Print en dk
Home
About Aconiac
Services
Vulnerability Testing
Security Testing
Server Setup
Software Development
Blog
References
Press coverage
Contact
News
19 May 2010
Google isn’t sniffing – people are shouting!
09 May 2010
Misguided prosecution
20 Apr 2010
New OWASP Project: Top 10 security threats of 2010
15 Apr 2010
The secure way of working from open wifi-networks
RSS feed
Get an offer

Security Testing

Security Testing

What is a security test?

A security test from Aconiac is the tool you need to secure your company's websites and servers against attacks from hackers. Through our analysis we discover what security issues are hidden in the system and tell you how to correct them, followed by us actually correcting them for you. This way you achieve insight into your system's security level and at the same time ensure your system is better secured against potential attacks in the future.

Why should I worry about computer security?

Computer security is one of the areas that is often ignored in budget planning. It is therefore very normal for a company to have several serious security issues which hackers can and will take advantage of.
If you are so unlucky as to become a target of an experienced hacker, even as a small company you can expect relatively large economic losses. These usually consist of lost sales due to downtime, lost sales due to bad PR, salary for the people coming in Sunday morning to fix the system and, of course, consultant fees for the professionals making sure the system will not be successfully attacked again. All in all, this can sum up to somewhat large amounts, especially if your company has a big online presence, like e.g. a webshop. It is therefore a good economic decision to consider computer security and beat the criminals to it by getting all computer security problems fixed before incidents occur.

How does a security test work?

A security test consists of a large amount of manual labor and a small amount of automatized tool usage. The test starts with the use of a number of tools to make a so called "baseline" of the system we are testing. By doing this we get an immediate overview of the system, which makes it easier to identify interesting sections that might be worth taking an extra good look at.
After this we mostly make use of a technique called systematic whitebox testing, which is specifically designed to identify errors in setups and software. To do systematic whitebox testing, we need to have access to a full specification of the system we are testing, which we can then use to calculate which actions, by an attacker, would result in different reactions from the system. With this knowledge we can figure out where we should test and how we would potentially get the system to behave in an unintended way.
So our approach is a combination of technique, experience, specifications from the client and a small amount of automatized tools.
After the test is completed, a report containing the security issues will be sent to the client, whom then accepts the contents. When this is done, we begin solving the security issues for the client and afterwards send back documentation of the changes made. After this last step, the security test is complete.

If you have any more questions concerning our methods, please do contact us directly.

Periodic security tests

Sadly computer security is not a static phenomenon. Each week new attack methods are developed, new security issues are discovered and new criminals emerge to attack one's system. It is always a good idea to test one's system and get it secured, but if you add features or change the system the next week, you could potentially have introduced entirely new security issues, without even knowing it. For this reason it will often be a good idea to get your system tested fairly regularly, like e.g. once every 3 months, and thereby achieve a constant high security, which leaves room for development on the company's system.

Such subscriptions are not only advisable, they are profitable, since they result in a lower price pr. security test and give the client the right to use a "Secured by Aconiac" logo like these:

Secured by AconiacSecured by Aconiac
By using these logos, you can clearly show your customers, that you care about their security - which might even lead to increased sales.

If you want a subscription for your company, please contact Aconiac directly.

Price

A typical security test can be acquired for prices ranging from 1000€ excl. VAT.

Aconiac generally uses individual offers, since no two systems are completely alike. We therefore recommend you use the ordering button below or in the top right corner of the page to get an exact pricing from the get-go.


Get an offer
Aconiac Security Group
Møllevangs Allé 142
DK-8200 Aarhus N
Denmark
E-mail: info@aconiac.com
Phone: +45 72207279
Terms & Conditions
Sitemap
Copyright 2009 © Aconiac