Mobile Security


Black Cypress engineers were responsible for the original development and multiple releases of a Secure Android tablet O/S targeted at government and commercial customers. This O/S is a remotely managed platform providing secure data at rest, secure connectivity, secure applications, and security relevant auditing.  This involved many security and device management relevant modifications to the AOSP code base through several versions of Android, from ICS (4.0) to KitKat (4.4). The product has been widely deployed and ported to four tablet platforms and several Intel-based laptop models. The product includes the following security features:

• SE-Android with stringent SE-Policies for device access and settings restrictions

• Always-on IP-Sec VPN

• Strong (Suite-B crypto) encryption for all disk volumes

• Secure bootloader (proprietary and UEFI)

• Hardware-based Security Key with two-factor authentication

• Customer configurable user interface elements and Kiosk mode applications

• Management APIs for control of SE-Policies, Kiosk mode, and specific device capabilities

Our engineers were responsible for the original development of the GUI for the IP-Sec VPN client for Android that is deployed by several phone manufacturers. 

IoT Cybersecurity


BlackCypress engineers have designed and implemented IoT optimized and portable applied Cryptography products including:

  • Multi-stage secure boot processing for both custom H/W and UEFI that supports encrypted and signed boot images.
  • Secure IoT update client and host tools using streaming CMS for encrypted and signed updates.
  • Secure enrollment client (EST) for device certificate provisioning.

FIPS Certification and Innovation


Black Cypress performed their first FIPS certification of a crypto library and Linux kernel module in 2011 and has since worked with UL (fomerly InfoGard) to certify crypto libraries and kernel modules on more than twenty different O/S and hardware platforms including:

• Android (2.2 through 5.0)

• IOS-5, IOS-6, and IOS-9

• Linux (x86, ARM, PowerPC), several versions

• Greenhills Integrity O/S

• VxWorks (x86, ARM, PowerPC), several versions

Secure Communications


Throughout their careers, our engineers have been deeply involved in communications:

  • Defense Radios and Missile Guidance systems (E-Systems /Raytheon)
  • RC & Drone radio controls: (Spektrum / Horizon Hobby)
  • Cell phones: (Samsung, LG, Motorola)
  • Satellite communications: (Viasat)

In depth knowledge of secure networking protocols:

  • TCP/IP 
  • IKE/IP-Sec 
  • SSL/TLS
  • SSH
  • EST, SCEP
  • 802.1x, EAP-TLS
  • OpenSSL/EVP
  • CMS

 

 

Cryptography and ComSec Customer Projects

Black Cypress has been the point engineering team for integration of security products for the following customers:

• Avaya

• DELL

• DIRECTV

• GE-Medical

• IQT

• KLAS

• Motorola

• Northrop Grumman

• U.S. Government

• Xerox