Rapid7 > 实例探究 > Rapid7 Conducts a Penetration Test for Eyelock

Rapid7 Conducts a Penetration Test for Eyelock

Rapid7 Logo
公司规模
Mid-size Company
地区
  • America
国家
  • United States
产品
  • Eyelock Iris-Based Identity Authentication Products
  • Rapid7 Professional Services
技术栈
  • Penetration Testing
  • DREAD Reporting Methodology
实施规模
  • Enterprise-wide Deployment
影响指标
  • Customer Satisfaction
技术
  • 网络安全和隐私 - 安全合规
  • 网络安全和隐私 - 应用安全
适用行业
  • 安全与公共安全
适用功能
  • 质量保证
  • 产品研发
服务
  • 网络安全服务
  • 系统集成
关于客户
Eyelock Corporation is a biometric technology provider specializing in iris-based identity authentication products and technology solutions. They are a major player in the biometric space, revolutionizing iris scanning technology. Eyelock’s products span physical and logical access and can be found in numerous places such as banks, commercial buildings, airports, and border crossings. Their core business revolves around ensuring the highest standards of security and encryption for their iris templates, making them a trusted name in the industry.
挑战
Recently, Eyelock set out on a new project: making security airtight for logical access devices. They wanted an external team to take a very close look at their security architecture to implement a design that would allow for access to computers, websites, online banking, and the like. The RFP process kicked off, and the Eyelock team began evaluating various third-party vendors. The top three qualifications were extensive experience with embedded products, a high level of security expertise, and a strong overall reputation within the industry. Through a combination of these factors, Rapid7 won out.
解决方案
Eyelock chose Rapid7’s Professional Services for their penetration test due to their extensive knowledge, professionalism, and dedication. Rapid7’s ability to think like an attacker and their willingness to be on-site during the eight-week engagement were key factors. Eyelock’s approach to a penetration test exemplifies their extreme commitment to security, ensuring that security is baked in from the start. Rapid7’s expertise in penetration testing, their DREAD reporting methodology, and their constant communication throughout the process were crucial in identifying and addressing potential security vulnerabilities.
运营影响
  • Rapid7’s on-site presence allowed for direct collaboration with Eyelock’s hardware and software teams, ensuring a thorough and effective penetration test.
  • The use of the DREAD reporting methodology provided a clear and structured way to score and address security findings.
  • Constant communication between Rapid7 and Eyelock allowed for continuous improvement and tweaking of security measures throughout the engagement.
  • Rapid7’s ability to mimic attacks from both software and hardware perspectives provided a comprehensive assessment of Eyelock’s security architecture.
数量效益
  • The eight-week engagement period allowed for an in-depth and thorough penetration test.
  • Rapid7’s DREAD reporting methodology provided a structured scoring system for security findings.

Case Study missing?

Start adding your own!

Register with your work email and create a new case study profile for your business.

Add New Record

相关案例.

联系我们

欢迎与我们交流!
* Required
* Required
* Required
* Invalid email address
提交此表单,即表示您同意 IoT ONE 可以与您联系并分享洞察和营销信息。
不,谢谢,我不想收到来自 IoT ONE 的任何营销电子邮件。
提交

感谢您的信息!
我们会很快与你取得联系。