Cloakware Security Suite - Application & software security solutions

Protecting your application code

Cloakware Security Suite is a collection of automated tools that enable developers to protect their application code against tampering, reverse engineering and automated attacks.

Simple to integrate and apply, Cloakware Security Suite adds robust protection to software applications. A range of security techniques protect against direct, automated, static and dynamic attacks.

Protecting intellectual property from theft

The key to a secure product is to ensure that critical assets are protected in the worst-case context: where an attacker has full visibility and full control of the application. With Cloakware Security Suite, you can quickly and easily build multiple layers of protection directly into your software, embedding and meshing security into every level of your application.

Software application and source code protection

Cloakware Security Suite's tuning parameters ensure the right balance between security, size and performance. Attackers become frustrated by the costs and complexities they must incur to achieve a successful result, and Cloakware's protection undermines the attacker's business model by making their attempts unprofitable. With Cloakware Security Suite, you can deploy your application with confidence, protecting data and intellectual property from piracy or theft - as well as protecting your investment and reputation.

A multi-layer defense approach

Cloakware Security Suite offers the broadest range of proven software protection tools and techniques commercially available today to match the specific requirements of your application. Cloakware’s modular defense approach provides effective protection of your valuable intellectual property by layering in a variety of software security technologies and programming techniques.

White-box cryptography

“We are very excited to be using the Cloakware Security Suite to harden Verance's industry leading digital audio watermarking technology. Cloakware is able to offer us flexible tuning controls, advanced security features and unmatched performance levels that we've been unable to find in any other software security vendor's offering. This strategic partnership reinforces our commitment to enabling consumers to use their authorized content more freely, on any device they choose, while premium entertainment content owners can be confident that their employment of industry-standard copy management technology is being protected by the world's leading software security provider.”

- Dean Angelico, Senior Vice President, Product Development for Verance

The first step focuses on securing critical assets. Cloakware’s white-box cryptography solutions operate without revealing keys or data, even when the cryptographic computations can be observed in complete detail. With this strong white-box foundation in place to protect the most critical components of your product, Cloakware’s automated tools allow you to quickly layer on a variety of additional protection techniques.

Data transformations

Data Transformations obfuscate variables and all math operations on this data to ensure it is not visible to an attacker and does not reveal information damaging to the critical assets.

Control flow transformations

Control Flow Transformations disguise the programmatic flow of the application, making it very difficult for an attacker to statically or dynamically trace the operation of the application.

Anti-debug

To defend against tool-based attacks, Anti-debug technology shuts down the application in the presence of debuggers, greatly inhibiting the attacker’s ability to trace through and analyze the target product.

Integrity verification

Integrity verification, Cloakware’s code signing technique, allows the application to dynamically self-check its authenticity prior to startup and during run-time execution.

Code encryption

Code encryption techniques encapsulate the functionality within a cryptographic shell, rendering it inaccessible until the moment of execution. This encryption is applied at one or more of the application, the binary, the function or the code block levels, allowing for maximum flexibility to meet specific security and performance requirements.

Diversity and renewability

Finally, diversity protects your application against widespread security breaches by allowing you to deploy multiple variants of your product to the field, while renewability ensures that the security of your application can be easily updated or modified after deployment.

Features and benefits

Cloakware Security Suite delivers effective, easy-to-use and flexible security, offering tremendous advantages to your application development team. Cloakware Security Suite offers:

Effectiveness

• Secure – provides comprehensive software security to defend against reverse engineering, tampering attacks and automated attacks, all in one Security Suite.
• Customizable – can be tuned to meet specific security and performance requirements.
• Renewable – quick and automated updating of keys, software and security measures, either proactively or as required.
• Open – Cloakware technology is subjected to third-party scrutiny by academics and industry, providing you with confidence in the functionality and security provided.
• Inseparable security – security is built in during the development process so that it is inseparable from the application, making it far more effective than products that are added on after the application has been developed.

Ease of use

• Automated – a set of automated tools enabling rapid development and deployment of security capabilities.
• Integrated – integrates directly into the development process.
• Easy and fast – security techniques are easy to enhance and fast to upgrade – far superior to hardware-based security.
• Maintainable – since the developer always works with the original source code, Cloakware's protection techniques do not affect the code's maintainability or portability.
• Transparent – invisible to the end user; does not affect a program's ease-of-use.

Flexibility

• Scalable – can be deployed to one or millions of clients.
• Multi-platform – supports ANSI C for all major platforms, including Linux, Macintosh and Windows, allowing you to build and deploy applications in your environment and on the open computing platform of choice.
• Adaptable – Cloakware's security techniques will continue to evolve, keeping you ahead of the latest potential threats.

• Introduction to Application Security
• Advantages of White-Box Cryptography

• Cloakware Security Suite
• Cloakware DRM Solutions
• Consulting and Design Services
• Cloakware Transcoder
• Cloakware White-box Cryptography