- OKsystem is a Prague-based software company with over 200 employees that provides cryptography and smart card solutions.
- They offer products like BABEL for encrypted messaging, OKsmart for smart card usage, and OKbase for key management, certificate management, and card management.
- Their solutions provide strong encryption using proven algorithms like AES and Diffie-Hellman to securely transmit and store encrypted messages and keys.
Smart cards are typically credit card sized, plastic credentials containing a microprocessor chip that serves the dual functions of communication and extensive data storage. Although it is packaged in the form of a card, a smart card operates much like a personal computer in that it can store data, manipulate data, and perform functions like mathematical equations. Smart cards normally contain application fields/sectors secured by special, application-specific security keys (much like keys that unlock various rooms in a building). These sectors can contain information for various applications – such as access control, cashless vending, mass transit, and payment systems – securely separated from one other by security keys. Smart cards can come in two forms: contact and contactless. Contact smart cards operate much like magnetic stripe cards (credit cards, etc.), requiring insertion into or direct contact with a reader. Contactless cards are read when presented near or in “proximity” to a reader
Strengthen your security posture! Getting started with IBM Z Pervasive Encryp...Tony Pearson
This session covers Pervasive Encryption on the IBM Z mainframe platform, Crypto features and concepts, and how to get started with Data Set level encryption. Presented at IBM TechU in Johannesburg, South Africa September 2019 as part of the z/OS Fast Start for Rookies track.
Smart cards are typically credit card sized, plastic credentials containing a microprocessor chip that serves the dual functions of communication and extensive data storage. Although it is packaged in the form of a card, a smart card operates much like a personal computer in that it can store data, manipulate data, and perform functions like mathematical equations. Smart cards normally contain application fields/sectors secured by special, application-specific security keys (much like keys that unlock various rooms in a building). These sectors can contain information for various applications – such as access control, cashless vending, mass transit, and payment systems – securely separated from one other by security keys. Smart cards can come in two forms: contact and contactless. Contact smart cards operate much like magnetic stripe cards (credit cards, etc.), requiring insertion into or direct contact with a reader. Contactless cards are read when presented near or in “proximity” to a reader
Strengthen your security posture! Getting started with IBM Z Pervasive Encryp...Tony Pearson
This session covers Pervasive Encryption on the IBM Z mainframe platform, Crypto features and concepts, and how to get started with Data Set level encryption. Presented at IBM TechU in Johannesburg, South Africa September 2019 as part of the z/OS Fast Start for Rookies track.
Secure Channels financial institution presentation. Featuring solutions using key management. Learn more about our patented encryption by visiting www.securechannels.com
Cloud and Virtualization gives you agility and efficiency to instantly roll out new services and expand your infrastructure. But the lack of physical control, or defined entrance and egress points, bring a whole host of cloud security issues – data co-mingling, privileged user abuse, snapshots and backups, data deletion, data leakage, geographic regulatory requirements, cloud super-admins, and many more. Fortunately, experts agree that encryption is the unifying cloud security control, allowing you protect, control and maintain the trust. Gemalto’s proven encryption and enterprise key management solutions turn any cloud environment into a trusted and compliant environment by solving the critical challenges of data governance, control, and ownership - no matter where you store your data.
Andrew Watts-Curnow, Solutions Architect, Amazon Web Services, ASEAN
Sheung Chi Ng, Senior Security Consulting Manager, Identity and Data Protection (IDP), APAC, Gemalto (Formerly SafeNet)
Digital Signatures solution by ComsignTrustZeev Shetach
ComsignTrust digital signature solutions allow your organization to use the digital signature technology for securing, automating and controlling your entire document signing to make it more efficient and far more cost effective. *Highly secure *Advanced *To serve many signing needs
Cloud and Virtualization gives you agility and efficiency to instantly roll out new services and expand your infrastructure. But the lack of physical control, or defined entrance and egress points, bring a whole host of cloud security issues – data co-mingling, privileged user abuse, snapshots and backups, data deletion, data leakage, geographic regulatory requirements, cloud super-admins, and many more. Fortunately, experts agree that encryption is the unifying cloud security control, allowing you protect, control and maintain the trust. Gemalto’s proven encryption and enterprise key management solutions turn any cloud environment into a trusted and compliant environment by solving the critical challenges of data governance, control, and ownership - no matter where you store your data.
Andrew Watts-Curnow, Solutions Architect, Amazon Web Services, ASEAN
Sheung Chi Ng, Senior Security Consulting Manager, Identity and Data Protection (IDP), APAC, Gemalto (Formerly SafeNet)
SafeNet KeySecure is an Enterprise Key Management (EKM) solution that enables a single, centralized platform for managing cryptographic keys, certificates and applications. As the use of encryption proliferates throughout the corporation, security teams must scale their management of encryption keys, including key generation, key import and export, key rotation, and much more. With KeySecure, administrators can simultaneously manage multiple, disparate encryption appliances and associated encyrption keys, passwords and certificates through a single, centralized key management platform.
Similar to Smart Card and Strong Cryptography for instant security (20)
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
Neuro-symbolic is not enough, we need neuro-*semantic*Frank van Harmelen
Neuro-symbolic (NeSy) AI is on the rise. However, simply machine learning on just any symbolic structure is not sufficient to really harvest the gains of NeSy. These will only be gained when the symbolic structures have an actual semantics. I give an operational definition of semantics as “predictable inference”.
All of this illustrated with link prediction over knowledge graphs, but the argument is general.
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Ramesh Iyer
In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Jeffrey Haguewood
Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows.
We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases.
This video focuses on the notifications, alerts, and approval requests using Slack for Bonterra Impact Management. The solutions covered in this webinar can also be deployed for Microsoft Teams.
Interested in deploying notification automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.
JMeter webinar - integration with InfluxDB and GrafanaRTTS
Watch this recorded webinar about real-time monitoring of application performance. See how to integrate Apache JMeter, the open-source leader in performance testing, with InfluxDB, the open-source time-series database, and Grafana, the open-source analytics and visualization application.
In this webinar, we will review the benefits of leveraging InfluxDB and Grafana when executing load tests and demonstrate how these tools are used to visualize performance metrics.
Length: 30 minutes
Session Overview
-------------------------------------------
During this webinar, we will cover the following topics while demonstrating the integrations of JMeter, InfluxDB and Grafana:
- What out-of-the-box solutions are available for real-time monitoring JMeter tests?
- What are the benefits of integrating InfluxDB and Grafana into the load testing stack?
- Which features are provided by Grafana?
- Demonstration of InfluxDB and Grafana using a practice web application
To view the webinar recording, go to:
https://www.rttsweb.com/jmeter-integration-webinar
Elevating Tactical DDD Patterns Through Object CalisthenicsDorra BARTAGUIZ
After immersing yourself in the blue book and its red counterpart, attending DDD-focused conferences, and applying tactical patterns, you're left with a crucial question: How do I ensure my design is effective? Tactical patterns within Domain-Driven Design (DDD) serve as guiding principles for creating clear and manageable domain models. However, achieving success with these patterns requires additional guidance. Interestingly, we've observed that a set of constraints initially designed for training purposes remarkably aligns with effective pattern implementation, offering a more ‘mechanical’ approach. Let's explore together how Object Calisthenics can elevate the design of your tactical DDD patterns, offering concrete help for those venturing into DDD for the first time!
DevOps and Testing slides at DASA ConnectKari Kakkonen
My and Rik Marselis slides at 30.5.2024 DASA Connect conference. We discuss about what is testing, then what is agile testing and finally what is Testing in DevOps. Finally we had lovely workshop with the participants trying to find out different ways to think about quality and testing in different parts of the DevOps infinity loop.
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Connector Corner: Automate dynamic content and events by pushing a buttonDianaGray10
Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to:
Create a campaign using Mailchimp with merge tags/fields
Send an interactive Slack channel message (using buttons)
Have the message received by managers and peers along with a test email for review
But there’s more:
In a second workflow supporting the same use case, you’ll see:
Your campaign sent to target colleagues for approval
If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team
But—if the “Reject” button is pushed, colleagues will be alerted via Slack message
Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors.
And...
Speakers:
Akshay Agnihotri, Product Manager
Charlie Greenberg, Host
Essentials of Automations: Optimizing FME Workflows with ParametersSafe Software
Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place.
Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects.
Here’s what you’ll gain:
- Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows.
- Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy.
- Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency.
- Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity.
We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic.
Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.
Essentials of Automations: Optimizing FME Workflows with Parameters
Smart Card and Strong Cryptography for instant security
1.
2. OKsystem – brief introduction
Motto: software with a greater intelligence
Since 1990, 4 co-owners 200+ employees
Headquarters in Prague, offices in Brno, NYC
25+ mil. USD annualy
Top 100 Czech, Stability Award AAA
4. Security from one source
We have all components for instant strong cryptography and smart card
deployment from one source:
• BABEL – mobile application for transparent encryption of text messages
• OKsmart – software for easy and transparent smart card usage
– Smart card applets
– Smart card middleware
– Personal web based Card Manager
• OKbase - enterprise java system with plug-in management modules:
– Card management system
– Key management system
– Certificate management
• Software development – from mobile to enterprise systems with strong
security concept based on integration of strong cryptography to
applications
• Smart cards – contact, contactless, combined (hybrid or dual chip)
5. BABEL – it's new and unique
Babel is an iPhone messaging app which allows
you to use your cell phone to exchange
encrypted text messages and iMessages.
7. How it works
BABEL uses proven and standard algorithms for strong
cryptography - AES for message encryption
and Diffie-Hellman for cryptographic keys agreement.
Messages are encrypted not only during transmission but
also in the phone memory. All communication, including
key agreement, can be intercepted without any fear or
risk of potential decryption.
Users do not have to remember any new passwords or
keys, or buy and use digital certificates. Application is
simple, intuitive and uses a standard iOS service for
Contacts and Messages.
Android version is being finalized.
8. Strong cryptography
Strong cryptography exploits encryption algorithms that are highly resistant
to cryptoanalysis and systematic attacks in theory and practice. Well known
and widely used algorithms (RSA, ECC, AES…) are public and proven for years,
and do not contains any hidden secret or backdoors.
• All secrets are concentrated in secret/private keys.
• Without key nobody (younger sister, NSA, Mossad, FSB, …) will decrypt
cyphertext
Every secret forms a weak point, because there is always the risk of being
compromised or lost. Cryptography keys are fundamental and irremovable
weak point of strong cryptography and thus require very special handling.
Keys must be securely generated, stored and used – smart cards should be
used here - your smartphone is not a security device!
Keys must be securely archived in appropriate Key Management System -
there is no other recovery when secret key is corrupt or lost!
9. Smart cards
Smart card is cheap and secure crypto-computer in your pocket.
Smart chip is designed and certified for high security and resistant
against many types of attack. Smart chip can be embedded in various
form factors -credit card size, SIM card size, USB dongle. Smart card
can communicate optionally with contact or contactless
reader, including NFC.
It can deliver security services to master system:
True Random Number Generator for Key generation
Cryptography with secret key –3DES, AES
Asymmetric (public) key cryptography
File system with access control
PIN and admin key authentication
Smart card services are provided by downloadable applets.
10. Smart card security Framework
Smart card is access token to information and communication
system. Smart card can easily bring high security to everyday IT
tasks.
Logical access and authentication
• 802.1x LAN port authentication
• 802.1x wifi authentication
• Smart card logon
• Terminal server authentication
• Web SSL/TLS client authentication
• Legacy password based authentication (smart card & PIN)
Encryption for privacy
• S/Mime e-mail encryption
• File/folder encryption
• Disk encryption
Digital signature and integrity check
• S/Mime e-mail signature
• MS Office suite
• Adobe Acrobat/Reader
12. OKsmart
Smart card middleware
Middleware is system software, that allows host OS
and applications to communicate with cards and
use card services.
OKsmart middleware connects smart cards
powered by OKsmart applets to most popular OS-
MS Windows and MAC OS-X.
Operating system and applications together with
OKsmart seamlessly uses smart card for secure
cryptographic operations – authentication,
encryption and digital signature.
13. OKbase card Management System
OKbase CMS is software for complete smart card life cycle
management. Card deployment for company or its customers
never has been so easy and affordable. Personalization profiles
and ready-made scripts manage all complex tasks for operator.
OKbase CMS performs all card issuance services:
Applet loading (= on card software installation)
Card personalization
• Card body print
• Contact chip
• Contactless chip
OKbase CMS provides daily card life cycle support:
Card activation, deactivation, reactivation, revocation, termination
PIN management
14. OKbase Key Management System
OKbase KMS is software for cryptographic key generation and
life cycle management. KMS is essential when any encryption
take place with or without smart cards.
Basic OKbase KMS functions include:
Cryptography grade random key generation
Secure key archiving for generated or imported keys
Key restore when two or more security officers puts together
restore key
Key activation, deactivation, destruction
OKbaseKMS exploits secure HSM or smart card for key
encryption. Encrypted keys are securely stored in SQL database.
15. OKbase Certificate Management
Digital certificates are core components of PKI systems. A
certificate provides your digital identity to digital documents
and electronic services on the Internet. Companies should
manage certificates for their employees.
OKbase Certificate Management takes care for
complete certificate life cycle, namely:
Certificate requests
Certificate enrolment
Certificate revocation
Certificate archiving
16. Use software with strong cryptography.
Be secure. Remain private. Keep them confused.
Ivo Rosol
Software Development Director
www.oksystem.com