News and events
Meet us at IBC 2011
From 9th to 13th September SEARCH-LAB will participate at IBC 2011 in Amsterdam, the most important event in connection with creation, management and delivery of entertainment and news content worldwide. The exhibition hosts top suppliers of all technologies in electronic media, and provides an outstanding opportunity to present and demonstrate the latest technological developments that are shaping the industry.
We are always open to meet and run discussions on any potential fields of cooperation with regards to our expertise in embedded systems security; so please do not hesitate to contact us to arrange a meeting in Amsterdam.
To find out more about the event please visit the official webpage of IBC.
09/05/2011
SEARCH-LAB office has moved
We are pleased to inform you that SEARCH-LAB has moved into a new office located in the IP-West Office Building near the river Danube in the southern part of Buda. The new premises on the top floor offer a large roof terrace with an amazing view onto the city.
Please update your records with our new address:
Budafoki út 91., 1117 Budapest, Hungary
Our phone numbers and all other contact information remains the same.
We are looking forward to welcoming you in Budapest. Please check the maps and directions section on our website on how to access the new office.
07/11/2011
Successful ISO 9001 audit
We are happy to announce that we have successfully concluded the ISO 9001 audit as a review of the three-year period after its publication. Both external and internal audits have verified that the system is operating smoothly and without any difficulties.
From this year on the quality management system has been extended. Besides the product security audit and testing services and the embedded systems security evaluation, now our secure coding training activities have been also certified.
SEARCH-LAB operates the ISO 9001 quality management system in order to provide highest quality services and ensure maximal customer satisfaction. It helps us in maintaining a high standard of services as well as in operating the company more efficiently.
06/03/2011
We attended the uTRUSTit consortium meeting in Oslo
The consortium members of the EU-funded uTRUSTit project met last week in Oslo, Norway to review the activities and deliverables of the work packages. They also discussed the next steps and clarified the work to be done until the first review meeting in September and beyond.
SEARCH-LAB, as the leader of the Security Framework work package, reported on its recently delivered Threat Analysis, which tackled typical threats on the planned use case scenarios, where user involvement is possible and relevant. Also the coordinator of project dissemination and exploitation activities, SEARCH-LAB conducted a session clarifying upcoming tasks, goals and responsibilities.
05/16/2011
Discover our new web page on secure coding trainings
We are happy to announce the release of our brand new web page presenting SEARCH-LAB’s secure coding trainings at www.securecodingtrainings.com.
Browse on the site to discover our courses on secure coding topics in C/C++, Java, .NET and ASP.NET and Web applications. Search for our free webinars, find a classroom training near to your location or sign up for one of our on-line remote courses. You can also request a training if there is actually nothing in the calendar that fits your schedule.
Click on our site and be the first to acquire hands-on knowledge and live hacking experience from the best security experts!
05/04/2011
Meet us at the ICT Proposers’ Day in Budapest
The ICT Proposers’ Day 2011 will take place in Budapest on 19-20 May under the auspices of the Hungarian EU Presidency with the participation of academic, business and government representatives as well as Commission officials from all EU Member States, Associated and Candidate Countries.
The event is dedicated to networking and partnership building for ICT Calls 8 and 9 of the Seventh Framework Programme of the European Commission (FP7), offering more than one billion Euros of EU funding. Thematic sessions on the Work Programme 2011-12 on ICT research with presentations of proposal ideas, meeting points animated by Commission officials and information stands will help the applicants to form project consortia and gather information.
We would be happy to meet you there and start discussions on potential fields of cooperation; please feel free to contact us to arrange a meeting in advance.
04/28/2011
Hot topic: Crypto chip-set security
Our secure coding training portfolio has been extended with a special course for professionals working in the field of secure hardware development.
The Crypto chip-set security course deals with the security chipset design as well as with various implementation issues. It presents logical and IC-level physical attack possibilities along with the possible countermeasures, the various prevention and protection techniques. The subject also tackles those security relevant programming bugs – like buffer overflows or integer overflows -, which are relevant to chipset design and implementation.
Are you interested? Find out more on this specific subject and send your application by requesting a training!
03/25/2011
SEARCH-LAB attended ANIKETOS trainings
ANIKETOS - "Secure and Trustworthy Composite Services" held its third project meeting in Pisa on 15-17 February. The meeting was attended by representatives of all 17 industrial and research organizations forming the ANIKETOS consortium. The focus of the meeting was on finalizing the architectural design of the future ANIKETOS platform.
The Pisa meeting also included a training day (spread over 4 sessions) that introduced project partners to the modeling formalisms and tools that will serve as a basis to define the trust of service composition in the project. SEARCH-LAB – as the leader of the “Tutorials and Trainings” work package – co-organized this event, and provided the framework for holding the sessions.
02/07/2011
SecFutur members met in Linköping
The consortium of the SecFutur research and development project held its project meeting on 30th November and 1st December in Linköping with the participation of the 9 consortium members from all over Europe as well as two associated partners from Canada and Australia. The participants analyzed the requirements of the distributed mesh-network case study and discussed the input requirements to the security building blocks work package.
SecFutur’s aim is to develop and establish a security engineering process for embedded systems, providing a set of implemented resource-efficient security building blocks, each addressing a specific complex non-functional requirement.
The work is funded as a “Small or medium-scale focused research project” (STREP) by the EU’s 7th Framework Programme. SecFutur is coordinated by Fraunhofer, Europe’s largest application-oriented research organization.
12/10/2010
SEARCH-LAB hosted the uTRUSTit project meeting in Budapest
uTRUSTit - “Usable Trust in the Internet of Things” aims at guaranteeing transparency in the underlying security and reliability properties of the Internet of Things as well as integrating the user directly in the trust chain. As the leader of the work packages “Security Framework” and “Dissemination and Exploitation”, SEARCH-LAB was happy to host the project meeting in Budapest on 30th November and 1st December 2010.
During the meeting we had lively discussions with partners from Austria, Belgium, Germany, Norway and Sweden on the key definitions the project will build upon. Targeted use case scenarios have been refined, and the technical synchronization of the work packages has been also tackled. The second day focused on various methods dealing with better understanding of the user perception of trust and the general needs and requirements regarding trust in the Internet of Things solutions.
uTRUSTit is a “small or medium-scale focused research project” (STREP) funded by the 7th Framework Programme of the EU and coordinated by the Austrian Center for Usability Research and Engineering (CURE).
12/02/2010
We attended the ANIKETOS project meeting in Bilbao
ANIKETOS – “Secure and Trustworthy Composite Services”, the 3.5-year “large scale integrating project” (IP) held its project meeting in Bilbao on 23-25 November. The meeting was attended by the representatives of all the 17 industrial and research organizations forming the ANIKETOS consortium.
The project focuses on secure and trustworthy composite services by establishing and maintaining trustworthiness and secure behavior in a constantly changing service environment of the Future Internet.
The main objective of the Bilbao meeting was to consolidate the existing work; furthermore, the consortium members started discussions on the strategy of community building and reviewed the requirement list based on different scenarios of ANIKETOS.
11/26/2010
We attended the Global Security Challenge Summit 2010
This year’s Summit of the Global Security Challenge was held on 11-12 November 2010 at the University of London. Besides keynote speeches, lively and provoking panel discussions we had the chance to attend unparalleled networking sessions.
The program also included the start-up companies’ competition finals, with the participation of around 350 start-ups, investors and government leaders, which was a great opportunity for us to meet potential partners and run discussions on our latest innovation, the CUBEA Customer Behavior Analysis System.
The idea of the Global Security Challenge (GSC) was born at the London Business School in 2005, where the founding team met during their MBAs. Through their professional backgrounds in the security field, they knew about the challenges that innovators face in this market, and created the GSC to empower entrepreneurs in the security space.
GSC runs several international business plan competitions every year to find and select the most promising security technology. It awards over US$500,000 in grants and prizes to innovative start-ups and ideas in the world.
http://www.globalsecuritychallenge.com/gsc_conferences.php
11/15/2010
Successful pilot of CUBEA - Customer Behavior Analysis System
After an intensive one-year-long research and development work in cooperation with NETAVIS (Austria) and Correlation Systems (Israel), the CUBEA project, which was coordinated by SEARCH-LAB and funded by EUREKA’s Eurostars Programme, was successfully closed at the end of October.
As a result, an integrated product has been developed that applies video analytic techniques to track persons and goods in retail shops. Based on the collected information the system is able to analyze and predict the behavior of customers, and thus help to optimize the placement of goods and advertisements. The pilot of the system was run in one of Coop Hungary Zrt’s retails shops in Budapest. Based on the successful pilot, we are now outlining the sales and marketing plan in co-operation with our partners.
If you want to know more about the Customer Behavior Analysis System, please visit the website of CUBEA and download the slide presentation on our newly developed product; for commercial offer please send us an email to sales@search-lab.hu.
11/03/2010
ARTEMIS projects evaluated
Together with its partners from all around Europe, SEARCH-LAB is proud to have two projects positively evaluated by the Call 2010 of the European Union’s ARTEMIS Embedded Computing Systems Initiative.
The nSHIELD – “New embedded systems architecture for multi-layer dependable solutions” project addresses security, privacy and dependability in the context of Embedded Systems as “built in” rather than as “add-on” functionalities. The consortium of 33 members is coordinated by SELEX Galileo, a leader in defense electronics markets.
The other positively evaluated project with the involvement of SEARCH-LAB is SYMBEOSE – “Symbian: the embedded operating system for Europe”, which is to defend Europe’s leadership in the smartphone software domain. The consortium includes prominent members like Nokia, ST-Ericsson or Infineon, and a number of leading academic and research institutions from all around Europe.
The ARTEMIS Joint Technology Initiative –implemented as a Joint Undertaking of the European Commission, the Member States and ARTEMISIA – supports R&D activities through open and competitive calls for proposals on a yearly base, through a 10-year, € 2.5 billion research program on Embedded Computing Systems.
https://www.artemis-ju.eu/public_authority_board_2
https://www.artemis-ju.eu/attachments/174/ARTEMIS-PAB-2010-D.05_v6.pdf
10/25/2010
Learn about .NET and ASP.NET secure coding practices
We are happy to announce our newest classroom and remote courses on secure coding practices of .NET and ASP.NET.
The courses give an overview of both the various security solutions and tools and the most frequent and severe security flaws of the .NET platform, dealing with both language-specific issues and the problems stemming from the runtime environment. We also introduce the vulnerabilities relevant to the ASP.NET platform, along with the general web-related vulnerabilities.
The classroom course consists of a number of hands-on exercises through which attendees can easily understand and execute attacks and mitigation techniques, while we also give a number of practical examples and interactive tasks in our live, instructor-led remote sessions.
If you want to know more, please click on the descriptions of the classroom or remote courses, or contact us at training@search-lab.hu.
10/22/2010
Only two weeks left to register for our secure coding courses at OWASP AppSec DC 2010!
Do not miss the opportunity to attend our secure coding courses to be held on 8-9 November in Washington D.C. at the OWASP AppSec DC 2010 conference. We have elaborated two special practice-oriented one-day courses for this unique event, which deal with Java-related security issues and the security of web applications.
Java Security Overview introduces the basic security solutions provided by Java, tackling issues like the Java Security Architecture and the security services of the Java Standard Edition. In addition, it also provides a comprehensive introduction to Java specific security vulnerabilities. Attendees thus not only learn how to use the different Java security features, but they can also examine and correct typical implementation bugs in example source code snippets through a number of hands-on exercises.
Practical Web Security Overview gives an overview of the applicable security solutions in web applications, focusing on the most important technologies like Web Services. The most severe security threats of web-based technologies are introduced through a number of hands-on exercises prepared in a plug-and-play manner. Topics include input validation-related vulnerabilities – like different injection flaws, Cross Site Scripting, or Cross Site Request Forgery –, problems stemming from improper use of security features, error handling, and many more.
Registration is still open; sign up to get state-of-the-art knowledge and enjoy our exercises.
10/21/2010
International Board of Advisors meeting of SAFECode
As a member of the International Board of Advisors of the Software Assurance Forum for Excellence in Code (SAFECode), Zoltán Hornák took part in its annual meeting, which was held on 11th October in London.
SAFECode is a non-profit organization exclusively dedicated to increasing trust in information and communications technology products and services through the advancement of effective software assurance methods. SAFECode is a global, industry-led effort to identify and promote best practices for developing and delivering more secure and reliable software, hardware and services. Its members include Adobe Systems, EMC, Juniper Networks, Microsoft, Nokia, SAP and Symantec.
SAFECode’s International Board of Advisors provides third-party perspective and expertise to assist SAFECode in its efforts to advance software assurance. It is comprised of individuals from government agencies, private sector organizations and academic institutions from around the world, all of whom are individually appointed because of their ability to offer insight critical to achieving SAFECode’s mission.
For more details please see the website of the SAFECode initiative.
10/19/2010
SEARCH-LAB at the RSA Conference Europe 2010
SEARCH-LAB attended the RSA Conference Europe 2010, which is the most comprehensive forum in information security and whose 19th annual event was held on 12-14 October in London. Besides discovering the latest trends and technologies, the event offered a great opportunity for networking and knowledge-sharing.
The RSA Conference drives the information security agenda worldwide with annual industry events in the USA, Europe and Japan. This year’s event was the 19th in the series, it built on the spirit of collaboration inspired by those who cracked the code of the Rosetta Stone. The event invited the attendees coming from over 50 countries around the world to decode the mysteries of information security, uncovering new ways to stem data theft, breaches and other cybercrimes.
For more info please see the website of the event.
10/15/2010
Get registered for our secure coding courses at the OWASP Conference in Washington D.C.
We are happy to announce that our training classes on "Java security overview" and "Web security overview" will be presented at the OWASP AppSec DC 2010 Conference in Washington D.C.
The course materials have been updated by the latest advances in the software development industry and the most recent achievements of our security research laboratory. Both courses include numerous hands-on exercises, prepared in a plug-and-play manner; by using a preset VMware virtual machine, the examples can be followed, executed and attacked in a unified environment.
OWASP is a not-for-profit worldwide charitable organization focused on improving the security of application software. The OWASP AppSec conference series is dedicated to bringing together industry, government, security researchers and practitioners to discuss the state of the art in application security. The AppSec DC 2010 is expected to attract a worldwide audience of around 700 people interested in “what’s next”.
The maximum number of participants is limited, so do not miss the opportunity and get registered for our one-day practice-oriented courses.
For more details and registration please click on the website of the event.
09/27/2010
ANIKETOS - Secure and Trustworthy Composite Services
The kick-off meeting of ANIKETOS research project took place on 22-24 September at SINTEF premises in Trondheim, Norway.
The 3.5-year large scale integrating project (IP) was named after the unconquerable Olympian god who presided over the defence of fortified towns and citadels. The consortium is coordinated by the Norwegian SINTEF, the largest independent research organization in Scandinavia. The team consists of 17 organizations from 10 countries, including large industrial and research players.
The project will focus on secure and trustworthy composite services by establishing and maintaining trustworthiness and secure behavior in a constantly changing service environment of the Future Internet. The project will align existing and develop new technology, methods, tools and security services that support the design-time creation and run-time dynamic behavior of composite services, addressing service developers, service providers and service end users.
SEARCH-LAB will contribute to ANIKETOS with its strong expertise in security evaluation, research and education. We will lead the “Tutorials and Trainings” work package and also conduct security evaluation of the prototype implementations. We will be involved in the specification of security requirements and the research on monitoring mechanisms as well.
09/24/2010
Meet us at the ICT 2010 in Brussels
SEARCH-LAB will be there at the ICT Event 2010, the Europe's most visible forum for ICT research and innovation. The event will take place on 27-29 September in Brussels, Belgium.
This biennial event has become a unique gathering point for researchers, business people, investors, and high level policy makers in the field of digital innovation. ICT 2010 will focus on policy priorities such as Europe's Digital Agenda and the 2011-2012 financial program of the European Union for funding research and innovation in ICT.
It is a great opportunity to discover latest research trends in information and communication technologies, meet potential research and business partners as well as visit the exhibition of Europe's latest cutting edge ICT research.
We would be happy to meet you there, do not hesitate to contact us to arrange a meeting in advance!
For more information please see the website of the event at http://ec.europa.eu/information_society/events/ict/2010/index_en.htm.
09/17/2010
uTRUSTit - Usable TRUST in the Internet of Things
uTRUSTit, our newly started international research project was kicked-off on 15th September in Vienna, Austria. The project is funded by the 7th Framework Programme of the EC, and is a “Small or medium-scale focused research project” (STREP) coordinated by the Austrian Center for Usability Research and Engineering (CURE).
The uTRUSTit project, whose name derives from “Usable Trust in the Internet of Things”, aims at guaranteeing transparency in the underlying security and reliability properties of the Internet of Things (IoT) as well as integrating the user directly in the trust chain. The consortium is composed of experienced security researchers, practitioners as well as simulation and usability laboratories from different parts of Europe.
The project results will enable system manufacturers and system integrators to express the underlying security concepts to users in a comprehensible way, allowing them to make valid judgments and informed decisions regarding the trustworthiness of such systems. The project’s design guidelines on trust will help the industry to implement the trust-feedback toolkit developed by uTRUSTit in a secure, usable and accessible way.
In the project SEARCH-LAB will lead the “Security Framework” and “Dissemination and Exploitation” work packages; furthermore, we will investigate security implications of the Internet of Things with special focus on human perception of trust and develop methods to detect a system’s security trustworthiness.
09/15/2010
Do not miss our Secure C/C++ Programming course at the Hacktivity Conference
First time in the history of Hacktivity, SEARCH-LAB provides a one-day secure coding course for all interested attendees before the event on Tuesday, 14th September. Get ready for the latest trends in computer security, and participate in the training through a number of hands-on exercises!
Our workshop on “The art of exploiting and preventing C/C++ vulnerabilities” gives an insight into the typical “old style” security relevant programming bugs as well as the protection and mitigation techniques. Attendees will learn how to find and exploit different flaws, and how to prevent the occurrence or the exploitation of these vulnerabilities through running, attacking and analyzing vulnerable code examples. Hands-on practical exercises will provide a step-by-step introduction to the attack methods and protection techniques. By using a preset virtual machine attendees will be able to follow, execute and attack different exercises in a unified environment.
The course is designed to provide the basic need-to-know for those, who are interested in deep, bit-level technical details of hacking. Basic knowledge of C/C++ language and familiarity with the concepts of assembly programming are required to follow the material.
For registration please see the website of the event at http://hacktivity.hu/portal/hu/hacktivity2010/treningek.
08/30/2010
Join us at the Hacktivity Conference
Are you interested in the latest trends of IT security, with special regard to embedded systems? Get registered to the Hacktivity Conference and do not miss our presentation on “Security of video set-top boxes – hardware hacking techniques” to be held at 9.30 a.m. on Sunday, 19th September. The presentation will give an overview on the current state-of-the-art in hardware level protection techniques and the up-to-date penetration testing methods.
Hacktivity, the largest hacker conference in Central and Eastern Europe will be held in the Dürer Garden in Budapest, Hungary, on September 18 and 19, 2010. It is an international event gathering more than 500 official and alternative representatives of the information security profession; it is an informal and informative happening presenting a set of speeches that go into bit-level technical details in computer security. This year’s keynote speaker will be Bruce Schneier, the most famous IT security expert in the world.
For more information and registration please visit the website of the event at http://hacktivity.hu/portal/en.
07/20/2010
Discover our remote secure coding courses
Are you concerned with the security of your products, but cannot afford to stay away for several days from your running projects? Save time and travel costs and subscribe to our novel remote courses on secure software development practices in C/C++, Java and Web technologies.
Just like our long established and popular on-site classroom trainings, the new remote courses are interactive, practice-oriented, and are led by highly-qualified instructors in an interactive manner. The courses are half day or full day long, depending on the training modules of your choice.
Have a look below at the topics covered by our remote trainings – and click for detailed descriptions:
- Fighting against security flaws
- Common C/C++ security vulnerabilities
- Protection against common security vulnerabilities – practical methods
- Secure C/C++ coding Exercises
- Introduction to Java security technologies
- Java specific vulnerabilities
- Introduction to Web Services security
06/18/2010
Meet us at MobiSec 2010 in Catania
MobiSEC 2010 is the second conference organized by the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering (ICST), focusing on security and privacy for mobile information and communication systems. The event aims at building a bridge between top-level research and large scale applications of novel kinds of information security for mobile devices and communication.
MobiSec 2010 will be held on 27-28 May in Catania, Sicily. We would be happy to meet you there and start discussions of potential fields of cooperation so please feel free to contact us to arrange a meeting in advance.
05/20/2010
SecFutur project kicked off
SEARCH-LAB attended the kick-off meeting of SecFutur, a research project funded by the 7th Framework Programme of the European Commission. The project started on 1st May and will run for 3 years in cooperation with 9 partners from Europe and overseas.
The aim of SecFutur is to develop and establish a security engineering process for embedded systems, providing a set of implemented resource-efficient security building blocks, each addressing a specific complex non-functional requirement. The project will also provide a security engineering framework that supports the developer in integrating these building blocks into the overall engineering process.
SEARCH-LAB will contribute to the project with its outstanding experience in the area of automation of security and robustness testing. We will develop a security evaluation tool targeting embedded devices. Exhaustive security tests provided by such automation will significantly raise the overall security and quality of systems developed in the SecFutur framework.
The work is funded as a Small or medium-scale focused research project (STREP) within the objective “Trustworthy ICT” of FP7/ICT (Call 5).
05/03/2010
Extended services in Embedded Systems Security
Besides offering the highest level of security evaluation services for software-based products, like operating systems, desktop applications or even smart phones, we have now extended our service portfolio with hardware-level security evaluation of embedded systems. A thus focused assessment provides a high added value to companies developing security sensitive products. Security issues of embedded devices are essential in application areas like those of identification and payment devices, wide range of sensors operating in hostile environment, alarm systems, copy protection of game consoles, or e.g. for ensuring integrity and authenticity of flight data recorder units (FDR).
In our comprehensive approach to embedded systems, security vulnerabilities are analyzed on both software and hardware level by combining manual evaluation with automated testing techniques. To provide these services, SEARCH-LAB's qualified evaluation environment already meets the strictest security and organizational requirements of various customers worldwide.
For further details please check out our homepage's new section on Embedded Systems Security and contact us at info@search-lab.hu.
02/26/2010
Meet us at CeBIT 2010
SEARCH-LAB will be at CeBIT 2010, the world's leading trade fair for the ICT industry, to be held on 2-6 March 2010 in Hannover.
We are always open to meet and run discussions on any potential fields of cooperation in IT and physical security, so please do not hesitate to contact us to arrange a meeting in Hannover.
CeBIT is the world's largest business event for the digital world. The key target groups are users from industry, the wholesale/retail sector, skilled trades, banks, the services sector, government agencies, science and all users passionate about technology. To find our more about the event please visit the official webpage of CeBIT.
02/25/2010
SHIELDS workshop on Modelling and Detection of Vulnerabilities
The SHIELDS consortium – a member of which is SEARCH-LAB – has taken the initiative for a workshop on Modelling and Detection of Vulnerabilities (MDV 2010) at the Third International Conference on Software Testing, Verification and Validation (ICST 2010). The workshop will be held on 10 April 2010 in Paris, France. Paper submission date for MDV has been extended to 29 January 2010.
01/14/2010
SEARCH-LAB has updated its IT security course portfolio
Our highly qualified trainers have held numerous secure coding trainings throughout the year for the largest software developing companies worldwide. Our training materials are continuously improved based on the feedbacks and on the newest achievements of our security research laboratory.
Our refreshed portfolio now includes Secure C/C++ Programming, Basic Java Security, Advanced Java and Web Services Security, Combined C/C++, Java and Web Services Security as well as Symbian Platform Security. The courses target developers, software architects, analysts, testers and reviewers both at beginner and advanced level.
If you are interested in SEARCH-LAB's secure coding trainings, please contact us at training@search-lab.hu
12/22/2009
SEARCH-LAB attended the Artemis Brokerage Event 2010
SEARCH-LAB took part at the ARTEMIS Brokerage Event 2010 held on 15-16 December in Amsterdam to get a head start in drafting project proposals and building quality consortia as well as to meet partners and matching project ideas.
The ARTEMIS-JU Call 2010 is expected to open in March 2010. The Artemis Initiative launched by the European Union manages and co-ordinates research activities through open calls for proposals through a 10-year long research programme on Embedded Computing Systems with a budget of EUR 2.5 billion.
Please find more info at https://www.artemis-ju.eu/
12/19/2009
SEARCH-LAB sponsors EESTEC Ethical Hacking workshop
EESTHC (Electrical Engineering Students' Hungarian Association), EESTEC's LC Budapest, organizes an international Ethical Hacking Conference between 12-16 October, 2009. 10 presentations will be held by international speakers and companies during the five days of the workshop. Registration is free for all EESTEC-member international students and also Hungarian students (not only EESTHC-members).
Corporate social responsibility has always been a priority for SEARCH-LAB, so beyond sponsoring the event with funds, two presentations will also be held by SEARCH-LAB's Zoltán Hornák (managing director) and Kristóf Kerényi (project manager) about computer security topics.
You can meet our colleagues on 16th October, Friday at the Netakadémia training facility.
10/10/2009
CUBEA – Customer Behavior Analysis project started
CUBEA project started in September with the coordination of SEARCH-LAB. The goal of the project is to elaborate an integrated product to help retailers make better business decisions and increase sales and profitability by analyzing customer behavior.
The system applies video analytic techniques to track persons and goods in retail shops. Based on the collected information it will analyze and predict the behavior of customers, and thus help to optimize the placement of goods and advertisements.
CUBEA is funded by EUREKA's Eurostars Programme, which is the first European funding and support programme to be specifically dedicated to SMEs. Consortium members are NETAVIS (Austria) and Correlation Systems (Israel).
09/03/2009
SEARCH-LAB publishes SHIELDS web site
The final website of the SHIELDS project – hosted and operated by SEARCH-LAB – was launched on 18th August, and is now open to the public. The website contains all necessary information about SHIELDS including publications, workshops, public deliverables, modeling and security tools that were developed during the project, and supplementary documents. The website also contains demos of the user interface, methods and tools in action.
The SHIELDS project is focused on model-based detection and elimination of software vulnerabilities within the design and development tools. The participants including SEARCH-LAB conduct research and development on models for software vulnerabilities and security countermeasures, develop a repository where such models can be stored, and extend and adapt security and development tools to make use of this repository.
The project is funded by the European Union as a STREP under the thematic area of ‘Information Society Technologies' of the Seventh Framework Programme. Learn more about SHIELDS at the webpage of the project.
08/26/2009
INsider - Proactive site wide identity tracking project closed
SEARCH-LAB successfully closed the INsider project with its partners from Israel and Czech Republic. The system developed by the project operates as an access control and tracking system deployed on-site.
By combining video- and other sensor-based object (person) tracking with different remote identification methods it accomplishes identity tracking throughout the site. The video analysis data and the access control positioning data is fused and analyzed by geospatial data mining algorithms in order to identify seemingly unnoticeable security breaches and to predict future events to allow early response to them.
The innovation in the project is not only the development and the integration of the core technologies, but also the exploitation of synergies between them.
INsider was funded by EUREKA's Eurostars Programme. For more information please visit the website of the INsider project.
07/20/2009
Open Trusted Computing framework implemented by the OpenTC project
The OpenTC research project defined and implemented an open Trusted Computing framework. The framework was built on the cost-efficient and widely deployed Trusted Platform Module (TPM) specified by the Trusted Computing Group (TCG) and the new generation of x86 CPUs from Intel and AMD.
The architecture is applicable to a wide range of platform types, e.g. servers, GRID technology, mobile phones and industrial automation. It provides basic building blocks for complex, distributed scenarios with inherent, multilateral trust and security capabilities. Project results are distributed as Open Source software, supporting Linux in particular.
The project started in 2005 and run in cooperation with 21 partners from all over Europe including SEARCH-LAB. The work was funded by the European Union as an Integrated Project under the thematic area of 'Information Society Technologies' of the Sixth Framework Programme.
06/19/2009
SEARCH-LAB attended IFSEC 2009
IFSEC, the world's leading annual security event took place on 21-24 May in Birmingham; it attracted 30,000 attendees from 125 countries. The 7 key areas of the sector included IP Networks & Integrated systems, Access Control, Counter Terror and CCTV.
The program covered every aspect of security, provided featured areas with over 800 exhibiting companies and offered a comprehensive seminar program including a wide range of issues pertinent to the worldwide security agenda.
The event provided for us a great opportunity to size up the market potential of our intelligent video surveillance system IDENTRACE as well as to run intensive discussions with our potential partners, to exchange information on the latest trends and to find system integrators. For more information please visit the website of IFSEC.
05/27/2009
DESEREC research project was successfully closed
With the participation of SEARCH-LAB, DESEREC project was closed after a three-year-long cooperation with 16 European partners.
The project aimed at increasing the dependability of critical, open, and interconnected complex information systems - on which many European activities rely -, by a coordinated multi-disciplinary effort. To ensure coherent and efficient dependability management of these complex systems relying on an information network, the project provides solutions on three domains; planning, detection and response.
The methods, tools and utilities are provided with hooks for interactions (notifications, provisions, self-learning and human-aided rules optimization) and share a common repository with the topology, the planned configurations, the rules for activities precedence, and similar.
The work was funded by the European Union as an Integrated Project under the thematic area of ‘Information Society Technologies' of the Sixth Framework Programme.
04/23/2009
Meet us at Brno ICT brokerage event
The forthcoming ICT Brokerage Event to be held on 29-30 April in Brno, Czech Republic is a great opportunity to share project ideas and foster international collaboration in EU research projects. We are happy to meet you there so please contact us to arrange a meeting in advance.
SEARCH-LAB is primarily interested in automated compliance, interoperability and security verification of trusted computing solutions, as well as automated evaluation, assurance and certification tools for the security of Future Internet. We seek for partners to collaborate in the objectives of The Network of the Future (1.1), Trustworthy ICT (1.4), Networked Media & 3D Internet (1.5), Embedded System Design (3.4) and Computing Systems (3.6). We are also interested in any security-related project ideas.
The event will be accompanied by the Information Day on the challenges of the ICT Work Programme 2009. For further information please see the website of the event.
03/27/2009
Partnership signed with IQSOFT – John Bryce Training Center
SEARCH-LAB and the IQSOFT-John Bryce Training Center (IQJB) signed partnership for providing secure coding trainings targeting security engineers, programmers, software architects, analysts, testers and reviewers from beginner to advanced level. The courses include Secure C/C++ Programming, Secure JAVA Programming and Web Services Security.
The John Bryce Training Center is a leading provider of IT training services, combining traditional IT training methods with cutting-edge technologies. With headquarters in Israel and dynamic subsidiaries in Hungary and China, John Bryce serves individuals, organizations and corporate enterprises worldwide, including many of the world's largest corporations.
The IT security trainings provided by SEARCH-LAB, and many other courses of IQJB are accredited to be eligible for tax allowance in Hungary through the reduction of the Professional Training Taxes.
02/20/2009
SEARCH-LAB at the ICT Proposer's Day
SEARCH-LAB actively took part in the ICT Proposers' Day 2009, which has been a unique networking forum for stakeholders interested in building long-term international cooperations in the ICT theme of FP7.
The one day event was organised on 22nd January in Budapest by the European Commission's Information Society and Media Directorate-General, in cooperation with the Hungarian National Office for Research and Technology (NKTH). It attracted more than 1500 people from all over Europe and beyond.
The event offered a great opportunity for SEARCH-LAB to meet colleagues and run discussions on possible R&D cooperations. Before, during and after the event we have made contacts to more than eighty people from all around the European Research Area, and have discussed common topics, some of which would hopefully end up in forming successful research consortia in the future.
01/26/2009
SEARCH-LAB seeks for partners in the ICT calls
The European Commission has opened Call 4 of the ICT theme of the Seventh Framework Programme (FP7). This call focuses on 7 strategic challenges and seeks proposals in 19 areas, with a committed budget of € 801M. The closing date for proposals is 1st April 2009, while the fifth call will follow it shortly after, and is scheduled to autumn 2009.
Concerning these upcoming calls of ICT, SEARCH-LAB has some project ideas and seeks for partners in the field of automated compliance, interoperability and security verification of trusted computing solutions, as well as automated evaluation, assurance and certification tools for the security of Future Internet. The Objectives we are primarily interested in are the followings: The Network of the Future (1.1), Trustworthy ICT (1.4), Networked Media & 3D Internet (1.5), Embedded System Design (3.4) and Computing Systems (3.6). Nevertheless, any security-related project ideas are welcome.
We also offer our expertise in the area of physical security, ranging from video content analysis through biometrics (including soft biometrics) to computer vision in general. Our expertise in video analysis can for instance provide a valuable contribution to some special areas of the networked search and retrieval (target outcome 1.5c).
12/01/2008
SEARCH-LAB participated at the SHIELDS project meeting in Milano, Italy between 12-14 November
The aim of the SHIELDS project is to increase software security by detecting known security vulnerabilities from within design and development tools. SEARCH-LAB is in charge of leading the technical work package which develops the SHIELDS security vulnerability repository service (SVRS), the central database where all security-related information is collected for various development and security modeling tools. The SVRS is considered the "heart" of SHIELDS, and its performance, security, scalability, and interoperability across many different kinds of tools running on disparate platforms are of utmost importance.
The development of the SVRS is progressing steadily: the prototype will be ready by Q2 2009, and the final version is expected to be published during Q2 2010.
Learn more about SHIELDS
11/17/2008
Zoltán Hornák presents as a member of SAFECode's International Board of Advisors
The managing director of SEARCH-LAB was invited to the SAFECode's International Board of Advisors team.
SAFECode is a non-profit association committed to increasing trust in information and communications technology products and services throughout the development of effective software assurance methods.
The Board of Advisors involves well-known information technology experts from prominent companies such as EMC Corporation, Juniper Networks, Inc., Microsoft Corp., Nokia, SAP AG and Symantec Corp. The invited advisors will provide third-party perspective and expertise to advise SAFECode on its efforts to advance secure development practices and promote software assurance.
Read SAFECode press release
11/03/2008
SEARCH-LAB joins Symbian Partner Network
SEARCH-LAB now is an official partner of Symbian since from September we have joined the Symbian Partner Network Program (SPN) of the world's primary mobile operating system developer. Within the partner program SEARCH-LAB will have the opportunity to collaborate in the development of pioneering technology, and innovative products, solutions as well as services for the mobile industry especially in the field of mobile security.
Our SPN profile
09/12/2008
SEARCH-LAB attends INSIDER kick-off meeting in Prague
SEARCH-LAB takes part in the INSIDER R&D project starting on 1st September 2008. The Eurostars founded project targets the need for better inner-perimeter monitoring. The developed system will provide a unique low-cost solution that answers the needs of these sectors. The innovative approach that combines the technologies on which INSIDER is based puts the project at the forefront of security systems.
09/01/2008
Meet us at Smart Event 2008, the innovation forum for mobility and trusted technologies & services
The event takes place in Sophia-Antipolis, France features three co-located international conferences. E-Smart conference focuses on the smart security technology, while the Smart Mobility show is dedicated to trusted mobile applications and services. The third conference SEARCH-LAB takes part spotlight electronic identity management and its applications.
Contact us during the conferences to learn more about today's security challenges and solutions.
Smart Event
08/28/2008
Successful CISA exams at SEARCH-LAB
In July three IT engineers passed the CISA exam at SEARCH-LAB. With this achievement at this time every member of our security expert staff is qualified as a Certified Information Systems Auditor.
The mark of excellence for a professional certification program is the value and recognition it bestows on the individual who achieves it. Since 1978, the Certified Information Systems Auditor (CISA) program, sponsored by ISACA, has been the globally accepted standard of achievement among information systems (IS) audit, control and security professionals.
08/13/2008
SEARCH-LAB's presentation on Symbian Platform Security available
Our technology manager, Kristóf Kerényi held a presentation in July with Forum Nokia about how to build secure applications on the Nokia S60 3rd edition. Now this presentation is available for anyone interested in mobile security. This is your chance to learn all about how to build secure applications. Watch our webinar to take the lead in mobile security!
Watch the webinar in your browser
08/08/2008
SEARCH-LAB at DepCoS-RELCOMEX 2008
Ervin Tóth security engineer of SEARCH-LAB gave a presentation at the Third International Conference on Dependability of Computer Systems DepCoS-RELCOMEX 2008.
At the international IT event, which took place in Szklarska Preba, Poland 26-28 June 2008, Ervin Tóth gave a presentation on Protection system against Overload and Distributed Denial-of-Service Attacks.
The article described a solution to overloading of network servers, focusing on protection mechanisms against both natural and malicious overload. Furthermore, detection and protection scheme against blocking and crash-bug exploiting attacks was also presented. The described algorithms were implemented within the Dependability and Security by Enhanced Reconfigurability (DESEREC) project of the Sixth Framework Programme of the European Union under "Information Society Technologies".
Interested? If you would like to read the paper, send us an e-mail.
To learn more about the event visit: http://depcos.pwr.wroc.pl/
07/10/2008
SEARCH-LAB holds webinar at Forum Nokia
On Tuesday 1st July our technology manager, Kristóf Kerényi, will hold an exciting presentation with Forum Nokia about how to build Secure Applications on S60 3rd edition. This joint webinar with Forum Nokia and Search-Lab will go over the Symbian Platform Security and things which are related to the building secure applications which cannot be exploited to attack the system.
More information here
Click here to register
06/24/2008
SEARCH-LAB at CeBIT 2008
Meet us at CeBIT 2008, the world's largest trade fair showcasing digital IT and telecommunications solutions for home and work environments. The exhibition besides many topics will be focusing on ways to protect your personal data and your digital identity. If it is IT security your expert is SEARCH-LAB. Contact us during the show to find out more about today's security challenges and solutions.
03/03/2008
SEARCH-LAB at Trust2008
SEARCH-LAB visits TRUST2008 an international event which takes place in Villach/Austria between 10-13 March 2008 and brings together scientific stakeholders from all over the world in the field of Trusted Computing. TRUST2008 focuses at creating a joint scientific and networking platform covering the core issues of Trust in IT Systems. The event is dedicated to scientific challenges, application scenarios, testing evaluation and verification, hardware/software solutions.
02/25/2008
SHIELDS project started
SHIELDS project was kicked-off in January 2008. The European Commission supported FP7 STREP project SHIELDS held its kick-off meeting at the Linköping University (Sweden) between 9-11 January 2008. With this event, the two-and-a-half year long project was officially launched. The aim of SHIELDS is to increase software security by detecting known security vulnerabilities from within design and development tools. In this project, we conduct research and development on models for software vulnerabilities and security countermeasures, develop a repository where such models can be stored, and extend and adapt security and development tools to make use of this repository.
The project also aims to elaborate a "SHIELDS Compliant" certification for secure software development tools and a "SHIELDS Verified" logo program for software developers, who will use certified tools to develop secure products. The SHIELDS approach will offer an affordable and yet technically effective evaluation and certification methods in the fight against common security vulnerabilities.
01/14/2008
| 
