下载PDF
Rapid7 > 实例探究 > Rapid7 Conducts a Penetration Test for Eyelock
Rapid7 Logo

Rapid7 Conducts a Penetration Test for Eyelock

技术
  • 网络安全和隐私 - 安全合规
  • 网络安全和隐私 - 应用安全
适用行业
  • 安全与公共安全
适用功能
  • 质量保证
  • 产品研发
服务
  • 网络安全服务
  • 系统集成
挑战
Recently, Eyelock set out on a new project: making security airtight for logical access devices. They wanted an external team to take a very close look at their security architecture to implement a design that would allow for access to computers, websites, online banking, and the like. The RFP process kicked off, and the Eyelock team began evaluating various third-party vendors. The top three qualifications were extensive experience with embedded products, a high level of security expertise, and a strong overall reputation within the industry. Through a combination of these factors, Rapid7 won out.
关于客户
Eyelock Corporation is a biometric technology provider specializing in iris-based identity authentication products and technology solutions. They are a major player in the biometric space, revolutionizing iris scanning technology. Eyelock’s products span physical and logical access and can be found in numerous places such as banks, commercial buildings, airports, and border crossings. Their core business revolves around ensuring the highest standards of security and encryption for their iris templates, making them a trusted name in the industry.
解决方案
Eyelock chose Rapid7’s Professional Services for their penetration test due to their extensive knowledge, professionalism, and dedication. Rapid7’s ability to think like an attacker and their willingness to be on-site during the eight-week engagement were key factors. Eyelock’s approach to a penetration test exemplifies their extreme commitment to security, ensuring that security is baked in from the start. Rapid7’s expertise in penetration testing, their DREAD reporting methodology, and their constant communication throughout the process were crucial in identifying and addressing potential security vulnerabilities.
运营影响
  • Rapid7’s on-site presence allowed for direct collaboration with Eyelock’s hardware and software teams, ensuring a thorough and effective penetration test.
  • The use of the DREAD reporting methodology provided a clear and structured way to score and address security findings.
  • Constant communication between Rapid7 and Eyelock allowed for continuous improvement and tweaking of security measures throughout the engagement.
数量效益
  • The eight-week engagement period allowed for an in-depth and thorough penetration test.
  • Rapid7’s DREAD reporting methodology provided a structured scoring system for security findings.

相关案例.

联系我们

欢迎与我们交流!

* Required
* Required
* Required
* Invalid email address
提交此表单,即表示您同意 IoT ONE 可以与您联系并分享洞察和营销信息。
不,谢谢,我不想收到来自 IoT ONE 的任何营销电子邮件。
提交

Thank you for your message!
We will contact you soon.