Secure Architecture Consulting

INFOSECPRO evaluates the design and architecture of your applications with a ‘best practice’ approach in order to provide clear recommendations on how to most effectively make security improvements. Armed with your business and technical requirements, we conduct interviews with developers, architects and Business Owners as well as review system documentation to fully understand the overall architecture of your application. Our consultants help you understand which components carry the highest risk, how to remedy specific security issues and vulnerabilities, and how changes will impact the security of your application. Together, we narrow the gap between your application’s intended design and its actual security architecture.

The goal of a Secure Architecture Consulting engagement is to identify security vulnerabilities with the following key objectives:

• High-level security analysis of the Client Application:
  
  
  • Understand the current application architecture, and the business/technical requirements
  • Determine level of security essential meeting business goals
  • Analysis of the server application
  • Analysis of the client application
  • Analysis of the communication between the server and the client
    
    
• Cryptographic architecture analysis:
  
  
  • Analysis of the cryptographic soundness of client and server authentication protocol
  • Analysis of cryptographic soundness of data storage on server
  • Transfer knowledge to designated Client representative

For a few pages of a report sample, please click here.