IS Laboratory

Security Evaluations, 
Penetration Testing and Advisory Services
for Mobile Solutions

Founded and Managed by Engineers

News & Announcements

EMVCo Accreditation

 

We are proud to announce that IS Laboratory has been officially recognized by EMVCo as a Software-Based Mobile Payments (SBMP) Software-only Security Evaluation Laboratory.

 

As a special offer to our first clients for EMVCo SBMP Security Evaluations, we are pleased to provide highly attractive conditions

This is a unique opportunity to benefit from our premium services at an exceptional value. 

 

Contact us at contact@is-laboratory.com to learn more about this limited-time offer.

 

New article online

New Opportunities for iPhone Mobile Payment Application Vendors:
Leveraging NFC and Ensuring EMVCo Compliance

The article discusses opportunities for iPhone mobile payment application vendors, highlighting the integration of NFC (Near Field Communication) technology and the importance of ensuring EMVCo compliance for secure payments. 

With iOS 17.4 supporting NFC for contactless transactions, developers can now create mobile payment applications without needing additional hardware. 

These applications must meet strict EMVCo security standards, as defined by the SBMP (Software-Based Mobile Payment) certification program, which evaluates the resilience of payment apps against common threats like reverse engineering and data extraction

MPoC Solutions:
Principal Threats and Importance of Penetration Testing

This article outlines the significance of PCI MPoC certification, highlights the key assets and potential threats associated with MPoC solutions, discusses the security measures needed to safeguard against these threats, and emphasizes the importance of regular penetration testing for such products

 

Who We Are

Located in the South of France in Aubagne, IS Laboratory is a security evaluation laboratory that proposes a range of services to enhance security of mobile solutions and harden protection of sensitive data processed by mobile applications.

Founded in 2024 by three engineers with significant experience in software development and security evaluations, IS Laboratory aims to provide state of the art security evaluation and advisory services.

Payment Industry Security Services

PCI MPoC Advisory

We offer consulting services, including workshops, gap analysis, and recommendations on architecture and security to help you achieve and maintain PCI MPoC compliance.

EMVCo SBMP (Software-Based Mobile Payment) Services

As a laboratory accredited by EMVCo, we perform EMVCo SBMP security evaluations,   including code and documentation review, vulnerability analysis and penetration testing to ensure compliance of the solution with EMVCo standards.

In addition, we offer separate services such as workshops on mobile security and security evaluation requirements and gap analysis to help you to prepare for a formal security evaluation.  

Other Security Services

Mobile Security Evaluation Services

Beyond the payment sector, we also propose security evaluations of any mobile solution that handles sensitive data, based on the OWASP MASVS/MASTG specifications.
We provide comprehensive analyses and recommendations to enhance the security of your applications.

Nous avons besoin de votre consentement pour charger les traductions

Nous utilisons un service tiers pour traduire le contenu du site web qui peut collecter des données sur votre activité. Veuillez consulter les détails dans la politique de confidentialité et accepter le service pour voir les traductions.