobile App Security Test

The purpose of this test is to find both standard and specific vulnerabilities in Mobile applications by using different static code/binary analysis tools, various dynamic analysis techniques and manual testing and verification of issues by CyResLab security researchers.